Lead, Security Content Research & Design (detection Engineering)

Requisition ID: 220335

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

The Team
Scotiabank’s Cyber Security Operations (CSOps) is responsible for protecting the Bank and responding to cyber threats and events. The Cyber Automation & Defense group within CSOps is responsible for assessing, implementing, and administering enterprise security controls to safeguard Scotiabank’s informational assets and reduce security risk posture.

The Role:
Reporting to the Senior Manager, Security Content Development, the successful candidate will work as part of the Cyber Automation & Defense group, and will be responsible for conducting research, design and enablement of control enhancements, in addition to taking lead role in detection engineering, supporting the Security Content Development group within the team.
The Lead, Security Content Research & Design will work to identify security exposures in the organization and develop appropriate compensating controls.

Is this role right for you?

• You thrive in a fast-paced environment, coordinating multiple tasks that can be occurring simultaneously

• You are great at problem solving and collaborating across the organization to solve complex security problems

• You enjoy incorporating continuous improvement in your daily operations

• You are great at conducting security control analysis

• You are great at communicating problems, solutions and recommendations to senior leadership level

• You want to be leading complex projects providing security advice to ensure information security risks are mitigated

Do you have the skills that will enable you to succeed in this role?

• University degree, preferably in Computer Science, Cybersecurity or related field is required

• You possess advanced communication (verbal/written/presentation) skills in English. The same in Spanish is a strong asset.

• Minimum 8 years' experience building security content to detect security events based on MITRE Framework.

• Minimum 8 years hands-on technical experience with security controls/mechanisms.

• Experience building security content for endpoint and cloud solutions.

• Experience building XDR content, securing databases/AIX/Unix/Linux/Mac.

• Hands on experience building and running a TTP (Tactics, Techniques, and Procedures) framework methodology for pattern and behaviour-based content development

• Experience involving red team (Vulnerability Assessments, Web app assessments), consulting (Compliance, policy creation), SOC (Security Operations Centre) and Device Management

• Experience in Google Security Command Centre and Microsoft Defender

• Experience in Web gateway security and email gateway security

• Experience with building security program to defend against Advanced Persistent Threat (APT)

• Experience with sizing, deploying, maintaining, and hardening SIEM (Security Information and Event Management) and NGFW solutions.

• Experience in Data discovery and DLP (Data Loss Prevention) use case development is an asset

• Field related certifications (CISSP, CISM, CCSP) are assets

What's in it for you?

• Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.

• Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.

• Upskilling through online courses, cross-functional development opportunities, and tuition assistance.

• Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.

• Dynamic Ecosystem - Free tea & coffee, universal washrooms, and lots of space for team collaboration.

• Community Engagement - No matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs such as hackathons, contests, cooking with friends, Humans of Digital and much more!

#cyberatscotia

Location(s): Canada : Ontario : Toronto || Canada : Ontario : Scarborough

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.