216 Ofertas de Siem en Colombia

• Importante compañía de tecnología
• Trabajo híbrido

Nuestro cliente es una organización de gran tamaño en el sector de tecnología y telecomunicaciones. Es reconocida por su enfoque innovador en soluciones tecnológicas y por ofrecer un entorno profesional orientado al desarrollo técnico.

• Implementar y gestionar soluciones SIEM/SOAR en el entorno empresarial.
• Realizar monitoreo continuo y análisis de eventos de seguridad.
• Desarrollar y optimizar flujos de trabajo automatizados para la respuesta a incidentes.
• Colaborar con equipos internos para garantizar la integración efectiva de las soluciones de seguridad.
• Proporcionar soporte técnico y resolución de problemas relacionados con las herramientas SIEM/SOAR.
• Generar reportes técnicos y análisis detallados sobre incidentes y eventos.
• Capacitar a otros equipos en el uso eficiente de las herramientas de seguridad.
• Actualizarse constantemente sobre las últimas tendencias y amenazas en ciberseguridad.
• Experiencia en QRadar y Splunk

El/la candidato/a seleccionado deberá cumplir los siguientes requisitos:

• Formación profesional en ingeniería de sistemas, electrónica o áreas afines.
• Conocimiento avanzado en herramientas SIEM y SOAR.
• Habilidad para analizar y gestionar incidentes de ciberseguridad.
• Experiencia en integración y automatización de flujos de trabajo.
• Capacidad para trabajar en equipo y colaborar con diferentes áreas.
• Certificación en ciberseguridad o herramientas específicas.

• Oportunidad de trabajar en una empresa líder del sector tecnología y telecomunicaciones.
• Ambiente laboral que fomenta el aprendizaje y el desarrollo profesional.
• Beneficios adicionales asociados al cargo.
• Posibilidad de crecimiento dentro de la organización.

Overview

Somos la compañía líder en transformación digital y la cuna del talento en materia de ciberseguridad y de la nube. Trabajamos para que saques todo el partido a tu vida digital sin tener que preocuparte por nada. Nos encargamos de hacer la seguridad más humana y generar en las personas la confianza y tranquilidad que necesitan.

Buscamos nuevas formas de hacer las cosas, ideas frescas e innovadoras, experimentar, divertirnos y ser entusiastas en lo que hacemos. Somos techies y queremos mejorar el mundo haciéndolo más diverso, sostenible y ciberseguro.

En Telefónica Tech Cloud unimos lo mejor de dos mundos. Tenemos la experiencia de ofrecer soluciones tecnológicas y atender a clientes hace más de 95 años, con la vitalidad, energía y curiosidad de alguien que acaba de nacer. Somos algo así como el Benjamin Button de la Cloud.

Miramos con prismáticos hacia el futuro y vimos un paisaje digital evolucionando más allá de la Telco. Así, en 2019, nace Telefónica Tech Cloud, con la misión de crear un espacio en el que diseñamos, integramos y gestionamos soluciones Cloud para ayudar a nuestros clientes a alcanzar sus retos.

Somos un equipo de profesionales, una familia global de expertos que nos dedicamos a lograr que 5.5 millones de empresas, desde las más grandes a las más pequeñas puedan centrarse en su negocio, dejando todo lo demás en manos de un partner tecnológico confiable.

Si tuviéramos que resumir como nos gustaría que nos definieran, no hay duda que nos gustaría trabajar en equipo, remando en la misma dirección y con metas comunes, con actitud valiente y sin miedo al cambio, contando con los mejores y buscando la excelencia en lo que hacemos, abiertos y transparentes en nuestros procesos.

En la unidad de SIEMaaS de Telefónica Cybersecurity & Cloud Tech.

• Este perfil formará parte del equipo de POOL para SIEMaaS, donde administrará el SIEM para diversos clientes.
• Análisis y comunicación de amenazas y alertas preventivas, provenientes de las fuentes de inteligencia y de otros SOCs nacionales e internacionales, instituciones, empresas o fabricantes.
• Gestión y afinado de casos de uso
• Administración y mantenimiento del SIEM
• Integración de nuevas fuentes
• Desarrollo de parsers
• Generación de informes y cuadros de mando
• Dicha gestión debe ir de la mano de una base fundamentada de conocimientos de ciberseguridad, que permita asesorar al cliente en las acciones a tomar sobre su infraestructura y garantizar la correcta monitorización.
• Comprensión y modelado en herramienta de orquestación XSOAR (Valorable)

Tu misión será realizar el análisis y comunicación de amenazas y alertas preventivas, provenientes de las fuentes de inteligencia y de otros SOCs nacionales e internacionales, instituciones, empresas o fabricantes.

Tu día a día:

• Gestión y afinado de casos de uso
• Administración y mantenimiento del SIEM
• Integración de nuevas fuentes
• Desarrollo de parsers
• Generación de informes y cuadros de mando
• Dicha gestión debe ir de la mano de una base fundamentada de conocimientos de ciberseguridad, que permita asesorar al cliente en las acciones a tomar sobre su infraestructura y garantizar la correcta monitorización.
• Comprensión y modelado en herramienta de orquestación XSOAR (Valorable)

• Una experiencia mínima de 36 meses en ciberseguridad, de los cuales al menos 12 meses hayan sido gestionando incidentes de ciberseguridad.
• Una experiencia de al menos 12 meses en la utilización de una herramienta de ticketing como RTIR o similares

• Titulación grado superior en informática y telecomunicaciones (o titulaciones reconocidas similares)
• Certificaciones relacionadas con SIEM y gestión de incidentes (CIH, Splunk, RSA Netwitness, SANS…)

• Administración de SIEM Sentinel, RSA Netwitness o Splunk (lenguaje de consultas, integración y tratamiento fuentes, creación de alertas y reportes, etc)
• Conocimientos de configuración sobre elementos de red perimetrales (Firewalls, Proxy, IDS/IPS, NAC.)
• Arquitectura de SIEM (troubleshooting, instalación y clústeres)
• Conocimientos básicos de administración de UNIX y Windows.
• Programación básica (python, bash y powershell sobre todo)
• Conocimientos de ciberseguridad
• Diseño de reglas para detección de amenazas
• Gestión de la monitorización de salud de SIEM

• Trabajo en equipo, proactividad (muy importante), resolutivo, capacidad de dialogo con clientes, liderazgo.
• Voluntad de hacer siempre lo mejor, crecer y asumir nuevas responsabilidades.
• Capacidad para aprender y crecer en un entorno en evolución.
• Capacidad para trabajar en un entorno que requiere un alto nivel de detalle y confidencialidad.
• Proactivo, automotivado con la capacidad de trabajar de forma independiente y como miembro de un equipo en un entorno desafiante.
• Capaz de trabajar tanto de forma autónoma.
• Fuerte enfoque hacia el cliente y orientación a resultados.
• Capacidad de síntesis y transmitir conceptos técnicos a nivel ejecutivo

Estamos convencidos/as de que los equipos diversos e inclusivos son más innovadores, transformadores y consiguen mejores resultados. Por ello promovemos y garantizamos la inclusión de todas las personas sin importar género, edad, orientación e identidad sexual, cultura, discapacidad o cualquier otra condición.

Si tienes acceso a SkillsBank, no olvides completar y actualizar tu perfil de habilidades para que desde el área de People podamos conocer mejor tu perfil e identificar tu encaje con la posición.

Nuestro proceso está diseñado para evaluar cuidadosamente las habilidades, capacidades e intereses de cada candidato en relación a cada vacante. Contactaremos contigo en caso de que tu candidatura avance en el proceso. Podrás realizar un seguimiento de tu solicitud en el mosaico Carrera profesional o desde el menú principal > Carrera Profesional > Solicitudes de empleo.

We are seeking a detail-oriented Information Security Analyst to join our growing team.

In this role, you will play a vital part in supporting third-party risk assessments and contributing to enterprise risk management initiatives, ensuring regulatory compliance and the security of data across our vendor network.

We accept CVs in English only.

Responsibilities

• Support third-party risk assessments with a focus on Information Security and GRC, helping to evaluate inherent and residual risks to enable risk-informed decision-making
• Assist in conducting due diligence on prospective and existing vendors, with an emphasis on basic cybersecurity controls, regulatory compliance (e.g., GDPR, SOC 2, ISO 27001), and data protection practices
• Help ensure the integrity, consistency, and audit-readiness of third-party data within the GRC platform to support reporting and regulatory requirements
• Collaborate with stakeholders in Information Security, Privacy, Legal, Procurement, and Business Units to share insights and contribute to enterprise risk management initiatives
• Participate in processes related to third-party offboarding, ensuring risk management steps are followed, and data retention, access, and continuity controls are reviewed
• Assist in preparing documentation and responses for external audits, internal reviews, or regulatory inquiries related to third-party risk management practices
• Contribute to the maintenance and improvement of TPRM policies, playbooks, and program metrics to support ongoing program development

Requirements

• 2+ years of experience in third-party risk management, information security, IT audit, or GRC, ideally within Gaming, Technology, or Consulting industries
• Basic understanding of security risk assessment frameworks and best practices (e.g., NIST, ISO 27001, SIG, CSA, etc.)
• Familiarity with tools like JIRA and GRC platforms (e.g., OneTrust, ServiceNow) is a plus, with a willingness to learn and support data analysis and platform improvements
• Ability to identify and assess security, privacy, and operational risks with an analytical, solutions-oriented mindset
• Strong verbal and written communication skills, with the ability to work collaboratively with team members and stakeholders across the organization
• Adaptability and willingness to take on tasks in a cross-functional environment, even in the face of ambiguity or changing requirements
• General understanding of regulatory requirements and good practices related to vendor management and data security is desirable
• Awareness of IT risk management concepts as well as familiarity with the S-SDLC and Agile Methodology is a bonus
• Fluent English communication skills at a B2+ level

We offer

• Learning Culture - We want you to be the best version of yourself, that is why we offer unlimited access to learning platforms, a wide range of internal courses, and all the knowledge you need to grow professionally
• Health Coverage - Health and wellness are important, that is why we have you and up to four family members in a premiere health plan. We have a couple of options, so you can choose what is best for you and your family
• Visual Benefit - Seeing your work for us would be a sight for sore eyes. We want your vision to always be at 100% which is why we offer up to $ COP for any visual health expenses
• Life Insurance Plan - We have partnered with MetLife to offer a full-coverage Ife insurance plan. So, your family is covered, even if you are gone.
• Medical Leave Coverage - We are one of the few companies that cover 100% of your medical leave, for up to 90 days. Your health is the most important thing to us
• Professional Growth Opportunities - We have designed a highly competitive and complete development process, where you will have all the tools to get where you have always wanted to be, personally and professionally
• Stock Option Purchase Plan - As an EPAMer you can be more than just an employee, you will also have the opportunity to purchase stock at a reduced price and become a part owner of our organization
• Additional Income - Besides your regular salary, you will also have the chance to earn extra income by referring talent, being a technical interviewer, and many more ways
• Community Benefit - You will be part of a worldwide community of over 50,000 employees, where you can learn, challenge yourself, stand out, and share your knowledge and experience with multicultural teams

Please note that even though you are applying for this position, you may be offered other projects to join within EPAM.

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

En este puesto, apoyarás en la implementación y mantenimiento de las medidas de seguridad necesarias para proteger los activos de información de la organización. Estarás involucrado en el monitoreo de sistemas, generación de reportes y la ejecución de actividades de mejora continua para asegurar el cumplimiento de las políticas y normativas de seguridad. Tu enfoque estará en garantizar la integridad, confidencialidad y disponibilidad de la información mediante el uso de herramientas tecnológicas avanzadas.

• Monitorear alertas de sistemas de DLP, IDS, IPS y XDR, asegurando la toma de acciones adecuadas.
• Generar y revisar reportes de actividad y de incidentes de seguridad, asegurando su correcta clasificación y resolución.
• Apoyar en la toma de evidencias y la recopilación de información para auditorías relacionadas con ISO 27001 y PCI DSS .
• Colaborar en la instalación, configuración y mantenimiento de controles de seguridad en servidores, sistemas, garantizando que se alineen con las mejores prácticas de seguridad.
• Asistir en la configuración y optimización de controles de seguridad en servicios de AWS .
• Participar en la mejora continua de los controles de seguridad, como DLP , XDR y EDR , implementando nuevas políticas y procedimientos de seguridad para fortalecer la protección de la infraestructura y la información.
• Colaborar con equipos de TI para integrar medidas de seguridad en proyectos tecnológicos.
• Realizar pruebas periódicas para validar la efectividad de los controles de seguridad implementados.

• Tecnólogo o profesional titulado en sistemas, telecomunicaciones, desarrollo de software o áreas afines.
• También se considera estudiantes de últimos semestres en carreras relacionadas.
• Manejo intermedio o avanzado de herramientas ofimáticas (Word, Excel, PowerPoint).
• Conocimiento básico de AWS y su administración de seguridad.
• Experiencia con EDR, XDR, DLP, IDS e IPS.
• Familiaridad con ISO 27001 y PCI DSS.

1 a 2 años

Deseable contar con un nivel básico de inglés, al menos para la lectura e interpretación de documentos técnicos.

El rol requiere habilidades blandas como la capacidad para liderar y llevar a cabo reuniones efectivas, así como para negociar y coordinar con otros equipos de trabajo. Es fundamental contar con una adecuada priorización de tareas para gestionar múltiples responsabilidades de manera eficiente. También se valora el manejo de conflictos con un enfoque orientado a soluciones, comunicación efectiva para transmitir ideas de manera clara, y pensamiento crítico para analizar situaciones, tomar decisiones acertadas y contribuir al logro de los objetivos del equipo.

Requisition ID:

Thanks for your interest in ScotiaTech, Scotiabank's new and innovative Technology hub in Bogota.

Join a purpose driven winning team that promotes creativity and innovation in a fast-paced environment, where we're always committed to results, in an inclusive, diverse, and high-performing culture.

Information Security Associate, Privileged Access Management (PAM)

Scotiabank's Information Security & Control (IS&C)'s Global Identity and Access Management group is responsible for development, management and governance of Logical Access control to the Bank's information systems. Privilege Access Management (PAM) is a unit in the Identity

and Access Management group that focuses on identification, management and governance of privileged access across Scotiabank and it's subsidiaries. This role will primarily focus on PAM for Canadian Business Lines and LATAM countries.

The Information Security Analyst - PAM, will provide guidance primarily to Canadian and LATAM business lines in the operations and management of Privileged Accounts and access across all information systems in-line with the bank's standard and policy. The successful

candidate will provide PAM Advisory services to support desks, infrastructure teams, technology partners and other Information security teams to maintain a strong security posture of the Bank.

Is this role right for you?

• You want to be part of a dynamic team leading global privileged Access management across Scotiabank.
• You thrive in current and desired state analysis of information security controls especially relating to privileged Access Management on Operating systems, Databases, Network devices and Applications.
• You excel in analysing Data and reports of access management and providing summary reports.
• You are passionate about new technologies and enjoy finding solutions to the challenges of implementing Access controls to protect information systems.
• Working on different types of projects (from large complex to simple) is a part of your DNA.
• You love to collaborate with various business lines, IT support functions and IS&C Control functions.

Do you have the skills that will enable you to succeed in this role?

• You possess great communication (verbal/written/presentation) skills in English and Spanish.
• You have at least 5 years of hands-on technical working experience in information technology or information security fields
• 4+ year of hands on technical experience in logical access management on Unix/Linux systems, Windows Servers and Active Directory
• Hands-on experience in access management on common Database platforms will be an advantage.
• Knowledge of basic SQL queries, running powershell and bash scripts is desired
• Experience analysing data using excel is required.

Nice to have: 4+ years experience in the administration of Privileged Access Management tools like CyberArk, Delinea, BeyondTrust and or Secret Server.

Location(s): Colombia : Bogota : Bogota

ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits.

At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted.

We are looking for a detail-oriented Senior Information Security Analyst to join our dedicated team.

This position involves supporting third-party risk assessments and contributing to enterprise risk management efforts, ensuring regulatory compliance and safeguarding data within our vendor network.

We accept CVs in English only.

Responsibilities

• Evaluate third-party risks with a focus on Information Security and GRC, enabling informed decisions regarding inherent and residual risks
• Conduct due diligence on prospective and current vendors, emphasizing cybersecurity controls, regulatory compliance (e.g., GDPR, SOC 2, ISO 27001), and data protection measures
• Ensure the integrity, consistency, and audit-readiness of third-party data within the GRC platform to meet reporting and regulatory standards
• Collaborate with teams in Information Security, Privacy, Legal, Procurement, and Business Units to share findings and support enterprise risk management activities
• Handle third-party offboarding processes, verifying risk management protocols and reviewing data retention, access, and continuity measures
• Prepare documentation and responses for external audits, internal reviews, or regulatory inquiries related to third-party risk management matters
• Maintain and refine TPRM policies, playbooks, and program metrics to aid program advancement

Requirements

• 3+ years of experience in third-party risk management, information security, IT audit, or GRC, ideally within Gaming, Technology, or Consulting industries
• Basic understanding of security risk frameworks and practices (e.g., NIST, ISO 27001, SIG, CSA, etc.)
• Familiarity with tools like JIRA and GRC platforms (e.g., OneTrust, ServiceNow) with flexibility to learn and support data analysis and system enhancements
• Ability to assess security, privacy, and operational risks while applying analytical and solutions-based approaches
• Strong verbal and written communication skills to cultivate collaboration across teams and organizational stakeholders
• Adaptability in handling cross-functional tasks amid ambiguity or evolving requirements
• General understanding of vendor management and data security regulations and standards
• Awareness of IT risk management principles coupled with familiarity with S-SDLC and Agile Methodology
• Fluent English communication skills at a B2+ level

We offer

• Learning Culture - We want you to be the best version of yourself, that is why we offer unlimited access to learning platforms, a wide range of internal courses, and all the knowledge you need to grow professionally
• Health Coverage - Health and wellness are important, that is why we have you and up to four family members in a premiere health plan. We have a couple of options, so you can choose what is best for you and your family
• Visual Benefit - Seeing your work for us would be a sight for sore eyes. We want your vision to always be at 100% which is why we offer up to $ COP for any visual health expenses
• Life Insurance Plan - We have partnered with MetLife to offer a full-coverage Ife insurance plan. So, your family is covered, even if you are gone.
• Medical Leave Coverage - We are one of the few companies that cover 100% of your medical leave, for up to 90 days. Your health is the most important thing to us
• Professional Growth Opportunities - We have designed a highly competitive and complete development process, where you will have all the tools to get where you have always wanted to be, personally and professionally
• Stock Option Purchase Plan - As an EPAMer you can be more than just an employee, you will also have the opportunity to purchase stock at a reduced price and become a part owner of our organization
• Additional Income - Besides your regular salary, you will also have the chance to earn extra income by referring talent, being a technical interviewer, and many more ways
• Community Benefit - You will be part of a worldwide community of over 50,000 employees, where you can learn, challenge yourself, stand out, and share your knowledge and experience with multicultural teams

Please note that even though you are applying for this position, you may be offered other projects to join within EPAM.

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

Core Responsibilities:

• Monitoring and Detection: Actively monitor network traffic, system logs, and security alerts for suspicious activity and potential security breaches.
• Incident Response: Investigate security incidents, analyze their root cause, and take appropriate actions to contain and remediate the situation.
• Vulnerability Management: Identify and assess vulnerabilities in systems and networks, and work with other teams to implement fixes and mitigations.
• Security Policy and Compliance: Develop, implement, and enforce security policies and procedures to ensure compliance with industry standards and regulations.
• Risk Assessment: Conduct regular risk assessments to identify potential threats and vulnerabilities and develop strategies to mitigate them.
• Security Awareness Training: Educate employees about security best practices and promote a security-conscious culture within the organization.
• Security Tools and Technologies: Utilize and maintain security tools such as firewalls, intrusion detection systems, antivirus software, and encryption technologies.
• Threat Intelligence: Stay up-to-date on the latest cyber threats and attack techniques, and share this knowledge with the team.
• Collaboration: Work closely with other IT teams, business units, and management to ensure a coordinated approach to information security.
• IT initiatives: Support other IT initiatives

Key Skills and Qualifications:

• Technical Skills: Strong understanding of networking concepts, operating systems, security technologies, and incident response procedures.
• Analytical Skills: Ability to analyze security events, identify patterns, and determine the root cause of incidents.
• Problem-Solving Skills: Ability to develop and implement effective solutions to security problems.
• Communication Skills: Ability to effectively communicate security risks and recommendations to both technical and non-technical audiences.
• Organizational Skills: Ability to manage multiple tasks, prioritize effectively, and meet deadlines.
• English as a second language requirement (B1 and above)

Education and Certifications:

A bachelor's degree in computer science, information security, or a related field is often required, along with relevant certifications such as Security+, CISSP, or CISM.

Are you this person?

Are you a highly talented, collaborative, intelligent, compassionate, committed, well-traveled, self-driven individual with leadership qualities, a passion for working in health care, a calling to help make lives better and driven by numbers?

Tipo de puesto: Tiempo completo

Requisition ID:

Thanks for your interest in ScotiaTech, Scotiabank's new and innovative Technology hub in Bogota.

Join a purpose driven winning team that promotes creativity and innovation in a fast-paced environment, where we're always committed to results, in an inclusive, diverse, and high-performing culture.

Information Security Associate, Privileged Access Management (PAM)
Scotiabank's Information Security & Control (IS&C)'s Global Identity and Access Management group is responsible for development, management and governance of Logical Access control to the Bank's information systems. Privilege Access Management (PAM) is a unit in the Identity

and Access Management group that focuses on identification, management and governance of privileged access across Scotiabank and it's subsidiaries. This role will primarily focus on PAM for Canadian Business Lines and LATAM countries.

The Information Security Analyst - PAM, will provide guidance primarily to Canadian and LATAM business lines in the operations and management of Privileged Accounts and access across all information systems in-line with the bank's standard and policy. The successful

candidate will provide PAM Advisory services to support desks, infrastructure teams, technology partners and other Information security teams to maintain a strong security posture of the Bank.

Is this role right for you?

• You want to be part of a dynamic team leading global privileged Access management across Scotiabank.
• You thrive in current and desired state analysis of information security controls especially relating to privileged Access Management on Operating systems, Databases, Network devices and Applications.
• You excel in analysing Data and reports of access management and providing summary reports.
• You are passionate about new technologies and enjoy finding solutions to the challenges of implementing Access controls to protect information systems.
• Working on different types of projects (from large complex to simple) is a part of your DNA.
• You love to collaborate with various business lines, IT support functions and IS&C Control functions.

Do you have the skills that will enable you to succeed in this role?

• You possess great communication (verbal/written/presentation) skills in English and Spanish.
• You have at least 5 years of hands-on technical working experience in information technology or information security fields
• 4+ year of hands on technical experience in logical access management on Unix/Linux systems, Windows Servers and Active Directory
• Hands-on experience in access management on common Database platforms will be an advantage.
• Knowledge of basic SQL queries, running powershell and bash scripts is desired
• Experience analysing data using excel is required.

Nice to have:
4+ years experience in the administration of Privileged Access Management tools like CyberArk, Delinea, BeyondTrust and or Secret Server.

Location(s): Colombia : Bogota : Bogota

ScotiaTech is a business unit within ScotiaGBS, a Scotiabank Group company located in Bogota, Colombia. The ScotiaTech hub was created to support different technology systems and processes of the Bank. We offer an inclusive, positive work environment, and competitive benefits.

At ScotiaTech, we value the unique skills and experiences each individual brings and are committed to creating and maintaining an inclusive and accessible environment for everyone. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at ScotiaTech; however, only those candidates who are selected for an interview will be contacted.

At
ScotiaTech
we want you to be part of a team that is always in personal and professional growth, for this reason we are looking for our new
Information Security Associate
.

What will you do? Is this role right for you?

• You want to be part of a dynamic team leading global privileged Access management across Scotiabank.

• You thrive in current and desired state analysis of information security controls especially relating to privileged Access Management on Operating systems, Databases, Network devices and Applications.

• You excel in analysing Data and reports of access management and providing summary reports.

• You are passionate about new technologies and enjoy finding solutions to the challenges of implementing Access controls to protect information systems.

• Working on different types of projects (from large complex to simple) is a part of your DNA.

• You love to collaborate with various business lines, IT support functions and IS&C Control functions.

What do we offer you?

• Growth opportunities
• Diverse, dynamic, and multicultural environment
• Benefits for your financial and emotional well-being
• Competitive wages

Do you have the skills that will enable you to succeed in this role?

• You possess great communication (verbal/written/presentation) skills in English (at least B2)

• You have at least 5 years of hands-on technical working experience in information technology or information security fields.

• 4+ year of hands on technical experience in logical access management on Unix/Linux systems, Windows Servers and Active Directory.

• Hands-on experience in access management on common Database platforms will be an advantage.

• Knowledge of basic SQL queries, running powershell and bash scripts is desired

• Experience analysing data using excel is required.

If you are seeking a fulfilling opportunity to join our esteemed team and contribute to the overall success, we invite you to apply for the role.

Take the next step in your career journey and make a significant impact today