• Develop a Strategy for IAM Governance and the Bank’s IAM On-boarding Roadmap
• In partnership with IAM Product and Architecture, provide governance for IAM solutions and initiatives across global channels.
• Develop mandatory and optional controls for application, platform and human adoption.
• Contribute to the Enterprise IAM technology roadmap and recommend capabilities for engineering and implementation.
• Work with existing governance teams to author standards that inform accountability and enable proper risk management and governance.
• Work with standards and governance partners to develop a gap analysis and develop adoption expectations, impacts, and compliance dates.
• Partner with CIO Partners and Business Channels, teams to develop a control program and drive control adoption
• Chair the newly formed Identity and Access Management Cross-Functional Leadership Council.
• Establish strong partnerships with channels and service communities accountable for building and integrating into IAM services.
• Facilitate, influence, and govern to institute best practices defined through security engineering and enterprise IAM patterns, designs, and implementation blueprints.
• Work with risk partners to share subject matter expertise, representing IAM on cross-functional transformational programs, to drive priorities and risk reduction.
• Partner with Enterprise Security Services, Cybersecurity Operations, Enterprise Platforms, Architecture, and Corporate Security
• Fortify alignment between access management standards and control adoption.
• Support cybersecurity operations on anomalies and potential insider incident investigation.
• Partner with enterprise data enablement and architecture teams on global identity strategy, focusing on risk measurement and controls.
• Drive Continuous Evolution of IAM Control Improvements and Risk Reduction
• Development with IAM Engineering, risk partners, CIO teams, platform leaders, regional CISOs, and all lines of defense on continuous enhancement and risk reduction.
• Participate in audits where IAM is engaged either directly or tangentially in support of other teams.
• Work with Control Testing teams to develop appropriate tests and plug control gaps expeditiously when found.
• Contribute to regulatory meeting materials and attend to represent if required.
• People Leader
• Lead a dynamic department of security business analysts, onboarding professionals and technical operators of ~5 FTEs and scaling bench of contractors and vendors if required.
• Participate in risk committees and steering councils to represent Identity and Access Management incorporated into enterprise decisions.
• Participate in major policy and governance initiatives as the access management subject matter expert (e.g., standard updates, regulatory materials).

Required Qualifications

• University degree, preferably in Cybersecurity, Engineering, Computer Science or related field, and a minimum of 10 years’ experience in Information Security leadership roles, with at least 5 years leading a Security function in a complex, global organization. 5 years with experience building and running enterprise programs.
• Detailed knowledge of, and experience working with, one or more formal security frameworks. Detailed knowledge of Canadian and US security regulations is highly desired.
• Demonstrated ability to lead global teams in a highly complex and matrixed organization. Ability to lead through influence, excellence and example is essential to success.
• Strong leadership and collaboration skills. Excellent oral and written communication, ability to present confidently to senior executives, attention to detail and strong planning and management ability.
• The incumbent must be a very strong leader, with demonstrated ability to lead diverse teams and build and maintain credibility with technical and non-technical stakeholders, alike. Deep knowledge of relevant technologies must be combined with the ability to lead highly technical teams, strong business acumen and excellent communication and listening skills.
• The incumbent should have experience as a key partner in global technology transformation efforts, demonstrating the ability to inspire and align diverse points of view, drive efficient and effective decision-making, and to deliver and support a robust information security governance framework.
• Deep and broad knowledge of enterprise and security technologies is expected. Specific strong knowledge and experience with identity, common hosting, storage and networking technologies, as well as cloud, is required.
• Experience with successful repatriation of services is highly desired.
• English fluency required.

Preferred Qualifications

• Financial services and, specifically, banking experience is highly desired.
• Experience delivering excellent results in a large, complex and global environment with a mix of emerging, current and legacy technology.
• Familiarity and direct experience with outsource delivery models is essential.
• Experience with and knowledge of formal project management methodologies is desired.
• Spanish ability a plus.

If your experience is closely related but doesn’t align perfectly with every qualification, we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank!

At Scotiabank, every employee is empowered to reach their fullest potential, respected for who they are and, embraced for their differences. That’s why we work to grow and diversify talent and engage employees in a performance-oriented culture.

What's in it for you?

Scotiabank wants you to be able to bring your best self to work – and life, every day. With a focus on holistic well-being, our many flexible benefit programs are designed to help support your unique family, financial, physical, mental, and social health needs.

Location(s): United States : New York : New York City

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know.