Senior Manager, Enterprise Data Protection

ScotiabankToronto, ON
Onsite

About The Position

The Senior Manager, Enterprise Data Protection provides governance, oversight, and advisory support to Technology groups and business lines on the Data Protection control environment, aligned with industry practices and regulatory developments. The role also supports risk transformation, remediation, and regulatory programs. The individual reports to the Director, Enterprise Data Protection.

Requirements

  • 8+ years of progressive experience in Technology, Information/Cyber Security, IT Audit, IT Compliance, regulatory-supervision, consulting, or advisory roles.
  • Hands-on experience working on security controls/mechanisms is an asset.
  • Experience using COBIT, ISO, ITIL, NIST, or other specific industry frameworks.
  • Experience assessing or implementing Cyber Security and Technology Risk requirements from regulatory bodies (e.g. OSFI, NYDFS, CNBV, SBS, MAS, APRA, etc.) of key regions where Scotiabank operates.
  • Sound business and technical acumen, with demonstrated agility in learning and ability to quickly become comfortable with unfamiliar businesses areas or technologies.
  • Ability to connect programs/projects to broader organizational goals and grasp the key performance drivers of business partners.
  • Must also be proactive and creative, with strong, proven ability to plan and manage competing priorities, as well as ability to recognize and appropriately handle sensitive and confidential information.
  • Excellent stakeholder management and influencing / negotiation skills, capable of balancing multiple perspectives, effective at all levels.
  • Proven ability to work both independently and within a team environment.
  • Excellent communication (presentation skills, verbal and written).
  • Master’s/Bachelor’s degree in science, technology, engineering, business administration or related fields.

Nice To Haves

  • Professional Certifications such as: CISSP, CISM, CRISC, CISA are valuable assets.
  • Spanish proficiency is a key asset.

Responsibilities

  • Support the development of the strategy, governance, and operating model across the Data Protection Program elements.
  • Collaborate with management to develop recommendations around policies, standards and operating guidelines related to Data Protection.
  • Provide advisory services to stakeholders within Technology and Business Lines on Cyber and IT Risk controls.
  • Collaborate with key stakeholders to develop controls to safeguard and manage records and information.
  • Collaborate with Technology teams including infrastructure, security engineers, development, architecture, security operations, security advisory and technology risk to assess controls and remediation actions across the operating environment and ongoing initiatives.
  • Support the implementation of a strong Data Protection culture in partnership with stakeholders across various business lines and control functions.
  • Monitor and report on the performance and risk of data protection controls deployed across the enterprise.
  • Support strategic and operational initiatives impacting Data Protection - Cyber and IT Risk Management by assessing against regulatory requirements and internal policies, framework and business needs.
  • Work with issue owners and key stakeholders, including monitoring and control testing partners to develop management actions plans where required.
  • Identify, assess and map industry development and regulatory requirements into technical controls to safeguard technology, information and records.
  • Act as primary liaison with Control Functions in respect of intersections and impacts between their respective policies and programs and the Data Protection Program’s mandate, responsibilities and policies.
  • Develop, monitor and report on Data Protection metrics, identifying trends, risks, root causes and remediation actions.
  • Ensure the Bank’s risk appetite and risk culture are considered in day-to-day activities and decisions.
  • Help drive a customer focused culture throughout the team to deepen client relationships and leverage broader Bank relationships, systems, and knowledge.
  • Support an environment that promotes effective and efficient operations of his/her respective areas in accordance with Scotiabank’s Values, its Code of Conduct and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk.
  • Facilitate and contribute to the preparation of management reporting relating to the responsibilities within the role.
  • Develop and maintain standardized processes, templates and guidance documentation related to the activities of the role as needed, striving for streamlining and efficiencies.
  • Drive effective stakeholder management and alignment through interactions with internal Technology management and team.
  • Build and maintain strong relationships with key contacts within Technology and the Business Lines/Control Functions to support effective management and delivery of goals for the role.
  • Ensure that the team maintains record keeping of key documentation.
  • Additional accountabilities as required

Benefits

  • Diversity, Equity, Inclusion & Allyship
  • Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
  • Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits will start on day one.
  • Community Engagement
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service