Team Lead & Information Security Analyst Advisory
Bogota, DC, CO
Requisition ID: 204603
We are committed to investing in our employees and helping you continue your career at ScotiaTech.
Purpose
Security Assurance within Security Risk Governance is responsible for reviewing privileged accesses and configurations on a scheduled basis to identify areas where access and configurations have been changed without cause.
- Demonstrating security operation teams adhere to defined processes and procedures, supporting the achievement of the Bank’s information security objectives.
- Reviewing operational practices, reporting gaps, and working with the process owners to achieve resolution of any identified deficiencies.
- Identifying and managing compliance related issues, tracking of IT risks as well as other key performance indicators.
Accountabilities
- Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge.
- Lead and/or participate in security and due diligence reviews over existing or new processes and procedures and arrangements.
- Lead and review programs against internal processes such as application processing, security administration and management oversight to ensure that processes are effective and reliable.
- Review access to critical systems.
- Identify malicious activity.
- Lead a team to investigate, escalate and track control deficiencies, ensuring action items and remediation plans are vigorously tracked to closure.
- Conduct detailed, risk-based evaluations/monitoring of Information Technology (IT) controls utilizing the Bank’s information security standards and regulatory requirements
- Provide knowledgeable opinion on the above-mentioned entities’ compliance with information security standards.
- Understand how the Bank’s risk appetite and risk culture should be incorporate into in day-to-day activities and decisions.
- Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.
- Champions a high-performance environment and contributes to an inclusive work environment.
Dimensions
- The incumbent will lead a team of 4 analysts and/or conduct reviews of IT application and supporting IT pervasive controls.
- The incumbent will maintain documentation supporting Business
- Day to day decisions regarding approaches to security and control reviews are handled independently by the incumbent using a high degree of discretion and judgment.
- The incumbent is expected to lead their direct reports, ensuring assignments are completed within agreed targets and completion criterion.
- The incumbent is guided by the Bank’s Information Security Policy and Standards and the requirements of Bank regulators and auditors as well as departmental procedures.
- As a people leader, the incumbent is expected to manage the human resources component for their direct reports.
Education / Experience / Other Information
- Must to have:
- Bi-lingual English and Spanish language competency, especially in terms of IT/technical language
- Expertise in IT key controls and risk assessment concepts.
- One or more industry certifications like CISA, CRISC, CISSP etc. in a related field is preferred with 1-2 years practical experience in information technology
- Strong verbal and written communication skills, especially report writing ability
- Advanced presentation and communication skills.
- English level B1.
- Nice to have:
- Familiarity and experience with several Bank’s application, Network and infrastructure environment including, but not limited to IBM mainframe, AS400 and DB2
- University degree or college diploma in a related field is preferred
- Thorough knowledge of the Bank’s application and infrastructure environment.
- Sound knowledge of regulatory requirements..
Working Conditions
- Work in a standard office-based environment; non-standard hours are a common occurrence.
#LI-Hybrid
Location(s): Bogotá or Home-Office
ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits.
At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted.
Note: All postings in me@Scotiabank will remain live for a minimum of 5 days.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Business Intelligence CISA CISSP Compliance CRISC Governance Mainframe Monitoring Risk assessment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.