Information Security Analyst

Requisition ID: 196793

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Purpose

Contributes to the overall success of the IS&C Department in Asia-Pac Region ensuring specific individual goals, plans, initiatives are executed / delivered in support of the team’s business strategies and objectives. Ensures all activities conducted are in compliance with governing regulations, internal policies and procedures.

Accountabilities

Champions a customer focused culture to deepen client relationships and leverage broader Bank relationships, systems and knowledge.

Accountable and Responsible for delivery of Information Security and Control services to Asia Pacific and to provide overall governance to the region to ensure business strategies, plans and initiatives are executed / delivered in compliance to Scotiabank’s Information Security and Cybersecurity Policies, Common Security Standards, Technical Security Standards, CISO Directives and Local Regulations.

KEY ACCOUNTABILITIES

Security Advisory Services:

Providing Security Advisory services in the region for reducing the IT risk & to make the applications adhere to Best Practices.

o Threat Risk Assessment Review

o Contracts Review / Vendor Security Assessments

Endpoints Risk control & monitoring :

Monitoring the APAC systems & network through various tools to reduce the risk & escalating the situation (if required) to APAC CISO when necessary,

Advising the support managers for remedial action on servers / machines which are prone to high risks or otherwise requiring attention.

Follow-up for remediation action and provide monitoring reports on regular basis.

Security Patching:

Coordinating and monitoring the deployment of the security patches or any other software update supported by local Tech Team.

Providing report to the APAC stakeholders on the patching activity monthly for reference / further action.

Audit & Regulatory support:

Providing assistance to APAC CISO for the region’s audit and regulatory inspection related activities.

Supporting regulatory reporting to APAC regulators

Ensuring new/changes of APAC regulatory requirements have been assessed and documented in regulatory library.

Security Incidents & Detections :

Providing support during cyber incident/event

Ensuring local security incident / any detection advised by enterprise team is investigated & followed to resolution / closure.

Change Control Activities:

Support change control activities for Asia-Pac.

Others:

Ensuring the operation procedure documents have been reviewed & updated timely.

Education / Experience / Other Information

IT Security /IT Risk – Scotiabank working experience.

IT regulatory / IT compliance – related knowledge.

IT Audit / Cyber Audit related experience.

Location(s): Singapore : Singapore : Singapore

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.