Back


Job Detail

Cloud Security Architect-Cloud & Platform Engineering

Scotiabank

Toronto, ON

Cloud Security Architect-Cloud & Platform Engineering

Scotiabank

Toronto, ON
 
Salary: Information not available
 

 

 

 

Requisition ID: 261087 

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

 

Scotiabank continues to be an industry leader for Payments technology and innovation. We have a history of safely leveraging new tools to enable new experiences for our customers, focusing on ensuring we protect their interests and goals. The result of this leads to modernization programs which aim to offer enriched information and transparencies to support the rapidly evolving payments community.

 

The Role

The Cloud Security Architect ensures continuity and maturity of Cloud Security and CNAPP architecture, including CSPM, CIEM, CWPP, and IaC controls, which are foundational to securing bank's cloud platforms. This strategic senior role owns day‑to‑day architecture decisions, platform integrations, and risk-driven design aligned with enterprise security standards.

 

 

What You’ll Do:

  • Lead CNAPP architecture & rollout across multi-cloud and Hybrid solutions, including integration patterns and operationalization design.
  • Design multi-cloud / hybrid security solutions covering data protection, IAM, and threat management for enterprise workloads and global user base.
  • Define security controls through policy as Code (e.g., OPA, CNAPP tool's OOTB policies, Cloud Fabric policies), aligned to enterprise standards and design its integrations points to ensure posture security, vulnerability management and remediation workflows are in place. 
  • Define and publish Security Reference Architectures and reusable patterns (secure-by-design) for engineering adoption across platforms and products.
    Partner with platform engineering / DevSecOps teams to integrate scanning and controls into CI/CD (e.g., Terraform Cloud, GitHub Actions, Azure DevOps), including risk decisions and exceptions.
  • Own cloud security architecture artifacts (diagrams, deep dives, capability views) and communicate target/current state to stakeholders.
  • Provide advisory and architecture reviews (TRA / governance forums), identify gaps, recommend pragmatic remediation, and align to delivery timelines.
  • Support audit and compliance evidence through control documentation, traceability to NIST / CSA / CIS, and responses for internal/external reviews.
    Coordinate cloud security integrations requiring network/service-boundary controls) for vendor/tool onboarding.
  • Define enterprise AI security reference architectures

 

What You'll Bring:

  • Demonstrated experience in cloud security architecture across GCP, Azure, or AWS, including deep understanding of cloud platform services and enterprise-scale design patterns.
  • Proven experience designing, implementing, and scaling CNAPP capabilities (such as CSPM, CWPP, CIEM, IaC scanning) in production-grade cloud environments.
  • Hands-on experience integrating DevSecOps controls into CI/CD pipelines such as GHA, Jenkins, including secure infrastructure provisioning using tools such as Terraform Cloud. 
  • Strong understanding of cryptography, IAM, data protection and Network architecture
  • Strong experience designing and implementing security controls aligned to frameworks such as NIST and CIS.
  • Experience with cloud-native workload security: containers/Kubernetes (e.g., GKE,AKS,EKS) and runtime controls (CWPP-style).
  • Familiarity with common security toolchain integrations (e.g., CNAPP, SSPM, SAST/DAST, logging/monitoring).
  • Strong architecture communication: writing reference architectures, diagrams, and decision records; influencing stakeholders across security/engineering/risk.
  • Certifications or equivalent depth (e.g., CISSP, CCSP) and comfort operating in regulated / audit-driven environments.
  • Experience working in Agentic AI applications is an asset.

 

What's in it for you?

  • You’ll join a team focused on building cloud platforms as products, enabling delivery teams across the enterprise rather than acting as a centralized gatekeeper or operating within a narrow delivery focus. This role offers exposure to a wide range of technologies, problem domains, and stakeholders.
  • Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
  • Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove, and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.
  • Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
  • Competitive Rewards program including bonus, flexible vacation, personal, sick days, and benefits will start on day one.
  • Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs.

 

 

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our  Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.

We are committed to hiring military and Veteran spouses and encourage you to identify your connection with the MSEN when reaching out to us or applying to any of our open roles.

 

Have questions or want to learn more about us? We would love to hear from you!

 

rochelle.mendonca@scotiabank.com

 

Whenever possible, reach out to a named contact rather than a general inbox  - it helps ensure a quicker, more personalized response. If you hit a bounce-back, let us know at

employment.Emploi@cfmws.com

About Scotiabank

The Scotiabank Veterans Network (SVN) is committed to supporting veterans, reservists, and military spouses by recognizing and valuing their unique skills and experiences. As a military-friendly employer, Scotiabank actively promotes the integration of veterans into civilian careers by offering a wide range of employment opportunities across the Bank.  SVN plays a key role in this effort, leading initiatives such as a mentorship program designed to support both current and transitioning veterans.

The team was instrumental in driving recent enhancements to Scotiabank’s reservist leave policy and organized the inaugural Valour and Vision Expo in Q4 2024, where industry leaders pledged to support veterans entering the civilian workforce.  In February 2025, Scotiabank proudly served as the lead Banking Sponsor of the Invictus Games, an international multi-sport event that aids in the rehabilitation of wounded, injured, and ill service members—both active and retired.

Additionally, SVN hosts a variety of events throughout the year, including leadership symposiums and annual Remembrance Day ceremonies, to honor and support the military community.