Senior Audit Manager, IT & Cyber Security Audit

Requisition ID: #

Join a purpose-driven, results-oriented team committed to an inclusive and high-performing culture.

As part of the 3rd Line of Defence, Internal Audit provides independent, enterprise-wide assurance on the design and operation of the Bank’s internal controls, risk management, and governance processes. We are professionals who thrive in challenging environments, working with management to address control weaknesses.

The Senior Audit Manager leads and conducts IT and Cyber Security risk-based audits of medium to high complexity, following the Bank's Audit Methodology. This role supports the Audit Department in executing its global mandate, ensuring all activities comply with regulations, policies, and procedures. The Senior Audit Manager is a trusted advisor, leveraging data to provide industry-leading assurance and insights to safeguard the Bank and its customers.

1. Execution:
   • Acts as Officer in Charge (OIC) for assigned audits and as Audit Principal (AP) for low to medium complexity audits.
   • Collaborates with other audit teams and carries out specific IT and Cyber Security projects.
   • Oversees planning, execution, and reporting of audits, understanding business risks, developing audit approaches, and ensuring timely completion.
   • Prepares and reviews audit findings, communicates issues to management, and follows up on corrective actions.
   • Builds strong relationships with stakeholders and regulators as needed.
   • Ensures audit documentation adheres to standards and ethical guidelines.
2. Leadership:
   • Supports monitoring activities to stay updated on industry, regulatory, and emerging risks.
   • Fosters a high-performance, inclusive team environment, supporting professional development.
   • Provides guidance on data analytics and advanced audit techniques.
   • Prepares and delivers presentations on audit and security topics to senior management.

• Minimum 5+ years of IT and cyber security experience.
• Strong communication and interpersonal skills.
• Knowledge of cyber security processes, risk assessment, and security tools.
• Proficiency in Microsoft Office suite.
• Ability to operate in high ambiguity and fast-changing environments.
• Relevant security assessment tools and SOC software knowledge.

• Bachelor’s degree in IT, Computer Science, or related field.
• Certifications such as CISA, CISM, CISSP, CCSP, GCIA, CEH are required.
• Cloud engineering or architecture certification is an asset.

Canada, Ontario, Toronto

Scotiabank is committed to diversity and inclusion. Accommodations are available upon request during the recruitment process. Only shortlisted candidates will be contacted. Thank you for your interest.