Security Analyst

Join a purpose driven winning team committed to results in an inclusive and high-performing culture.

Cyber Automation - Scotiabanks Cyber Integration & Automation (CIA) team’s Policy Design and Implementation group is responsible for designing, testing, and implementing security control configurations operated under Cyber Security Services (CSS). This involves building security policy configurations and testing to ensure they meet business requirements and deploying them globally across the bank’s security infrastructure. This team also provides post‑implementation support and root‑cause analysis to support the bank’s mission and mandates for cyber security. Coverage and maintenance of Sensitive Data Loss Prevention classifications and policies, including Data Discovery. Key roles in the Email DLP replacement technology program and DLP technology alignment across the bank and subsidiaries. The Cyber Control and Defense group is seeking an IT Security Analyst to manage and support the bank’s security controls with a focus on solutions around data loss prevention (DLP). This individual will report directly to the Senior Manager of Cyber Integrations & Automation.

The successful candidate will not only have the opportunity to gain valuable experience at a top Canadian bank but also get exposure to one of the most forward‑thinking security groups within banking while working hands‑on with some of the newest software and applications.

• Build, create and manage policies across Data Loss Prevention technologies in the Bank
• Work with various teams on creating policies and work with vendors to keep infrastructure and technology up to date
• Work with DLP software such as Trellix (McAfee), Big ID, Microsoft, Forcepoint, Broadcom, Zscaler, GCP, Proofpoint or other similar tech
• Plan, coordinate and implement security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction or disclosure of information
• Plan, coordinate and implement security measures to safeguard the bank’s networks and sensitive data
• Identify security issues and risks and develop mitigation plans
• Architect, design, implement, support and evaluate security‑focused tools and services including project leadership roles
• Develop and interpret security policies and procedures
• Participate in security compliance efforts
• Develop and deliver training materials and perform general security awareness and specific security technology training
• Evaluate and recommend new and emerging security products and technologies

• 5 years of experience in a similar IT Security Analyst or Cybersecurity role
• 3 years of combined experience with DLP technologies: Trellix / McAfee, Proofpoint, Broadcom, Forcepoint, Zscaler, Symantec
• 3 years of experience monitoring or investigating DLP incidents directly on application or console
• 3 years of experience with end‑user troubleshooting or desktop support, preferably using Windows
• Proficiency in MS Office, advanced knowledge in MS Excel
• 2 years experience with Regex or Python scripting programming languages – intermediate level preferred
• Bilingual in Spanish (strong preference)
• Experience in Banking / Financial Institutions
• Experience in international regulatory and compliance frameworks
• Experience in infrastructure or application‑level vulnerability testing and auditing
• Experience with Automation APIs and SaaS services
• Microsoft Active Directory and file server / directory experience
• Project management experience
• Excellent verbal and written communication skills are essential
• Must be reliable, proactive, results‑oriented, customer‑focused and attentive to details
• Must be flexible to adapt to a dynamic environment, make quick and sound decisions under pressure
• Strong organizational skills, excellent problem‑solving, communication and collaboration skills
• Bachelor’s degree in a technical field such as computer science, computer engineering or related field required
• Applicable security certifications (CISSP, CISA, ITIL) are nice to have
• Strong technical Security Analyst skillset with DLP technologies and incident investigation
• Data governance and/or financial data classification knowledge
• Banking experience is an asset (DLP works with special financial classifications)

• Diversity, Equity, Inclusion & Allyship – We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are and are embraced through bias‑free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employees to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
• Accessibility and Workplace Accommodations – We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.
• Upskilling through online courses, cross‑functional development opportunities and tuition assistance.
• Competitive Rewards program including bonus, flexible vacation, personal sick days and benefits will start on day one.
• Community Engagement – no matter where you choose to work from, we offer opportunities for community engagement & belonging with our various programs such as hackathons, contests, Humans of Digital and much more!

Canada: Ontario: Toronto

Scotiabank is a leading bank in the Americas. Guided by our purpose – for every future we help our customers, their families, and their communities achieve success through a broad range of advice products and services including personal and commercial banking, wealth management and private banking, corporate and investment banking and capital markets.

At Scotiabank we value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including but not limited to an accessible interview site, alternate format documents, ASL Interpreter or Assistive Technology) during the recruitment and selection process please let our Recruitment team know. If you require technical assistance please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however only those candidates who are selected for an interview will be contacted.

Full Time

1