informatics security analyst
Title posted on CareerBeacon - AppSec and CNAPP Operation Specialist
Posted on April 11, 2026 by Employer details Scotiabank
Job details
Requisition ID: 254223 Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.The Team:Scotiabank's Application Security Operation team has global accountability and is highly supportive of the Bank's business, enabling execution of the Bank's strategies, operations and services, while ensuring that appropriate application security practices are adhered to. Application Security Operations are expanding the scope to cover API Security. This function provides core competency in proactively detecting API misconfigurations while working with the appropriate teams instituting appropriate controls to mitigate risks, specifically as it pertains to repositories and production. This candidate will be expected to work closely with the application development groups to integrate AppSec processes and procedures into the software development lifecycle.The Role:The incumbent is responsible for supporting the Senior Lead, Senior Manager, Director, CIO and CISO in achieving enterprise security strategic goals through various processes, including:Develop and/or enhance the strategies and processes to identify, analyze, and communicate API Security findings as per the CISO Directives, technical standards and published communication process flows.Monitor API posture for vulnerabilities, misconfigurations, and policy violations detected by API security platforms.Prioritize and triage findings, working with development teams to drive timely remediation.Fine-tune policies and rules based on data collected during analysis.Perform root?cause analysis on recurring API security issues.Maintain a complete, continuously updated inventory of all APIs across the organization.Validate API classifications, data sensitivity levels, and ownership metadata.Provide regular reports to security leadership on API security maturity and gaps.Create and maintain documentation and playbooks.Is this role right for you? In this role, you will: Collaborate with stakeholders across the Bank ? you will work closely with development and engineering, DevOps, cloud, application security and other application owner teams across the organization to deliver Cloud and Application Security capabilities for the Bank.Contribute to the success of our cloud transformation by supporting the Review and Triage of the findings flagged by AppSec and CNAPP.Recommend, design, assess, implement, deploy and maintain AppSec and CNAPP controls required to protect Scotiabank and its customers.Responsible for adherence to an established process flow that ensures development support teams, infrastructure support teams, and business risk owners implement control measures that effectively mitigate or eliminate the identified risk.Understand how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decisions.Do you have the skills that will enable you to succeed in this role? We'd love to work with you if you have:3+ years' relevant working experience in IT (cloud security, application security, etc.).1+ years' experience practicing application security (API, SAST, DAST, SCA, MAST) throughout the Secure Software Development Lifecycle (SSDLC), with demonstrated experience in vulnerability assessment, security integration, automation of security processes, risk assessment and mitigation.1+ years' experience preferred with Cloud Security domains like CNAPP, CWPP, CSPM and/or tools like SCCE, CrowdStrike, Prisma Cloud, Aqua Enterprise, or MS Defender.1+ years' experience with popular CI/CD tools and processes like BitBucket/GitHub, Jfrog Artifactory, Jenkins, Azure DevOps, GitLab CI/CD would be an asset.Experience with any programming languages (Such as Python, Perl, etc.)An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)Excellent communication skills and good support skills for triaging and analysis of issues for all development teams.Proficient at collabora- Location Toronto, ON
- Work location On site
- Salary$30.00 to $72.12HOUR hourly
- Terms of employment Permanent employmentFull time
- Starts as soon as possible
- vacancies 1 vacancy
- Source CareerBeacon #2215442
Important notice: This job posting has been provided by a partner site. Job Bank is not responsible for this content.
Report a problem with this job posting
Page details
- Date modified: