Manager, U.S. Information Security & Control

Requisition ID: 244792

Salary Range:76600.00-142300.00

Please note that the Salary Range shown is a guideline only. Salary offered may vary based on factors including but not limited to the successful candidates relevant knowledge skills and experience.

Join a purpose driven winning team committed to results in an inclusive and high-performing culture.

Global Banking and Markets

Global Banking and Markets (GBM) is a leading Canadian Capital Markets and Investment Banking business with a growing platform in the US and Latin America operating globally for over 100 years. Scotiabanks strong U.S. presence provides our clients an important bridge to this key global market for trade and investment flows across the Americas and the world.

Global Banking & Markets provides a full range of investment banking credit and risk management products and services relevant to the financing and strategic development needs of our clients. Our products include debt and equity financing mergers & acquisitions corporate banking institutional equity sales trading and research fixed income products derivatives energy foreign exchange and precious & metals. We also cross-sell the full range of wholesale products and services offered by the Scotiabank Group.

Be part of an innovative Global Capital Markets and Investment Banking business with a unique geographic footprint that puts capital to work for our clients across industries! We work together to drive ambition for every future!

Purpose

The Cyber and Regulatory Audit Manager will participate and manage various aspects of information security cyber risk assessments and contribute to the overall success of the U.S. IS&Cs governance regulatory compliance and risk program.

This role requires a seasoned professional with a strong background in information security risk management cybersecurity technology risk compliance policy and governance. The IS&C Manager will assist with regulatory responses audit requests and participate in various cybersecurity risk assessments risk mitigation strategies and safeguard the Bank from potential informational security threats. The person will also play a role in reviewing and implementing security policies procedures and controls to protect the organizations data systems and networks.

The position will be expected to work closely with cross-functional teams to establish and maintain a robust cybersecurity and technology risk management program to proactively safeguard the organization from security threats by ensuring that vulnerabilities are identified monitored and treated as well as assuring the Bank meets regulatory compliance.

What Youll Do

Regulatory and Compliance Management (specific to cybersecurity):
- Participates in engagements with external regulatory and internal/3rd party auditors requests for information security and cybersecurity.
- Monitors analyzes and reports on cybersecurity requirements against relevant U.S. regulations and cybersecurity standards such as NYSDFS FFIEC and NIST CSF.
- Provides support to IT&S auditors and compliance with respect to regulatory and audit information requests.
- Continuously monitors and assesses the effectiveness of security controls and processes.
- Reviews cybersecurity control library periodically and provides updates as needed.
- Participate in annual regulatory control testing exercises.
Cybersecurity and Technology Risk Governance:
- Understand how the Banks risk appetite and risk culture should be considered in day-to-day activities and decisions.
- Identifies and assesses cybersecurity and technology risks to ensure compliance with regulations and internal policies.
- Performs cybersecurity risk assessments and provide updates to US IS&C senior management.
Risk and Issues Management:
- Reports and tracks all cybersecurity-related issues that pertain to audits regulatory requirements control testing and other issues.
- Provides guidance to internal stakeholders on cybersecurity best practices.
- Prepares regular reports and presentation decks on risk management gap assessment cybersecurity-related issues for senior management and stakeholders.
- Monitors and tracks the progress of risk mitigation efforts related to cybersecurity.
- Participates in quarterly and annual Compliance Risk and Control Assessments for cybersecurity.

Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabanks Values its Code of Conduct and the Global Sales Principles while ensuring the adequacy adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational compliance AML/ATF/sanctions and conduct risk.

Champions a high-performance environment and contributes to an inclusive work environment.

What Youll Bring

Required 5 years of experience as an Information Security Analyst or related cybersecurity field with technology risk background.
Experience in IT key security controls/mechanisms and risk assessment concepts pertaining to complex data application and networking environments.
Prior experience and knowledge with NYDFS FFIEC or other US financial regulatory audits.
Have strong verbal and written communication skills in English with excellent individual project management and tracking skills.
Cybersecurity related certification is preferred (CISSP CCSP CRISC CISM).
University degree or college diploma in a cybersecurity related field is preferred.

Interested

If your experience is closely related but doesnt align perfectly with every qualification we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank!

At Scotiabank every employee is empowered to reach their fullest potential respected for who they are and embraced for their differences. Thats why we work to grow and diversify talent and engage employees in a performance-oriented culture.

Whats in it for you

Scotiabank wants you to be able to bring your best self to work and life every day. With a focus on holistic well-being our many flexible benefit programs are designed to help support your unique family financial physical mental and social health needs.

#Dallas

Location(s): United States : Texas : Dallas

Scotiabank is a leading bank in the Americas. Guided by our purpose: for every future we help our customers their families and their communities achieve success through a broad range of advice products and services including personal and commercial banking wealth management and private banking corporate and investment banking and capital markets.

At Scotiabank we value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including but not limited to an accessible interview site alternate format documents ASL Interpreter or Assistive Technology) during the recruitment and selection process please let our Recruitment team know. If you require technical assistance please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however only those candidates who are selected for an interview will be contacted.

Scotiabank is an equal opportunity employer. We evaluate qualified applicants without regard to race color religion sex sexual orientation gender identity national origin disability veteran status or any other characteristic protected by federal state or local law.