Director, Data Protection Program - Program Governance
Requisition ID: 74870 Join the Global Community of Scotiabankers to help customers become better off. The Team and the Role: With a global mandate, the Data Protection team manages Data protection and ensures effective data loss prevention activities across various systems, applications and 3rd parties that directly support the Bank's businesses. The Director, leads and oversees the implementation and ongoing support of this program globally ensuring business strategies, plans and initiatives are executed / delivered in compliance with governing regulations, internal policies and procedures. This role directly supports the Vice President, Data Protection. The role is part of a strategic and comprehensive Data Protection Management Function within the organization working closely with Info Security, Corporate Security and the Data Office and ensuring implementation in accordance with regulatory expectations, risk appetite, organizational risk practices and evolving business practices. Accountabilities Establish an enterprise wide Data Protection and Data Loss Prevention governance framework, and global programs with a focus on safeguarding protected and sensitive data through modifications to organization behavior policies and standards, principles, governance metrics, processes, related tools and data architecture Lead the governance, oversight and review of existing data protection and leakage controls and policies in response to changes in regulation, organizational structure, or business needs Maintain, communicate, and enforce Data Protection and Loss prevention Governance policies, processes, and procedures. Participate with the business in the strategic design process to translate security and business qualifications into processes and systems. Drive a Data Protection and Loss Prevention culture to safeguard organizational data throughout the Bank. Champion the education and training of stakeholders and end users about the Bank’s Security and Data policies. Collaborate with stakeholders and partner teams on the planning, implementation, and rollout of associated programs and solutions Establish and maintain collaborative relationships business partners, including senior leadership teams, in order to propose and formulate governance solutions to meet the business needs and to drive efficiency and business value Establish a consistent, sustainable and scalable data protection governance model & operating mechanisms across all of the Bank’s data domains. Collaborate with senior management to develop recommendations around policies, standards and framework for DLP governance, and maintain a governance structure aligned to the global enterprise data governance Act as a change agent, partnering with the various business lines to institute enterprise wide governance programs. Champion the application, usage and adoption of data protection governance capabilities in order to sustain the bank’s ongoing continuous data improvement initiatives. Develop program plans that contribute to the development, implementation and sustainment of effective governance processes and provide actionable insights for business strategies and performance ensuring that these plans are in line with other large strategic privacy, security and data programs in the bank. Consistent and prudent management of program finances as per established standards to ensure action plans have approved funding and do not exceed program budget. Deliver on governance and oversight obligations along all lines of defense. Develop dashboards and metrics to track and measure DLP effectiveness using indicators like percentage of false positives, and Mean Time to Response. Manage the creation and circulation of progress and status reports to pre-defined stakeholders comprising senior leadership teams and various committees including and up to the Board. Education and Background 7+ years of background implementing projects and programs related to Info Security, Privacy and Data Governance function, preferably in the financial services industry 7+ years of data protection and data loss prevention background and adept at managing large scale financials for large projects Background in creating and implementing data governance organization structure, developing associated policies and procedures, and enforcing the compliance of procedures in a large scale matrix organization. Background with regulatory compliance, incident management and assessing risk and governance process within an organization Demonstrated skill in developing sustainable security solutions in a matrixed and interdependent Details Security, Technology Risk and Operational Risk environments, including strategy development and execution. Background in developing enterprise wide protection strategies encompassing insider threat intelligence, Cyber incident and event management, IT security governance as well as data protection and risk management methodologies. Applicants require strong leadership, communication and strategic influencing capability, supported by well-developed analytical and strategic thinking competencies; expertise to effectively articulate procedural and policy matters for both technical and business leaders Location(s): Canada : Ontario : Toronto As Canada's International Bank, we are a diverse and global team. We speak more than 100 languages with backgrounds from more than 120 countries. Our employees are committed to a superior customer background and use the Bank’s 6 guiding sales practice principles to ensure they act with honesty and integrity. At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here . Applicants must apply directly on-line to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those applicants who are selected for an interview will be contacted.
March 26 on Scotiabank