IT Security Analyst/Engineer

Story Behind the Need:

• Business Group: The Security Engineering & Deployment team contributes to the overall success of the Security Platform Engineering Operations in Canada and Globally ensuring specific individual goals, plans, initiatives are executed / delivered in support of the team’s business strategies and objectives. Ensures all activities conducted are in compliance with governing regulations, internal policies and procedures. We are an engineer team that builds and implements internal Bank systems, with the responsibility of managing and maintaining these systems.

• Project: The IT Security Analysts will work collaboratively within a team of security professionals and across the organization in matters of security, logging, and custody of security events and troubleshooting. Document and keeping comprehensive records of log sources, configurations, analysis procedures, troubleshooting and incident reports. Provide input to management reporting including executive summaries, condition status reporting, statistics, and action item tracking.

Candidate Value Proposition:

The successful candidate will have the opportunity to work within Scotiabank. We are technology partners who help the business transform how our employees around the world work. You will work with and learn from diverse industry leaders, who have hailed from top cybersecurity and technology companies around the world.

Typical Day in Role:

• Working exclusively in a large Linux based environment across multiple platforms. Linux, Linux, Linux and more Linux.

• Supporting multiple Kubernetes based applications.

• Responding and resolving to system and application based availability incidents.

• Troubleshooting operating system, network and application based issues.

• Responsible for the successful implementation and maintenance of complete technology solution for projects supporting highly complex Cloud and some physical based platforms and applications with complex network integration needs across multiple environments.

• Working with system architects to transition solutions to steady state, by documenting support process, capacity planning and maintenance schedules.

• Define business/technical requirements, development specifications, system performance objectives and identifying system modifications.

• Maintain and encourage expert knowledge of industry-standard back-end technologies

o Google and Azure Cloud concepts, Jenkins pipelines, GIT Tools, Kubernetes, Docker, Teraform, Pub/Sub.

o Security and encryption concepts, protocol, and best practice.

o Application infrastructure and architectures; testing and code management.

o DevOps, API Scripting, Linux, AIX, Windows, VM environment.

• Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions.

• Actively pursues effective and efficient operations of their respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.

• Champions a high performance environment and contributes to an inclusive work environment.

Candidate Requirements/Must-Have skills:

1. 10+ years of technical working experience as an IT Security Analyst/Software Engineer

2. 5+ years of hands-on experience with Enterprise Linux and Windows operating systems

3. 5+ years of hands-on experience with Common Network Protocols (TCP/UDP/HTTPS/FTP)

4. Experience with GCP build and architecture.

5. Experience with creating Docker registries, containers, and Kubernetes deployment.

6. Familiar with Terraform and DevOps

Nice-To-Have Skills:

• CISSP or any Security Certification

• Data Discovery experience

Soft Skills:

• Excellent written, presentation, and verbal communication skills to be able to work well with technical peers and business stakeholders at different levels within the organization.

• Strong decision making, forward thinking and creative problem-solving skills to anticipate and respond quickly to technological/market influences.

• Ability to work as part of a team, as well as work independently with minimal direction.

Best vs. Average Candidate:

• Background in Security

• Strong technical skills (meet both the must have and nice to have skills)

• Strong organizational skills

• Team player and ability to collaborate effectively with different teams within the Bank

Education:

• Post-secondary degree in a technical field such as computer science, computer engineering or related IT field is an asset

Candidate Review & Selection

• One round MS Teams video interview – Panel with 2-3 team members (30 minutes)

o Review skills/experience stated in the resume

o Assess both technical and soft skills (scenario-based questions)

• Possibility of second round

Job 70345