Senior Manager, U.S. Cyber and IT Risk Management

Job title: Senior Manager, U.S. Cyber and IT Risk Management

Company: Scotiabank

Job description:

Requisition ID: 221008
Salary Range: $117,400.00 – $224,700.00

Just a heads-up: the salary range provided is a general guide. Your unique blend of skills, experience, and knowledge will help determine your specific offer!

Join Our Winning Team!

Are you ready to be part of something meaningful? At Scotiabank, we’re looking for individuals who are passionate, results-driven, and eager to thrive in a culture of inclusivity and high performance.

About Global Banking and Markets (GBM)

As a key player in Canadian Capital Markets and Investment Banking, GBM has been on the scene for over a century, expanding its reach in the U.S. and Latin America. Our strong presence in the U.S. allows us to serve as a vital link for our clients navigating trade and investment opportunities across the Americas and beyond.

With a diverse array of products—from debt and equity financing to mergers and acquisitions, and everything in between—our Global Banking & Markets team is dedicated to addressing our clients’ financing and strategic development needs.

Your Purpose in This Role

We’re looking for someone to help enhance our U.S. Cyber and IT Risk Management Framework within the second line of defense. Your contributions will play a vital role in ensuring that our oversight, governance, communication, and training efforts are on point. You’ll have the opportunity to promote best practices and compliance while playing a part in shaping the future of IT and Cyber Risk Management in the U.S.

What You’ll Be Doing

• Framework Maintenance: Keep our Cyber and IT Risk Management Framework up-to-date, acting as a go-to resource for all things IT and Cyber Risk within the U.S.
• Consultation: Work closely with various business lines to assess IT risks, giving them the insights they need to reach their strategic goals while ensuring thorough oversight.
• Challenge the Norm: Dive into the Risk & Control Self-Assessment (RCSA) processes, pushing back on IT Risk elements when necessary to ensure sound practices.
• Incident Analysis: Lead investigations into IT incidents to identify root causes and contribute to remediation efforts.
• Control Assessments: Conduct in-depth evaluations of key processes to spot and address IT risk control gaps.
• Risk Monitoring: Keep a watchful eye on cyber security risks, inspecting both internal controls and external reports that could impact our operations.
• Compliance Monitoring: Ensure our practices align with established IT Risk Policies, Standards, and Guidelines.
• Reporting: Facilitate monthly meetings for the U.S. Information Risk Working Group and prepare reports for senior management.

What You Bring to the Table

• A solid understanding of IT Risk Management (think Logical Access, Data Protection, and Disaster Recovery).
• Background in Cybersecurity Risk Management is a plus!
• At least 7 years of experience in tech-focused roles or risk management, preferably within financial institutions.
• Relevant industry certifications (like ISACA CRISC) are great to have!
• Familiarity with regulatory rules (FFIEC, NYDFS 500) and frameworks (NIST, COBIT) would certainly help in this role.

Ready to Dive In?
Even if your experience isn’t an exact match for every qualification, we encourage you to apply—we might just find that you’re the perfect fit for this or other opportunities at Scotiabank!

At Scotiabank, we empower every employee to reach their potential and celebrate the unique perspectives each one brings to our team. We’re committed to nurturing a diverse and inclusive workplace.

What’s in It for You?
We believe that bringing your best self to work—and to life—is crucial. That’s why we offer a variety of flexible benefit programs to support your personal, financial, physical, social, and mental well-being.

Location: New York, NY

At Scotiabank, we aim to empower our customers and communities to thrive through a wide range of banking services, including commercial banking, wealth management, corporate banking, and capital markets.

If you need any accommodations during the recruitment process, please reach out to our team. We appreciate your interest in joining Scotiabank, and while we can’t respond to every application, we will contact candidates who move forward in the process.

Expected salary:

Location: New York City, NY

Job date: Thu, 27 Mar 2025 01:01:10 GMT

Apply for the job now!