Requisition ID: Thanks for your interest in ScotiaTech, Scotiabanks new and innovative Technology hub in Bogota. Join a purpose driven winning team that promotes creativity and innovation in a fast:paced environment, where we're always committed to results, in an inclusive, diverse, and high:performing culture. Purpose Security Assurance within Security Services is responsible for reviewing privileged accesses and configurations on a scheduled basis to identify areas where access and configurations have been changed without cause. : Demonstrating security operation teams adhere to defined processes and procedures, supporting the achievement of the Bank's information security objectives. : Reviewing operational practices, reporting gaps, and working with the process owners to achieve resolution of any identified deficiencies. : Identifying and managing compliance related issues, tracking of IT risks as well as other key performance indicators. Accountabilities : Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge. : Review access to systems including Critical Information Assets (CIA). : Validate that access was due to sanctioned and documented activities (e.g., Change Records) : Ensure that configurations are changed with cause and appropriate documentation. : Identify malicious activity. : Conduct detailed, risk:based evaluations/monitoring of Information Technology (IT) controls utilizing the Bank's information security standards and regulatory requirements : Review reports to investigate, escalate and track control deficiencies, ensuring action items and remediation plans are vigorously tracked to closure. : Conduct detailed, risk:based evaluations/monitoring of Information Technology (IT) controls utilizing the Bank's information security standards and regulatory requirements : Provide knowledgeable opinion on the above:mentioned entities' compliance with information security standards. : Understand how the Bank's risk appetite and risk culture should be incorporate into in day:to:day activities and decisions. : Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank's Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day:to:day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk. : Champions a high:performance environment and contributes to an inclusive work environment. Dimensions : The incumbent will conduct reviews of IT application and supporting IT pervasive controls. : The incumbent will maintain documentation supporting SOX Business Processes and SOX IT Pervasive areas under direction of IS and C management and control owners. : The incumbent receives general direction from the Senior Manager / Team lead. Day to day tasks are handled independently. : The incumbent will maintain documentation supporting Business : Day to day decisions regarding approaches to security and control reviews are handled independently by the incumbent using a high degree of discretion and judgment. : The incumbent is guided by the Bank's Information Security Policy and Standards and the requirements of Bank regulators and auditors as well as departmental procedures . Education / Experience / Other Information stylemargin:bottom:11.0px: : Must to have : stylelist:style:type:circle: : Spanish language is a must, especially IT/technical Spanish : Expertise in IT key controls and risk assessment concepts. : Strong verbal and written communication skills, especially report writing ability. : English language skills : B1 level of English. : Preferable : stylelist:style:type:circle: : One or more industry