Information Security Consultant Lead

hace 2 semanas

Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completo
Title: Information Security Consultant Lead

Requisition ID: 205097

We are committed to investing in our employees and helping you continue your career at ScotiaTech.

Purpose

Opportunity to showcase your leadership in the Technology Risk Management space by supporting the Global Wealth Engineering team, otherwise known as GWE. An Information Security Advisor provides advisory services to assist in the development and support of sound security strategies and secure control processes to protect the Bank's information and data resources.

The Team

Contributes to the overall success of IT&S and ICRM in GWE, ensuring specific individual goals, plans, initiatives are executed / delivered in support of the team's business strategies and objectives. Ensures all activities conducted follow governing regulations, internal policies and procedures.

Accountabilities

  1. Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge.
  2. Acting as a central point of reference and core competency for Information Security. Assisting in the classification and protection of data resources by providing guidance on secure and cost effective implementation of Bank's security policies and standards.
  3. Representing Information Security in projects, initiatives, mergers and acquisitions. Working with business lines to develop sound security strategic and tactical plans towards the reliable implementation of consistent and secure control processes to protect the Bank.
  4. Providing guidance to design, develop and implement sound risk management controls in accordance with Bank's standards that assure the Bank's compliance with industry regulations.
  5. Pursuing security and control process improvements to advance security compliance and improve internal processes.
  6. Participate in initiatives and projects driven by various business lines. Guide project and delivery managers to design and establish sound information security practices, facilitating key artifacts such as security design documents, threat/risk assessments and data classifications.
  7. Liaise with internal and external security teams and business lines to develop sound security strategic and tactical plans towards the reliable implementation of consistent and secure control processes to protect the Bank.
  8. Generate reports associated with the vulnerabilities reported by the different security tools to follow up and manage the remediation of vulnerabilities and weaknesses identified in the technological platform.
  9. Monitor, follow up, and define specific actions to guarantee the security compliance of the organization's assets.
  10. Execute tasks to keep the security controls and indicators within the optimal thresholds for decreasing the level of security risk in the Organization.
  11. Work with our business line partners to assess and ensure compliance to the Bank standards. Escalating risk through appropriate channels.
  12. Understand how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decisions.
  13. Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank's Values, its Code of Conduct and the Global Sales Principles.
  14. Champions a high-performance environment and contributes to an inclusive work environment.

Dimensions

  • Direct reporting line to Director, ICRM GWE. Several projects related to a portfolio of approx. +150 banking applications. No budget, project or financial oversight.

Education / Experience / Other Information

  • Must have a solid understanding and experience with security controls/mechanisms and threat/risk assessment techniques pertaining to complex data, application and network environments.
  • Strong knowledge of cloud security controls, cloud computing concepts, and cloud architecture security.
  • Knowledge of financial services' Security Governance Framework (policies and standards) is a strong asset.
  • Knowledge of cryptographic concepts leveraged in modern applications and systems.
  • Knowledge of static and dynamic code analysis.
  • Knowledge of Identity & Access Management, PKI, Intrusion Prevention, and vulnerability assessments.
  • Knowledge of network security components such as firewalls, routers, intrusion detection, anti-virus software.
  • Strong Microsoft Office software skills particularly Excel, Word, Visio, and PowerPoint.
  • Must have advanced verbal and written communication skills in English (B2).
  • Working knowledge of regulatory guidelines related to the financial industry like OSFI.
  • University degree in computer science/related field or relevant work experience.
  • Certifications CISSP, CISM, CCSP, CRISC or alike are nice to have.
  • Other technical certifications are nice to have.

Working Conditions

  • Work in a standard office-based environment; non-standard hours are a common occurrence.

Location(s): Bogotá or Home-Office

ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits.

At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted.

#J-18808-Ljbffr

  • Information Security Consultant

    hace 5 días

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    Job Description We are looking for a highly skilled information security consultant to join our team at Control Risks. The successful candidate will have a strong background in information security and risk principles, with experience addressing enterprise information security, project management, and ability to translate technical analysis into actionable...

  • Information Security Consultant

    hace 4 días

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    **Job Description**The Cyber Security Specialist will support the business and contribute to individual and client-facing outputs in the following areas:Delivering Engagements: Deliver projects such as assessing cyber risk, program maturity, and developing strategic and technical program recommendations.Supporting Business Development: Participate in client...

  • Information Security Specialist

    hace 5 días

    Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completo

    About UsScotiabank is a leading financial institution committed to investing in its employees and helping them continue their career. Our company overview includes our commitment to security, risk governance, and information technology.The JobWe are seeking a Cybersecurity Operations Manager who will lead a team of analysts and conduct reviews of IT...

  • Information Security Specialist

    hace 5 días

    Bogotá, Bogotá D.E., Colombia TeleTech Holdings, Inc. A tiempo completo

    About the RoleThis is a unique opportunity to work as an Information Security Advisor with TeleTech Holdings, Inc. The successful candidate will have a strong background in cyber security and experience working with development teams. As an Information Security Advisor, you will play a key role in ensuring the security and integrity of our systems and...

  • Information Security Specialist

    hace 3 días

    Bogotá, Bogotá D.E., Colombia Emmes A tiempo completo

    Overview Information Security Analyst LATAM Remote Emmes Group: Building a better future for us all. Emmes Group is transforming the future of clinical research, bringing the promise of new medical discovery closer within reach for patients. Emmes Group was founded as Emmes more than 47 years ago, becoming one of the primary clinical research providers to...

  • Information Security Specialist

    hace 3 días

    Bogotá, Bogotá D.E., Colombia Emmes A tiempo completo

    Overview Information Security Analyst LATAM Remote Emmes Group: Building a better future for us all. Emmes Group is transforming the future of clinical research, bringing the promise of new medical discovery closer within reach for patients. Emmes Group was founded as Emmes more than 47 years ago, becoming one of the primary clinical research providers to...

  • Security Assurance Lead

    hace 4 horas

    Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completo

    **Job Overview**The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits.As a Security Assurance Lead, you will be responsible for leading a team of analysts and conducting reviews of IT application and supporting IT pervasive controls.Key...

  • Consultant, Cyber Security

    hace 4 días

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    Please submit your CV in English.We are growing our cyber security team.The team provides strategic and technical cyber security consulting to help clients reduce their risk, secure their information, and respond to incidents.We are looking for information security and consulting professionals with a passion for helping clients around the world secure their...

  • Enterprise Information Security Professional

    hace 5 días

    Bogotá, Bogotá D.E., Colombia Smart Option Search A tiempo completo

    Job OverviewSmart Option Search is seeking a highly experienced Enterprise Information Security Professional to join our team. In this role, you will play a critical role in defining and establishing accreditation and validation strategies from an engineering perspective. This involves working closely with our Information Security team to gather and maintain...

  • Information Security Analyst Senior

    hace 3 semanas

    Bogotá, Bogotá D.E., Colombia Scotiabank A tiempo completo

    Requisition ID: 212142 Thanks for your interest in ScotiaTech, Scotiabank's new and innovative Technology hub in Bogota. Join a purpose driven winning team that promotes creativity and innovation in a fast-paced environment, where we're always committed to results, in an inclusive, diverse, and high-performing culture. Purpose Security Assurance within...

  • Consultant, Cyber Security

    hace 2 semanas

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    We are growing our cyber security team. The team provides strategic and technical cyber security consulting to help clients reduce their risk, secure their information, and respond to incidents. We are looking for information security and consulting professionals with a passion for helping clients around the world secure their business and manage their cyber...

  • Information Security Risk Manager

    hace 14 horas

    Bogotá, Bogotá D.E., Colombia PayU Payments Private Limited A tiempo completo

    A Career in Information Security with PayUPursuing a career in information security requires dedication, expertise, and passion for protecting sensitive data and maintaining operational continuity. At PayU, we believe that this role plays a vital part in ensuring our organization remains secure and compliant with industry regulations.The successful candidate...

  • Consultant, Cyber Security

    hace 3 semanas

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    Please submit your CV in English. We are growing our cyber security team. The team provides strategic and technical cyber security consulting to help clients reduce their risk, secure their information, and respond to incidents. We are looking for information security and consulting professionals with a passion for helping clients around the world secure...

  • Consultant, Cyber Security

    hace 6 días

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    Please submit your CV in English. We are growing our cyber security team. The team provides strategic and technical cyber security consulting to help clients reduce their risk, secure their information, and respond to incidents. We are looking for information security and consulting professionals with a passion for helping clients around the world...

  • Consultant, Cyber Security

    hace 3 días

    Bogotá, Bogotá D.E., Colombia Control Risks A tiempo completo

    Please submit your CV in English. We are growing our cyber security team. The team provides strategic and technical cyber security consulting to help clients reduce their risk, secure their information, and respond to incidents. We are looking for information security and consulting professionals with a passion for helping clients around the world secure...

  • IT Security Consultant

    hace 6 días

    Bogotá, Bogotá D.E., Colombia Zemsania Global Group A tiempo completo

    Responsibilities: As an IT Security Consultant at Zemsania Global Group, you will be responsible for:Assessing and mitigating security risks for clientsDeveloping and implementing security strategies and plansProviding technical support and guidance to clients and colleaguesStaying current with industry trends and best practicesRequirements: To succeed in...

  • Senior Azure Security Consultant

    hace 3 días

    Bogotá, Bogotá D.E., Colombia J.S. Held LLC A tiempo completo

    About J.S. Held LLCJ.S. Held LLC is a global consulting firm that provides comprehensive services to advise clients on realizing value and mitigating risk. We combine technical, scientific, financial, and strategic expertise to deliver trusted advice to organizations facing high stakes matters demanding urgent attention, staunch integrity, proven experience,...

  • Information Security Advisor

    hace 2 semanas

    Bogotá, Bogotá D.E., Colombia Teletech Holdings, Inc. A tiempo completo

    WelcomePlease sign in or register with us.| My Account OptionsJob Description - Information Security Advisor (03ZVZ) Information Security Advisor Be the spark that brightens days and ignite your career with TTEC's award-winning employment experience.As an Information Security Advisor working remotely in Colombia, you'll be a part of bringing humanity to...

  • Solo Quedan 15h Information Security and Compliance Lead

    hace 1 semana

    Bogotá, Bogotá D.E., Colombia Horatio A tiempo completo

    Information Security and Compliance Lead (BOG)Horatio Bogota, D.C., Capital District, ColombiaPosition Summary:The Information Security and Compliance Lead is responsible for ensuring that Hire Horatio's information technology (IT) systems and processes comply with relevant laws, regulations, and standards.Responsibilities:- Monitor and interpret regulatory...

  • Information Security Advisor

    hace 3 semanas

    Bogotá, Bogotá D.E., Colombia TeleTech Holdings, Inc. A tiempo completo

    Welcome Please sign in or register with us. | My Account OptionsJob Description - Information Security Advisor (03ZVZ)Information Security AdvisorBe the spark that brightens days and ignite your career with TTEC's award-winning employment experience. As an Information Security Advisor working remotely in Colombia, you'll be a part of bringing humanity to...