Scotiabank · 7 hours ago
Director, Cybersecurity Risk Management
Dallas, TX
Full-time
Onsite
Senior Level, Lead/Staff
$158K/yr - $264K/yr
10+ years expScotiabank is a leading bank in the Americas, and they are seeking a Director of Cybersecurity Risk Management to strengthen their cybersecurity risk oversight. The role involves developing a comprehensive Cybersecurity Risk Management Framework, providing risk oversight, and ensuring compliance with cybersecurity regulations.
BankingFinanceFinancial Services
Responsibilities
Partner with global Risk team to develop and maintain a comprehensive Cybersecurity and Technology Risk Management Framework
Serve as a subject matter expert and trusted risk oversight partner on cyber risks, regulatory reporting, and audit requirements, supporting requests and providing guidance across key cybersecurity domains, including Security Event Detection, Red Team, Cyber Incident Response, Cyber Threat Intelligence, Cyber Assurance, Exercise & Simulations, Technology Resilience, Scenario Analysis, Third Party Cyber and Application Security
Conduct effective challenge of high-risk items (e.g., new software, risk acceptances), ensuring actionable risk-based insights and solutions
Partner with stakeholders in CISO, business, technology, and all three lines of defense to drive security compliance and awareness
Lead risk oversight and challenge of first line risk management strategies and compliance activities, ensuring that the organization's cybersecurity posture is robust and resilient against top and emerging threats
Provide insights and recommendations on cybersecurity trends, best practices, internal and external audit reports, and regulatory changes that may impact the organization
Identify risk scenarios using the MITRE ATT&CK Framework, calculate scoring, and present to executive leadership to drive risk-based action
Collaborate with the Cyber Security Incident Response Team (CSIRT) to ensure timely monitoring, detection, and response to threats
Ensure adherence to cyber risk management regulations, including FFIEC, OSFI, and other applicable laws
Build and mentor a high-performing team, providing training and development opportunities to ensure team members stay current in the field
Ensure alignment with the Bank’s risk appetite and culture in all activities and decisions
Create an environment in which the team pursues effective and efficient operations of their respective areas in accordance with Scotiabank’s Values, its Code of Conduct, and the Global Sales Principles, while ensuring the adequacy, adherence to, and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions, and conduct risk
Qualification
Required
University degree, preferably in Computer Engineering, Computer Science or related field, and a minimum of 10 years' experience in increasingly senior Information Security roles in a complex, global organization
Cybersecurity, technology, or risk management certifications such as CISSP, CCSP, CEH, CISM, etc
Strong understanding and experience with regulatory and industry cybersecurity frameworks and guidance, including CRI Sector Profile, NIST, FFIEC, OSFI, and MITRE ATT&CK
10+ years of related IT process experience, including internal audit, external audit, or risk assessment
Experience with financial sector regulatory practices and second line of defense effective challenge
Excellent written and verbal communication skills, with the ability to communicate security objectives and concepts to technology and business teams to technical and non-technical stakeholders
Strong leadership and collaboration skills. Excellent oral and written communication, ability to present confidently to senior executives, attention to detail and strong planning and management ability
Solid understanding and operation of cybersecurity disciplines, including Cloud Security, AI/ML, Network Security, Threat Modeling, Vulnerability Management, and Technology Resiliency
Advanced analytical reasoning skills, applying critical thinking and problem-solving techniques to break down business, technical, and operational objectives
Proven ability to lead through change, manage dependencies, and control change in high-pressure, shifting environments
Understanding of cybersecurity diligence methods, including vulnerability assessments and penetration testing
Ability to interact and influence at all levels of management across functions
Preferred
Preferred certifications include CISA or equivalent, and familiarity with compliance frameworks (e.g., ISO or NIST)
Benefits
Flexible benefit programs are designed to help support your unique family, financial, physical, mental, and social health needs
Company
Scotiabank
Scotiabank is a banking firm that provides banking and financial services.
10001+ employees
H1B Sponsorship
Scotiabank has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (52)
2024 (55)
2023 (29)
2022 (38)
2021 (38)
2020 (15)
Funding
Current Stage
Public CompanyTotal Funding
$1.07B2024-04-17Post Ipo Debt· $1.07B
1972-03-01IPO
Leadership Team
Jabar Singh
President & CEO Scotiabank Colpatria (Colombia) & Head Central America & Caribbean
L.Scott Thomson
President and CEO
Recent News
Canada NewsWire
2025-12-24
Company data provided by crunchbase