Title: Senior Analyst, Security Configuration Assessment Requisition ID: 218552 We are committed to investing in our employees and helping you continue your career at ScotiaTech. Purpose In support of the Security Compliance Operations Team global mandate as it pertains to the Scotiabank Group, subsidiaries, affiliates, and strategic alliance partners as well as to ensure the protection and integrity of Bank information and assets, under general direction, performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction by scanning servers and databases for compliance. Accountabilities Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge. Have experience working with the current Bank Scanning tool – Tenable. The incumbent will need to be able to perform tasks such as rescanning of servers/databases, granting access, creating scans, investigating incomplete scans, ad-hoc scans, creating credentials for scans working with other teams and other tasks that may arise. Manage and prioritize your time effectively to deliver agreed projects on time. Attend calls and provide input with other Business units as required. Excellent knowledge of Excel / Visio / Word to create documentation. Express a willingness to learn more in the role and collaborate with external teams. Work with other teams on issues or questions that may come up, including gathering requested information from the Audit team. Stay up to date with the latest security trends, tools, and best practices, including training sessions to educate other business lines. Be willing to accept and action additional tasks assigned by the Manager. Understand how the Bank’s risk appetite and risk culture should be incorporated into day-to-day activities and decisions. Actively pursue effective and efficient operations of his/her respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk. Champions a high-performance environment and contributes to an inclusive work environment. Dimensions The Vulnerability Management Operations department consists of 22 members. The Security Configuration Assessment team consists of 6 members, 3 on the Policy side and 3 on the Operations side. Team supports global operations but is based in Canada, Peru & Colombia. We adhere to the CIS and Bank of Nova Scotia standard for compliance of several different Operating Systems and Databases. Education / Experience / Other Information Demonstrated knowledge of Systems Administration/Engineering with proficiency in analyzing systems designs with a systems security mindset. Familiarity with basic networking protocols (e.g., TCP/IP, UDP, etc.) (nice to have). Demonstrated understanding of infrastructure and Cloud compliance scanning (nice to have). A successful candidate has experience in infrastructure/support roles with interest in moving to a security focus team. Be a team player with excellent (oral & written) communication skills and interpersonal skills for internal discussions within the bank and with outside vendors. B1 level of English. Strong analytical and problem-solving skills and proactive thinking skills. Respond in a timely fashion to stakeholders and other business lines to provide progress on new and existing audits. Must be able to multitask. Be positive, highly motivated, organized, and proactive to achieve results. Strong understanding of security frameworks, tools, and methodologies. Ability to drive automation of compliance management platform and processes. Understanding of how to classify and prioritize the risk of new vulnerabilities based on the operating environment. Strong understanding of database and data security principles. Ability to understand database architectures that support business requirements. Working Conditions Work in a standard office-based environment; non-standard hours are a common occurrence. #LI-Hybrid Location(s): Bogotá or Home-Office ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits. At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted. #J-18808-Ljbffr