• Lead and oversee the cyber resilience program for the Bank, ensuring alignment with strategic objectives. Lead for related steering committees, such as the Tech/Cyber Resilience Steering Committee
• Drive strategic alignment of the cyber resilience program with global and regional operational resilience requirements.
• Lead alignment and advocacy for necessary changes to various supporting programs including, but not limited to, updates to relevant frameworks, policies, standards, and procedures, technology and security controls to accomplish objectives, and metrics to measure remediation and ongoing risk reduction
• Lead alignment of the cyber resilience program with global and regional operational resilience requirements.
• Strong understanding of relevant cybersecurity regulations and standards to ensure compliance related to cybersecurity resilience.
• Oversee multiple projects and deadlines, ensuring timely and effective delivery of program initiatives.
• Advocate for IS&C, building strong relationships and raising awareness of the importance of robust information security practices.
• Incorporate the Bank’s risk appetite and culture into strategic and operational decisions, ensuring alignment with broader organizational goals.
• Champion recommendations for continuous improvement based on industry best practices and evolving threats.
• Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.
• Champion a high-performance environment and contributes to an inclusive work environment.

Required Qualifications:

• Minimum of 15 years of cybersecurity and technology risk management with a strong focus on cybersecurity resilience and operational resilience.
• Experience with Technology Resilience, business continuity and disaster recovery, cloud infrastructure.
• Must have a bachelor’s degree in information technology, information security, cybersecurity, or business/finance related.
• Familiar with regulatory guidelines related to the financial services industry (NYDFS 500, FFIEC IT Handbook, OSFI, CFTC, and SIFMA.)
• Familiar with industry standards/frameworks related to cybersecurity resilience frameworks such as NIST.
• Must have CISSP or similar related Certification.

​

Preferred Qualifications:

• Banking or Financial experience preferred, with experience working in a large global organizational environment.
• Nice to have CISM, CCSP, CRISC, etc.

NA