Director & Head, Information Technology Audit

About The Position

Requirements

• 10+ years of experience in internal audit, business technology, or a related risk management function, including senior leadership responsibility within complex organizations.
• Strong command of business technology, cyber security, enterprise risk management, and the regulatory financial services environment.
• Proven success leading teams and overseeing multifaceted audit portfolios within large, regulated environments.
• Deep expertise in risk-based auditing standards, methodologies, issue evaluation, and executive-level reporting.
• Demonstrated ability to manage competing priorities with discipline across audit planning, execution, reporting, and follow-up.
• A track record of continuous improvement through data-driven insight, monitoring, and modern audit practices.
• Exceptional communication, executive presence, and stakeholder management skills, with the credibility to influence senior leaders.

Nice To Haves

• An accounting designation or relevant certification such as CISA, CISSP, or CRISC is an asset.

Responsibilities

• Define and lead the global technology Audit Strategy for technology capabilities supporting business operations, ensuring audit coverage remains aligned to the Bank’s technology and cyber security priorities while advancing a consistent, high-caliber approach across global audit teams.
• Lead the annual audit planning and risk assessment process, shaping a forward-looking audit agenda that reflects the evolving technology risk landscape, industry practice, regulatory requirements and broader enterprise priorities.
• Deliver independent challenge to audit plans and business practices, identifying emerging risks, systemic themes, and assurance gaps.
• Oversee audit issue evaluation, ensuring control weaknesses and root causes are clearly articulated, escalated appropriately, and positioned to drive meaningful action.
• Direct audit planning and resource deployment across a complex portfolio, ensuring scope, timing, budget, and execution are risk-based and disciplined.
• Lead the execution and reporting of technology audit engagements with professional rigor, sound judgment, and clear communication.
• Ensure audit conclusions are evidence-based, root causes are thoroughly assessed, and corrective actions are defined, tracked, and resolved with urgency.
• Build trusted relationships across Audit and with senior business, technology, and control stakeholders, using influence and credibility to shape outcomes.
• Represent Audit in key technology, program, and risk governance forums, reinforcing Audit’s role as a strategic advisor and credible challenge function.
• Maintain a forward-looking view of business, industry, and regulatory developments, translating change into audit insight and a resilient audit plan.
• Directs day-to-day activities in a manner consistent with the Bank’s risk culture and the relevant risk appetite statement and limits. Communicates the Bank’s risk culture and risk appetite statement throughout their teams.
• Creates an environment in which their team pursues effective and efficient operations of their respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.
• Builds a high-performance environment and implements a people strategy that attracts, retains, develops and motivates their team by fostering an inclusive work environment and using a coaching mindset and behaviors; communicating vison/values/business strategy; and manages succession and development planning for the team.

Benefits

• competitive total rewards package designed to support your well-being, long-term success, and career progression
• access to experienced leaders committed to your professional growth through formal development programs and meaningful on-the-job experience
• flexible, people-centered culture
• leading tools and resources