Cybersecurity Analyst

Requisition ID: 204899

We are committed to investing in our employees and helping you continue your career at ScotiaTech.

Purpose

The Team

Scotiabank’s Threat Monitoring & Response (TMR) team is responsible for detecting, monitoring, and investigating threats. We are responsible for the coordination of key programs that impact all divisions within the Cybersecurity Operations (CSOps) organization and all of Information Security & Controls (IS&C).

The Role:

Reporting to the Senior Manager, Monitoring and Triage team, the Team Lead is responsible for leading the group of cybersecurity analysts, reviewing, assessing, and consistently helping to develop their analytical and technical skills. While they are learning how to navigate the Technical/Business oriented cyberworld within the organization.

Accountabilities

• Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge.

• Thrive in a fast-paced environment coordinating multiple issues and threats that can be occurring simultaneously

• Leadership with a strong desire to develop and train security analysts, investigators and responders to fortify the bank’s controls

• Learn about new threats that can impact both the organization and its customers

• Problem solving, collaborating across the organization to solve complex technology and data problems

• Communicate, and thrive on communicating clear, accurate statues on issues, problems and projects

• Lead complex initiatives providing security advice to ensure information security risk are mitigated.

• Solutioning for multiple security domains (Security Management, Security Engineering, Identity and Access Management, etc.).

• Working on different types of projects (from large complex to simple).

• Collaborate with various business lines, IT support functions and IS&C Control functions.

• Understand how the Bank’s risk appetite and risk culture should be incorporate into in day-to-day activities and decisions.

• Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.

• Champions a high-performance environment and contributes to an inclusive work environment.

Education / Experience / Other Information

• You possess advanced communication (verbal/written/presentation) skills in English. The same in Spanish is a strong asset. B2

• You have at least 2 years of hands-on technical working experience in management of threats and industry

• You have at least 2 years of hands-on technical working experience with security controls/mechanisms.

• You have used industry leading productivity tools to produce quantitative/qualitative reports, data flow diagrams & visual presentations.

• You have built and run a TTP framework methodology for pattern and behaviour-based content development

• You have built custom reporting of mitigation status against threats

• You have experience involving red team (Vulnerability Assessments, Web app assessments), consulting (Compliance, policy creation), SOC and Device Management

• You have built a security program to defend against APT

• You have sized, deployed, maintained and hardened SIEM and NGFW solutions

• Post-secondary education in Computer Science or in a related field.

• Certifications (CISSP, CISM, CCSP, CRISC) are nice to have

Working Conditions

• Work in a standard office-based environment; non-standard hours are a common occurrence.

#LI-Hybrid

Location(s): Bogotá or Home-Office

ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits.

At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted.

Note: All postings in me@Scotiabank will remain live for a minimum of 5 days.