Contributes to the overall success of Information Security & Control (IS&C) in the U.S. region by planning, coordinating, and presenting complex cybersecurity risk information to executive leadership. Ensures that individual goals, plans, and initiatives are executed and delivered in alignment with the team's business strategies and objectives. Communicates issues and supports the reporting and communication of the organization's cybersecurity and technology risk strategy to key stakeholders. Ensures all activities are conducted in compliance with governing regulations, internal policies, and procedures.

• Excellent written and verbal communication skills to clearly convey complex technical information to non-technical executives.
• Strong analytical abilities to interpret data, identify trends, and help make informed decisions.
• Proficient in creating detailed, accurate, and understandable cyber and IT risk reports.
• Work with various stakeholders, including IT, security teams, and senior leadership
• Basic understanding of relevant cybersecurity regulations and standards to ensure compliance
• Manage multiple projects and deadlines effectively.
• Be an advocate for IS&C, building strong relationships and raising awareness for the importance of effective information security practices.
• Understand how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decisions.
• Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank's Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.
• Champions a high-performance environment and contributes to an inclusive work environment.

Experience:

• Minimum of 3 years of experience in related technical communication and reporting fields.
• Must have a bachelor's degree in communication, marketing, information systems, cybersecurity, enterprise risk, or related field.
• Must have strong verbal and written communication skills in English with excellent individual project management and tracking skills.
• Familiar with regulatory guidelines related to the financial services industry (NYDFS 500, etc.)
• Familiar with industry standards/frameworks related to Information Security (ISO27001/27002, NIST, GDPR, etc.).