Director, Cloud Security (213199)

Requisition ID: 213199

Salary Range:180000.00-301500.00

Please note that the Salary Range shown is a guideline only. Salary offered may vary based on factors including but not limited to the successful candidates relevant knowledge skills and experience.

Join a purpose driven winning team committed to results in an inclusive and high-performing culture.

Title: Director Cloud Security and Emerging Technology Cyber & IT Risk Operational Risk Global Risk Management - New York NY

Global Banking and Markets

Global Banking and Markets (GBM) is a leading Canadian Capital Markets and Investment Banking business with a growing platform in the US and Latin America operating globally for over 100 years. Scotiabanks strong U.S. presence provides our clients an important bridge to this key global market for trade and investment flows across the Americas and the world.

Global Banking & Markets provides a full range of investment banking credit and risk management products and services relevant to the financing and strategic development needs of our clients. Our products include debt and equity financing mergers & acquisitions corporate banking institutional equity sales trading and research fixed income products derivatives energy foreign exchange and precious & metals. We also cross-sell the full range of wholesale products and services offered by the Scotiabank Group.

Be part of an innovative Global Capital Markets and Investment Banking business with a unique geographic footprint that puts capital to work for our clients across industries! We work together to drive ambition for every future!

Purpose

In this pivotal role youll spearhead our second line of defense overseeing and monitoring cloud security (primarily GCP & Azure) and emerging technology architecture and design with a keen focus on data risk management programs including data protection at a global scale. As the Director of Cloud Security and Emerging Technology for the second line of defense youll be at the forefront of innovation to ensure our technology landscape is secure and compliant with industry frameworks regulation and standards. This thrilling opportunity will have you partnering with key technology stakeholders to build an enterprise solution making a tangible impact on our organizations future.

Accountabilities

• Partner with senior key stakeholders to oversee and monitor the enterprise-aligned cloud strategic framework assessing design and providing architectural challenges for secure development and application building.
• Support continuously evolving holistic cloud security strategy across various deployment models (SaaS PaaS and IaaS).
• Knowledgeable in current and emerging cybersecurity risks and trends.
• Oversight of the Cloud Security Transformation Program ensuring business strategies plans and initiatives are executed and delivered in compliance with governing regulations internal policies procedures with an understanding of industry frameworks/regulations/standards like CSA STAR ISO NIST OWASP OSFI etc.
• Understand security concerns associated with application container technologies and make practical recommendations for addressing those concerns when planning for implementing and maintaining containers.
• Challenge the creation of secure reference architectures frameworks policies and patterns for the security aspects of the SDLC including application mobile infrastructure DevOps cloud and CI/CD pipelines.
• Leads and drives a customer focused culture throughout their team to deepen client relationships and leverage broader Bank relationships systems and knowledge.
• Understand how the Banks risk appetite and risk culture should be considered in day-to-day activities and decisions.
• Creates an environment in which their team pursues effective and efficient operations of their respective areas in accordance with Scotiabanks Values its Code of Conduct and the Global Sales Principles while ensuring the adequacy adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational compliance AML/ATF/sanctions and conduct risk.
• Builds a high performance environment and implements a people strategy that attracts retains develops and motivates their team by fostering an inclusive work environment and using a coaching mindset and behaviours; communicating vison/values/business strategy; and managing succession and development planning for the team.

Experience & Education

• University degree preferably in Computer Engineering Computer Science or related field and a minimum of 10 years experience in increasingly senior Information Security roles in a complex global organization.
• 3 years of experience developing implementing and maintaining security solutions in public cloud like GCP Azure or AWS. Extensive understanding of cloud infrastructure and services.
• Experience leveraging CI/CD deployment methodologies and infrastructure as code (IaC)
• Financial services and specifically banking experience is mandatory.
• Experienced in driving cross functional senior executive steering committees with a global presence.
• Experienced in develop and manage multi-million business cases for strategic initiatives.
• Expertise in product/application security architecture application security cloud SaaS/PaaS/IaaS solutions.
• Understanding of application and product architectures programming languages web application stacks and SDLC pipelines.
• Excellent written and verbal communication skills with the ability to communicate security objectives and concepts to technology and business teams to technical and non-technical stakeholders.
• Ability to lead technical teams in a highly complex and matrixed organization. Ability to lead through influence excellence and example is essential to success.
• Strong leadership and collaboration skills. Excellent oral and written communication ability to present confidently to senior executives attention to detail and strong planning and management ability.
• Deep and broad knowledge of enterprise cloud and security technologies is expected. Specific strong knowledge and experience with common hosting storage and networking technologies is required. Experience with Workload Protection and Posture Management products an asset.
• Experience with and knowledge of formal project management methodologies is desired.
• English fluency required and Spanish preferred.

Working Conditions

• Work in a standard office-based environment non-standard hours are a common occurrence.
• Limited travel.
• Hybrid work environment remote with potentially 2 days in office per week.

Interested

At Scotiabank every employee is empowered to reach their fullest potential respected for who they are and embraced for their differences. Thats why we work to grow and diversify talent and engage employees in a performance-oriented culture.

Whats in it for you

Scotiabank wants you to be able to bring your best self to work and life every day. With a focus on holistic well-being our many flexible benefit programs are designed to help support your unique family financial physical mental and social health needs.

Location(s): United States : New York : New York City

Scotiabank is a leading bank in the Americas. Guided by our purpose: for every future we help our customers their families and their communities achieve success through a broad range of advice products and services including personal and commercial banking wealth management and private banking corporate and investment banking and capital markets.

At Scotiabank we value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including but not limited to an accessible interview site alternate format documents ASL Interpreter or Assistive Technology) during the recruitment and selection process please let our Recruitment team know. If you require technical assistance please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however only those candidates who are selected for an interview will be contacted.