Director, Security Policy As Code

Requisition ID: 235359

Join a purpose driven winning team committed to results in an inclusive and high-performing culture.

We are seeking a Director Security Policy as Code to join our Cloud Security team. The ideal candidate has strong leadership and stakeholder engagement skills to provide leadership to support patterns and Policy as Code practices. The team is currently in the process of transformation that requires leadership to develop the policies and target state and lead the team in executing/delivering on the plan from current state to target state

Is this role right for you In this role you will:

• Define Cloud Security Policy as Code and Patterns aligned to the Banks Cloud Security Posture and Security Policies & Standards.
• Define and execute enterprise-wide Security Policy as Code strategy.
• Establish standards guidelines and architecture for codifying security controls.
• Provide direction to design develop automate and govern Policy as Code and Patterns architecture for the Bank in collaboration and alignment with global business technology and second and third line of defense teams.
• Drive the transformation of security policies into enforceable policies embedded within CI/CD pipelines infrastructure and cloud environments.
• Facilitate forums and prepare the team for constructive collaboration sessions with cross-functional teams technology and business channels and control functions

Do you have the skills that will enable you to succeed in this role Wed love to work with you if you have:

• Minimum of a bachelors degree (or equivalent) required
• 12 years experience in Information Security or Information Technology and a minimum of 7 years experience in Engineering leadership roles in a complex global organization. Financial services and specifically banking experience is highly desired.
• Hands-on in software engineering or DevSecOps
• Deep expertise in security policy frameworks automation tooling and collaboration with cross-functional stakeholders.
• Strong expertise in Policy as Code frameworks and implementing automated security controls in cloud environments.
• Deep understanding of compliance frameworks and regulatory requirements.
• Previous exposure to Regulatory Compliance Risk and Audit functions
• Experience as a key technical partner in global technology transformation efforts demonstrating the ability to inspire and align diverse technologists drive efficient and effective decision-making and to deliver and support a robust information security governance framework.
• Strong leader with demonstrated ability to lead technical teams and build and maintain credibility with technical and non-technical stakeholders alike. Deep knowledge of relevant technologies must be combined with the ability to lead highly technical teams strong business acumen and excellent communication and listening skills.
• Strong planning and organizational skills; can manage multiple tasks and meet deadlines
• Experience in working with complex processes
• Willing to learn and grow and demonstrates resilience to ever-changing priorities
  

Whats in it for you

• Diversity Equity Inclusion & Allyship-We strive to create an inclusive culture where every employee is empowered to reach their fullest potential respected for who they are and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities ethnicity race age ability & veterans.
• Accessibility and Workplace Accommodations- We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.
• Upskillingthrough online courses cross-functional development opportunities and tuition assistance.
• Competitive Rewards program including bonus flexible vacation personal sick days and benefits will start on day one.
• Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs such as hackathons contests Humans of Digital and much more!

#ScotiaCloud

Location(s): Canada : Ontario : Toronto

Scotiabank is a leading bank in the Americas. Guided by our purpose: for every future we help our customers their families and their communities achieve success through a broad range of advice products and services including personal and commercial banking wealth management and private banking corporate and investment banking and capital markets.

At Scotiabank we value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including but not limited to an accessible interview site alternate format documents ASL Interpreter or Assistive Technology) during the recruitment and selection process please let our Recruitment team know. If you require technical assistance please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however only those candidates who are selected for an interview will be contacted.