Senior Manager, Incident Management (IB)

ID de la solicitud: 231346

Gracias por tu interés en ScotiaGBS, el mejor campus de Bogotá. 

Únete a un equipo ganador con un propósito claro, comprometido con el logro de resultados en un entorno inclusivo y de alto desempeño.
 

Purpose 

In the role of Senior Manager, Fraud Incident Management, you’re responsible for building, managing, and enhancing Scotiabank’s capability to identify and respond to account-level threats and attacks at scale. This includes incident triage, threat-actor journey mapping, containment, remediation, and identification of root cause contributors. In addition to leading and growing the IB team of incident response experts, you represent the team externally within industry groups. You regularly connect with your peers and leadership in Fraud Threat Management to ensure optimization across functions. You’re calm under pressure and draw on your years of experience and knowledge of industry best practice to inspire confidence with your team and stakeholders inside and beyond the Bank as you keep our customers and the Bank safe. Your team maintains a methodology and systematic solutions to managing critical fraud incidents and cyber-fraud attacks across Mexico, Colombia, Peru, Chile, Central America, Uruguay, and the US and Caribbean, and, where necessary, provide support to some of the largest Canadian incidents.  

Accountabilities  

• Lead the response to account-level attacks targeting any of Scotiabank’s products and digital properties across all international countries including the US. Regularly review and incorporate lessons learned. 
• Produce and provide timely incident communications for a variety of audiences including senior stakeholders to ensure awareness and appropriate levels of engagement as part of response activities. 
• Provide guidance and recommendations to your leadership, peers, and stakeholders across the enterprise to support effective decision-making during incident response, post-incident, and prevention phases. 
• Create conditions that encourage the identification of systemic issues, reoccurring problems, and identified threats/vulnerabilities to our Fraud Problem Management function. Ensure these and other root cause contributors are captured within post-incident reviews. 
• Act as a SME resource to our Fraud Problem Management team to support appropriate and effective resolutions for identified problems. 
• Manage and drive improvement for incident management KPIs including mean-time-to-detect (MTTD), mean-time-to-containment (MTTC), mean-time-to-remediation (MTTR) as measured by event type and severity. 
• Identify and recommend changes to cyber-fraud monitoring and alerts that your team receives to ensure ongoing improvements to our early-detection efforts. 
• Maintain awareness of legislative and regulatory changes that affect cyber-fraud incident management. Prepare briefing notes, reports, and other content associated with regulator interactions. 
• Conduct work item quality reviews and provide required coaching to ensure adherence to our incident protocol, incident communication matrix, service-level commitments, and all associated playbooks. 
  Regularly recognize and reinforce high-quality work and behaviours individually and in a team setting where appropriate. 
  Support the development of and maintain comprehensive incident management playbooks outlining processes, tools, data, and technology requirements, as well as communications protocols and cross-functional interaction models with key internal partners (ex. IS&C, Crisis Management, Corporate Security, and technology).  
• Contribute to and execute against the cyber-fraud team roadmap that ensures the team is equipped with the expertise, procedures, data, technology, and relationships they need to be successful in preventing, early detection, and response to account-level attacks. 
• Speak internally and externally as a subject matter expert (SME) in cyber-fraud prevention and response. 
• Work as a strategic partner and build resilience and capability within Fraud Management teams and business lines that increase their preparation for, and ability to manage potential incidents that may impact their operations and customers. 
• Support vendor relationships associated with cyber-fraud red teaming & incident response. 
• Foster and maintain ongoing team awareness of the cyber-fraud threat landscape, including through certification, continuing professional education (CPE), industry group participation, threat intelligence feeds, and direct research. 
• Understand and apply the Bank’s risk appetite and risk culture for day-to-day activities and decisions. 
• Contribute to the overall success of the Global Fraud Management function, ensuring specific individual goals, plans and initiatives are delivered in support of the team’s business strategies and objectives.  Ensures all activities conducted in accordance with Scotiabank’s values and Code of Conduct and are in compliance with governing regulation and internal policies, procedures, and standards. 
• Build and maintain a high-performance environment with a people strategy that attracts, retains, develops and motivates the team by fostering curiosity and an inclusive work environment and using a coaching mindset and behaviours; communicating vision, values, and business strategy; and, managing succession and development planning for the team. 
• 
  Primary Manager: 
  L9 Global Head, Fraud Threat Management 

Direct Reports:
L7 Manager, Incident Management (x2) 

L6 Incident Responder 

L5 Incident Analyst 

Note: This is a new function and the above identified direct report roles are intended to be introduced at a future date and are subject to change. 

Dimensions 

Lead direct reports residing in Mexico while providing support to Global Fraud Management teams (650+ employees across six diversified markets of Canada, the United States, and the Pacific Alliance – Mexico, Peru, Chile, and Colombia). 

Leading incidents and workstreams in response to significant disruptive events in direct partnership with peers across Crisis Management, Cybersecurity Operations, Corporate Security, Privacy, Legal, and Global Incident Management. 

The team is expected to triage ~1,096 events and 37 incidents annually, manage an inventory of 29 problems by the end of 2024, and reduce average gross annual incident related losses from $20MM to $4MM by 2027. 

Ability to operate & prioritize under pressure with minimal direction in a changing environment. 

Brings to the role personal presence, confidence, and ability to operate with the highest level of discretion and confidentiality. 

Flexible and creative thinker with the ability to define business tradeoffs, generate out-of-the-box solutions and manage uncertainty; proactively identify and solve complex problems impacting management and business direction

Education / Experience / Other Information

B2+ English Level 

5+ years working in a leadership capacity within cyber-fraud or security incident management. 

cybersecurity industry certifications (ex. CISSP, CISM, CISA, GCIH, etc.). is a plus 

Demonstrated knowledge of incident management, threat-intelligence, and customer identity & access management (CIAM). 

Knowledge of relevant regional and country specific regulatory bodies. 

Other relevant certifications are an asset (ex. CFE, CIPP/C, ITIL, etc.). 

Bachelor’s degree in computer science, cybersecurity, or similar is an asset. 

Ubicación(s):  Colombia : Bogota : Bogota

ScotiaGBS forma parte del grupo de empresas de Scotiabank ubicado en Bogotá, Colombia, y fue creado para apoyar diversos procesos del Banco y el desarrollo y ejecución de su estrategia global de servicios en 15 países de las Américas. Está compuesto por 7 unidades de servicio. Ofrecemos un ambiente de trabajo inclusivo y positivo, además de ventajas competitivas.

En ScotiaGBS, valoramos las habilidades y experiencias únicas que cada persona aporta al Banco y nos hemos comprometido a crear y mantener un entorno inclusivo y accesible para todos. Los candidatos deben postularse directamente en línea si desean ser tomados en cuenta para este puesto. Agradecemos a todos los candidatos por su interés en esta oportunidad profesional en ScotiaGBS; sin embargo, solo contactaremos a quienes hayan sido seleccionados para una entrevista.