×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant IT Project Manager Cloud Computing

Senior Lead AppSec and CNAPP Operation

Job in Toronto, Ontario, C6A, Canada
Listing for: Scotiabank
Full Time position
Listed on 2026-02-02
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, IT Project Manager, Cloud Computing
Job Description & How to Apply Below

Select how often (in days) to receive an alert:

Title:

Senior Lead App Sec and CNAPP Operation

Requisition

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

The Team

Scotiabank’s Application Security Operation team has global accountability and is highly supportive of the Bank’s business, enabling execution of the Bank’s strategies, operations and services, while ensuring that appropriate application security practices are adhered to. Now Application Security Operation is expanding the scope to cover Cloud Native Application Protection Platforms (CNAPP). This function provides core competency in proactively detecting application code flaws and/or bugs while working with the appropriate teams in instituting appropriate controls to mitigate risks, specifically as it pertains to cloud and application vulnerabilities and threats.

This candidate will be expected to work closely with the application development groups to integrate App Sec and CNAPP processes and procedures into the software development lifecycle.

The Role

The incumbent is responsible for supporting the Senior Manager, Director, CIO and CISO in achieving enterprise security strategic goals through various processes, including:

  • Develop and/or enhance the strategies and processes to identify, analyze, and communicate App Sec and CNAPP vulnerabilities as per the CISO Directives, technical standards and published communication process flows.
  • Develop and/or enhance strategies and processes to manage the security vulnerabilities and threats for cloud native applications.
  • Develop and/or enhance reporting to development teams and all levels of management to provide proper tracking and measurement of remediation relative to established objectives.

Is this role right for you? In this role, you will:

  • Collaborate with stakeholders across the Bank – you will work closely with development and engineering, Dev Ops, cloud, security and other application owner teams across the organization to deliver Cloud and Application Security capabilities for the Bank.
  • Contribute to the success of our cloud transformation by supporting the Review and Triage of the findings flagged by App Sec and CNAPP.
  • Recommend, design, assess, implement, deploy and maintain App Sec and CNAPP controls required to protect Scotiabank and its customers.
  • Responsible for adherence to an established process flow that ensures development support teams, infrastructure support teams, and business risk owners implement control measures that effectively mitigate or eliminate the identified risk.
  • Understand how the Bank’s risk appetite and risk culture should be considered in day-to-day activities and decisions.
Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:
  • 7+ years’ relevant working experience in IT (cloud security, application security, etc.).
  • 5+ years’ experience with documenting process, procedure, and user guide.
  • 3+ years’ experience practicing application security (SAST, DAST, SCA, MAST) throughout the Secure Software Development Lifecycle (SSDLC), with demonstrated experience in vulnerability assessment, security integration, automation of security processes, risk assessment and mitigation.
  • 3+ years’ experience with Cloud Security domains like CNAPP, CWPP, CSPM and/or tools like SCCE, Crowd Strike, Prisma Cloud, Aqua Enterprise, MS Defender etc.
  • 3+ years’ experience with popular CI/CD tools and processes like Bit Bucket/Git Hub, Jfrog Artifactory, Jenkins, Azure Dev Ops, Git Lab CI/CD, Circle

    CI.
  • 3+ years’ experience with large organization cloud transformation.
  • Excellent communication skills and good support skills for triaging and analysis of issues for all development teams.
  • Proficient at collaborating with various stakeholders to achieve the objectives assigned.
  • Track records of mentorship and coaching skills for the team.
  • Undergrad or equivalent education.
What's in it for you?
  • Diversity, Equity, Inclusion & Allyship – We strive to create an culture where every employee is empowered to reach their fullest potential, respected for who they are, and embraced through bias-free practices and…
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search