Job Title: Cybersecurity Specialist Join ScotiaTech, Scotiabank's innovative technology hub in Bogota, to become part of a purpose-driven team that fosters creativity and innovation. Key Responsibilities: - Contribute to the overall success of Information Security & Control (IS&C;)-Advisory Services by executing individual goals, plans, and initiatives in support of the team's business strategies and objectives. - Ensure all activities conducted are in compliance with governing regulations, internal policies, and procedures. Accountabilities: - Champion a customer-focused culture to deepen client relationships and leverage broader Bank relationships, systems, and knowledge. - Establish and maintain a detailed understanding of Scotiabank's Third Party Risk Management (TPRM), Threat Risk Assessment (TRA), New Initiatives Risk Assessments (NIRA) practices and priorities specifically related to Information Security. - Advocate for IS&C;, building strong relationships and raising awareness for effective information security practices in our supply chain. - Perform comprehensive risk assessments for bank initiatives and projects, identifying potential security threats and vulnerabilities. - Ensure all risk assessments and security measures comply with established standards and policies of the group. Propose effective risk mitigation strategies to address identified security risks. - Work closely with project teams, IT departments, and other stakeholders to integrate security measures into project plans. - Understand how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decisions. - Continuously monitor risk levels and provide regular reports to senior management on the status of risk assessments and mitigation efforts. - Support the Incident Management and Investigation processes. - Actively pursue effective and efficient operations of his/her respective areas in accordance with Scotiabank's Values, its Code of Conduct, and the Global Sales Principles, while ensuring the adequacy, adherence to, and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions, and conduct risk. - Champion a high-performance environment and contribute to an inclusive work environment. Dimensions: - Relationships with all employees of Scotiabank Uruguay, Scotiatech, and the Bank. - Information Security Standards and frameworks (ISO27001, NIST CSF, PCI-DSS). - Enterprise Risk Management. - Technology (Infrastructure, Cloud, Networking, Datacenter). - Application Security. Requirements: - At least 4 years of experience in Information Security and Cybersecurity. - Solid understanding and experience with security controls/mechanisms/protocols and threat/risk assessment techniques pertaining to complex data, application, and network environments. - Strong verbal and written communication skills in English with excellent individual project management and tracking skills. Spanish verbal skill is strongly desired. - Knowledge of regulatory guidelines related to the financial services industry. - Strong knowledge of industry standards/frameworks related to Information Security (ISO27001/27002, NIST, PCI-DSS, GDPR, among others). - Certifications related to security are considered an asset (e.g., CISSP, CISM, CRISC, CCSP, ISO27001). - Analytical experience, attention to detail, excellent critical thinking, logic, and ability to solve problems. - Excellent relationship management and negotiation skills to assist in the communication and finalization of the Bank's security requirements, contractual obligations, and standards to internal teams and third-party relationships. - Bilingual English/Spanish language skills (B2 English level). Working Conditions: Work in a standard office-based environment; non-standard hours are a common occurrence. Location(s): Bogotá or Home-Office ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits. At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted.