Director, Global Head Fraud Threat Management

Requisition ID: 198708

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

In the role of Director, Global Head Fraud Threat Management, you’re responsible for building, managing, and enhancing Scotiabank’s capability to identify and respond to account-level threats attacks at scale. This includes cyber-fraud threat intelligence, threat modeling, threat hunting, incident management, and attack surface management. In addition to leading and growing a multinational team of incident response, data science, and technical problem management experts, you’re the face of fraud incident management in front of senior executives, external partners, and regulators. You’re calm under pressure and draw on your years of experience and knowledge of industry best practice to inspire confidence with your team and stakeholders inside and beyond the Bank as you keep our customers and the Bank safe. Your team maintains a methodology and systematic solutions to managing critical fraud incidents and cyber-fraud attacks across the 20+ countries Scotiabank operates in, including Canada, the U.S., Latin America, including the Pacific Alliance countries of Mexico, Peru, Chile and Colombia, Uruguay, and the Caribbean and Central America.

Is this role right for you? In this role you will:

• Build and execute on the cyber-fraud team roadmap that ensures the team is equipped with the expertise, procedures, data, technology, and relationships they need to be successful in preventing, early detection, and response to account-level attacks.

• Develop and maintain an effective cross-functional approach, operating framework, and governance structure for triaging events, managing incidents, prevention and problem management that can be applied to all operations globally.

• Develop and maintain comprehensive incident management playbooks outlining processes, tools, data, and technology requirements, as well as communications protocols and cross-functional interaction models with key internal partners (ex. IS&C, Crisis Management, Corporate Security, and technology).

• Provide timely incident communications for a variety of audiences including senior stakeholders and regulators to ensure awareness and appropriate levels of engagement as part of response activities.

• Provide guidance and recommendations to management and executives across the enterprise to support effective decision-making during incident response, post-incident, and prevention phases.

• Create conditions that encourage the identification and escalation of systemic issues, reoccurring problems, and identified threats/vulnerabilities to the appropriate business, risk, and control owners. Ensure these are captured within our problem management processes and post-incident reviews. Engage and manage vendor relationships associated with cyber-fraud red teaming & incident response.

• Foster and maintain ongoing team awareness of the cyber-fraud threat landscape, including through certification, continuing professional education (CPE), industry group participation, threat intelligence feeds, and direct research.

• Speak internally and externally as a subject matter expert (SME) in cyber-fraud prevention and response. Develop and maintain interactive dashboards to ensure effective situational awareness and visibility to prevention and response metrics.

Do you have the skills that will enable you to succeed in this role? We’d love to work with you if you have:

• 7+ years working in a leadership capacity within cyber-fraud or security incident management.

• One or more relevant cybersecurity industry certifications (ex. CISSP, CISM, CISA, GCIH, etc.).

• Demonstrated in-depth knowledge of incident management, threat-intelligence, customer identity and access management (CIAM), and payment card security (PCI DSS) best practices.

• Experience in project management, program and change management best practices.

• Experience with relevant global regulatory bodies.

• Other relevant certifications are an asset (ex. CFE, CIPP/C, ITIL, etc.).

• Bachelor’s degree in computer science, cybersecurity, or similar is an asset.

• Bilingual in Spanish is an asset.

What’s in it for you?

• Continuous learning and advancement via workshops with external providers, courses, and conferences.

• Lead strategic projects with a significant impact on business line growth.

• A culture that promotes teamwork and cross-functional collaboration to achieve business goals. Inclusive workplace that values diversity of thought, background, and experience

• Opportunity to work and collaborate with teams and partners across different geographies, enriching professional experience and understanding of global payment markets.

Location(s): Canada : Ontario : Toronto

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, pleaseclick here (https://www.scotiabank.com/careers/en/careers/technical-support-for-applicants.html) . Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.