Information Security Advisor (Threat Risk Assessment)

Job Overview

Job title: Information Security Advisor (Threat Risk Assessment)

Job description: Requisition ID: 104038

Tangerine is Canada’s leading direct bank. We offer flexible and accessible banking options, innovative products, and award-winning Client service. The reason why Tangerine employees come to work each day is to help Canadians live better lives. We focus on making a difference in our communities, and that includes our own internal community. It’s important to us that our employees feel empowered and enthusiastic about belonging to our Orange culture.

Tangerine’s Cyber Security team is responsible for developing, implementing and sustaining Tangerine’s Cyber Security Programs and ensuring Tangerine remains compliant with regulatory expectations and Scotiabank’s policies and standards.
The Information Security Advisor, through the Threat Risk Assessment (TRA) program, provides security advisory services to the Tangerine’s internal business lines with respect to the Tangerine’s policies, standards, procedures as well as industry regulations.

Is this role right for you? In this role, you will:

  • Act as core competency and subject matter expert reference for enterprise wide cyber security in the matters of governance, risk management, advisory, and compliance.
  • Act as core competency and subject matter reference for security requirement and controls for enterprise SDLC, Agile, DevOps and Cloud Security strategy plan and implementation.
  • Conduct Threat Risk Assessment (TRA) for enterprise-level new initiatives including documenting high-risk areas and collaborating with technical teams and stakeholders to ensure reliable and timely remediation without affecting project delivery deadline.
  • Design and develop reporting dashboards for governance of cyber security and compliance.
  • Guide and support team members on cyber security undertakings including vulnerability management, compliance configuration management, risk acceptance management, application security, data loss protection, phishing, threat intelligence, incident response, and security logging and monitoring.
  • Foster and promote security awareness and security culture among all levels of stakeholders of the bank in day-to-day projects and operations.

Do you have the skills that will enable you to succeed in this role? – We’d love to work with you if you have:

  • Solid understanding and experience with security controls/mechanisms and threat/risk assessment techniques pertaining to complex data, application and networking, in both traditional data-center and cloud environment.
  • Solid understanding and knowledge of different areas of IT operations / processes (change mgmt., release mgmt.), and able to define/design security process to meet business requirement.
  • Solid understanding and experience with Google Cloud Platform and similar cloud platform technologies to evaluate and conduct threat risk assessments.
  • Solid understanding and experience with Kubernetes, Docker, and containerization DevOps tools to evaluate and conduct threat risk assessments.
  • Solid understanding and experience with cloud computing services (IaaS/PaaS/CaaS/SaaS) to evaluate and conduct threat risk assessments.
  • Strong knowledge and understanding of the financial industry regulation OSFI, PCIDSS, and frameworks ISO27001/27002, SOC2/SOC3, MITRE ATT&CK, Cyber Kill Chain.

What’s in it for you?

  • We have an inclusive and collaborative working environment that encourages creativity, curiosity, and celebrates success!
  • We provide you with the tools and technology needed to create beautiful customer experiences
  • You’ll get to work with and learn from diverse industry leaders, who have hailed from top technology companies around the world
  • Dress codes don’t apply here, being comfortable does
  • Onsite subsidized cafeteria with a chef!
  • Access to thousands of online and in person courses so you can brush up on skills or learn new ones
  • Career progression opportunities. We hire you for your talent and not just for the job. We want to see you succeed not just in your role but in your career as a whole
  • We offer a competitive total rewards package that includes a base salary, a performance bonus, company matching programs (on pension & profit sharing), vacation, personal & sick days, paternity/maternity leave, medical, vision and dental benefits and much more

Location(s): Canada : Ontario : North York

At Tangerine we value the unique skills and experiences each individual brings to the team, and are committed to creating and maintaining an inclusive and accessible environment. If you require accommodation during the recruitment and selection process, please let our Recruitment team know.

Company: Scotiabank

Expected salary:

Location: North York, ON

Job date: Thu, 27 May 2021 05:00:46 GMT

Apply for this job

A job board that helps you to get the right job based on your skills and experience.

Contact Us

info@firstnationswork.com