Director, Global Head Fraud Threat Management
Scotiabank
- Toronto, ON
- Permanent
- Full-time
- Build and execute on the cyber-fraud team roadmap that ensures the team is equipped with the expertise, procedures, data, technology, and relationships they need to be successful in preventing, early detection, and response to account-level attacks.
- Develop and maintain an effective cross-functional approach, operating framework, and governance structure for triaging events, managing incidents, prevention and problem management that can be applied to all operations globally.
- Develop and maintain comprehensive incident management playbooks outlining processes, tools, data, and technology requirements, as well as communications protocols and cross-functional interaction models with key internal partners (ex. IS&C, Crisis Management, Corporate Security, and technology).
- Provide timely incident communications for a variety of audiences including senior stakeholders and regulators to ensure awareness and appropriate levels of engagement as part of response activities.
- Provide guidance and recommendations to management and executives across the enterprise to support effective decision-making during incident response, post-incident, and prevention phases.
- Create conditions that encourage the identification and escalation of systemic issues, reoccurring problems, and identified threats/vulnerabilities to the appropriate business, risk, and control owners. Ensure these are captured within our problem management processes and post-incident reviews. Engage and manage vendor relationships associated with cyber-fraud red teaming & incident response.
- Foster and maintain ongoing team awareness of the cyber-fraud threat landscape, including through certification, continuing professional education (CPE), industry group participation, threat intelligence feeds, and direct research.
- Speak internally and externally as a subject matter expert (SME) in cyber-fraud prevention and response. Develop and maintain interactive dashboards to ensure effective situational awareness and visibility to prevention and response metrics.
- 7+ years working in a leadership capacity within cyber-fraud or security incident management.
- One or more relevant cybersecurity industry certifications (ex. CISSP, CISM, CISA, GCIH, etc.).
- Demonstrated in-depth knowledge of incident management, threat-intelligence, customer identity and access management (CIAM), and payment card security (PCI DSS) best practices.
- Experience in project management, program and change management best practices.
- Experience with relevant global regulatory bodies.
- Other relevant certifications are an asset (ex. CFE, CIPP/C, ITIL, etc.).
- Bachelor's degree in computer science, cybersecurity, or similar is an asset.
- Bilingual in Spanish is an asset.
- Continuous learning and advancement via workshops with external providers, courses, and conferences.
- Lead strategic projects with a significant impact on business line growth.
- A culture that promotes teamwork and cross-functional collaboration to achieve business goals. Inclusive workplace that values diversity of thought, background, and experience
- Opportunity to work and collaborate with teams and partners across different geographies, enriching professional experience and understanding of global payment markets.