Requisition ID: 231708

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Contributes to the overall success of the Global Technology Control Testing ensuring specific individual goals, plans, initiatives are executed / delivered in support of the team’s business strategies and objectives. Ensures all activities conducted are in compliance with governing regulations, internal policies, and procedures.

The Global Technology Control Testing team plays an important role in the Bank’s Three Lines of Defense Framework, providing First Line of Defense for the Enterprise portfolio on all technology risk domains, including Cyber Security, Data Privacy, Software Lifecycle Management, Capacity, Incident Management, Disaster and Backup Recovery, Third Party Management, Project Management, and Audit & Regulatory issue remediations. 

Manager, Global Technology Control Testing directly supports the Senior Manager Global Technology Control Testing to collaboratively assess high risk processes across in-scope business lines and support the execution of the control test exercise(s). This role is part of a strategic and comprehensive IT Risk Management Function within Technology Control Testing and ensures control testing execution and reporting in accordance with regulatory expectations, risk appetite, organizational risk practices and evolving business practices.

The role includes significant coordination and engagement with peers across all business lines and technology functions. This includes 1st, 2nd, and 3rd lines of defense for Technology in the execution of risk management activities, inclusive of regular updates, formal reporting and managing remediation commitments identified (e.g. audit findings).

Is this role right for you? In this role, you will:

• Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems, and knowledge.
• Tests design and operating effectiveness attributes for IT controls and automated controls.
• Conducts IT General controls and automated control walkthroughs and assesses controls for effectiveness.
• Assists Risk Owners in adhering to policies, frameworks, standards and guidelines through active engagement, guidance, and counselling.
• Acts as a primary interface and conduit between the risk owners and other risk groups to lead the facilitation and execution of risk management activities.
• Identifies, assesses, prioritizes and reports on material IT risks for IT and aligned business areas. This will require working with equivalent Risk Advisors in various business areas.
• Ensures outputs are recorded in the enterprise Global Issue Management system and in full compliance of all policies and common standards, including the IT Risk Management Policy and Framework.
• Supports development of monitoring tools to evaluate the design and operating effectiveness of the key controls in the Business. Monitoring will include reviewing key indicators, sample testing and conducting thematic reviews.
• Assists documentation and monitoring the progress of remedial actions for issues identified through Technology Control Testing and by others, including Internal Audit, Compliance, regulators, and management self-identified issues.
• Collaborates with IT Risk Senior Managers for other business units to improve risk management practices across the enterprise.
• Supports ad-hoc, special, and/or focused reviews as necessary, as well as other duties and projects as assigned.

Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:

• Good communication, facilitation, and presentation skills for developing communication strategies for Executive approval through to implementation of strategies and programs.
• Ability to balance competing or conflicting goals of various departments and stakeholders which requires a mature, diplomatic approach and highly developed negotiation and influencing skills.
• Ability to challenge leadership team especially when there is a need to balance control and compliance priorities with competing objectives.
• Ability to work with minimal supervision and deliver to tight deadline
• Requires an undergraduate degree combined with an Information Security professional designation such as Certified in Risk and Information System Control (CRISC) and Certified Information Systems Auditor (CISA) are desirable.
• Experience with the following is recommended: COBIT, CIS, and NIST frameworks. Exposure to SOX requirements
• Need experience in a wide area of risk controls such as infrastructure risk, application risk. PM reporting/status skills to prepare status of IT control framework to senior management
• Experience in other risk management roles (across any line of defense) is desirable
• Knowledge of principles, practices and IT processes appropriate to the quality delivery development and stewardship

What's in it for you?

• Diversity, Equity, Inclusion & Allyship - We strive to create an inclusive culture where every employee is empowered to reach their fullest potential, respected for who they are, and are embraced through bias-free practices and inclusive values across Scotiabank. We embrace diversity and provide opportunities for all employee to learn, grow & participate through our various Employee Resource Groups (ERGs) that span across diverse gender identities, ethnicity, race, age, ability & veterans.
• Accessibility and Workplace Accommodations - We value the unique skills and experiences each individual brings to the Bank and are committed to creating and maintaining an inclusive and accessible environment for everyone. Scotiabank continues to locate, remove and prevent barriers so that we can build a diverse and inclusive environment while meeting accessibility requirements.  
• Upskilling through online courses, cross-functional development opportunities, and tuition assistance. 
• Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.
• Community Engagement - no matter where you choose to work from; we offer opportunities for community engagement & belonging with our various programs such as hackathons, contests, Humans of Digital and much more!

Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.