×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant Information Security Data Security

Senior Lead Security Advisor

Job in Toronto, Ontario, C6A, Canada
Listing for: Scotiabank
Full Time position
Listed on 2026-02-16
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 90000 - 120000 CAD Yearly CAD 90000.00 120000.00 YEAR
Job Description & How to Apply Below

Select how often (in days) to receive an alert:

Requisition

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Overview

The Senior Lead is responsible for providing guidance to business lines to ensure the design, development and implementation of technological solutions that integrate security practices, assisting them in making informed decisions to protect Bank information and data resources, by:

  • Working with business lines, Solution Architects and Enterprise Architects to develop sound security strategic and tactical plans towards the reliable implementation of consistent and secure control processes, by assessing security risk.
  • Designing and developing sound risk management controls in accordance with Bank's standards that ensure the Bank's compliance with industry regulations.
  • Pursuing security and control process improvements to advance security compliance.
  • Reporting to management on the status of the system of internal controls with recommendations for remediation of risks

Is this role right for you? In this role, you will:

Security Solutioning:

  • Provide strategic guidance and technical expertise to business lines, IT support functions, and IS&C Control functions to include security within early stages of the design of Bank´s technological solutions.
  • Conduct comprehensive security assessments.
  • Conduct or provide Quality Assurance on Threat Modelling as required.
  • Design and recommend security controls that protect Bank applications and infrastructure.
  • Review architecture and solution design documentation and identify and assess potential risks.
  • Evaluate existing security solutions and propose enhancements or new designs to address emerging threats and business requirements.
  • Support the development of security patterns.
  • Enforce security patterns, policies, standards, and procedures to protect the integrity, availability, and confidentiality of the Bank applications and infrastructure.
  • Solution for multiple security domains (Risk Management, Data Protection, Security Engineering, Identity and Access Management, Security Architecture, Cloud Security, etc).

Compliance:

  • Ensure that Bank security solutions align with industry regulations and organizational compliance requirements.
  • Stay updated with emerging trends in information security and propose improvements to the current security posture and processes.
  • Conduct industry reviews and benchmarking exercises to ensure our controls are aligned with our peers, emerging threats, and available mitigation strategies.
  • Evaluate new information security controls, technologies, tools, and processes to enhance the organization’s security.
  • Keep informed and well versed on financial industry regulations demands in different regions based on practical experience.

Technical

Skills:

  • Threat Modeling and

    Risk Management:

    Experience in threat modeling, identifying risks in cloud environments, and advising on security best practices during cloud migration and modernization projects.
  • Compliance and Governance:
    Strong knowledge of cloud security governance frameworks (e.g., NIST, ISO 27001, SOC 2, CIS Benchmarks) and regulatory compliance requirements (e.g., GDPR, PIPEDA, PCI DSS).
  • Security Advisory:
    Experience in providing security advisory services, guiding teams through cloud security best practices and modernization security strategies

Do you have the skills that will enable you to succeed in this role? We d love to work with you if you have:

  • Post-secondary education in Computer Science or in a related field.
  • At least 5 years of hands-on technical work experience in performing threat risk assessments on complex applications and network environments.
  • At least 6 years of experience in security solution architecture, software development, and/or hands-on experience with implementations of security controls.
  • Strong experience leading complex projects providing security advice to ensure information security risks are mitigated.
  • Certifications (CISSP, CISM, CCSP, CRISC, Cloud oriented Google, Microsoft or AWS certificates) are nice to have.
  • Familiar with industry standards and frameworks e.g. NIST 800-53, ISO 27001, ISO
    27002, ISO 27017, ISO
    27018,…
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search