Senior Manager, IT Risk, Europe

Requisition ID: 202764  
Employee Referral Program – Potential Reward: £2,500.00 

We are committed to investing in our employees and helping you continue your career at Scotiabank. 

Purpose
 
Directly support the Director, CIO Europe to collaboratively assess, analyze and quantify IT risk, design controls and assist with implementation. The Senior Manager will be assigned to primarily support IT risk related activities for those CIO and enterprise technology portfolios where priorities will be identified.
 
Assist the Director, CIO Europe with the IT Risk Function in the UK and Ireland to execute on the key elements of Technology risk assessments and ensure that governance (i.e. plan, process, report) processes are in place and IT Risk is being managed and remediated.
 
Build robust IT Risk related controls and processes and ensure that controls are maintained and adhered to in the assigned IT portfolios.
 
Contribute to the overall success of Technology for Global Banking and Markets by ensuring specific individual goals, plans, and initiatives are executed/delivered in support of the team's business strategies and objectives.
 
Ensure all activities conducted are in compliance with governing regulations, internal policies and procedures.
 
Accountabilities
•    Work with the IT Directors in Europe and the IT&S Organization: Identify, assess, prioritize and report on material IT risks for IT and aligned business areas. This will require working with various Risk Advisors across the organization.
•    Conduct detailed IT Risk assessments and ensure that IT Risk assessments and outputs are recorded in enterprise tools and are in full compliance of defined policies and common standards, including the IT Risk Management Policy and Framework.
•    Work closely with internal and external IT auditors on audits and regulatory exams to demonstrate compliance with obligations and oversee submissions of Requests for Information.
•    Act as the enterprise Regulatory Compliance Management (eRCM) coordinator for IT Risk Owners which includes ensuring the controls inventory is accurate and capturing the impacts of new regulations.
•    Perform IT Risk control testing and monitoring (as applicable) and ensure that testing activities are conducted in compliance with governing regulations, internal policies and procedures.
•    Identify pervasive IT risk issues or issues that are common across the landscape and help implement preventative controls across IT&S.
•    Partner with other risk groups to assess, implement and communicate new/updated risk controls, frameworks, policies, risk indicators, metrics and limits.
•    Act as SME to IT Stakeholders with regards to IT best practices, regulatory obligations, and governance requirements.
•    Ensure implementation of a strong IT risk culture in partnership with various IT Risk Advisors and Risk Owners.
•    Support development of tools and technology to support the management of IT risk across the Bank and Continuously identify opportunities to improve effectiveness and enhancements of risk identification and management policies and processes. 
•    Perform Risk Control Self-Assessments (RCSA) for IT environments of relevant business lines, Privacy Assessments (GDPR), and Information/Cyber Security risk assessments in conjunction with the UK CISO.
 
 
Skills and experience
•    Candidates should have IT and Risk management experience (governance, operations, audit, control functions, compliance, risk management) of over 5+ years.
•    Extensive knowledge of the UK / European regulatory and compliance environment and ability to assess impact of regulatory initiatives such as MiFID II, MAR, GDPR, CRDV, CRR on IT risk appetite and frameworks.
•    Requires expert IT Risk management experience (i.e., systems design, security, availability, disaster recovery, third party risk management, change management, release management). Exposure to cloud controls would be a plus.
•    Strong negotiation and influencing capabilities, supported by well-developed analytical competencies.
•    Good knowledge of global banking businesses including related systems and procedures.
•    Demonstrated ability to balance competing or conflicting goals of various departments and stakeholders.
•    Good communication, facilitation and presentation skills for developing communication strategies for Executive approval through to implementation of strategies and programs.
 
 
Certifications Preferred:
•    Certified Information Systems Auditor (CISA)
•    Certified Information Systems Security Professional (CISSP)

Location(s):  Ireland : Leinster : Dublin 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.