AppSec and CNAPP Operations Specialist
ScotiabankToronto, Ontario, Canada
Posted January 15, 2026
Full Time
About the Company
Scotiabank is a leading bank in the Americas, guided by our purpose: 'for every future'.
Job Description
The AppSec and CNAPP Operations Specialist is responsible for supporting the enterprise security strategic goals through various processes, including developing and enhancing strategies and processes to identify, analyze, and communicate AppSec and CNAPP vulnerabilities. The incumbent will also collaborate with stakeholders across the Bank to deliver Cloud and Application Security capabilities for the Bank.
Requirements
- 7+ years’ relevant working experience in IT (cloud security, application security, etc.).
- 5+ years’ experience with documenting process, procedure, user guides and portals.
- 3+ years’ experience with Microsoft Power Platform (PowerBI, PowerApps, Power Automate) SQL Server, M365, Azure Pipelines
- 3+ years’ experience practicing application security (SAST, DAST, SCA, MAST) throughout the Secure Software Development Lifecycle (SSDLC), with demonstrated experience in vulnerability assessment, security integration, automation of security processes, risk assessment and mitigation.
- 2+ years’ experience with Cloud Security domains like CNAPP, CWPP, CSPM and/or tools like SCCE, CrowdStrike, Prisma Cloud, Aqua Enterprise, MS Defender etc.
- 2+ years’ experience with popular CI/CD tools and processes like BitBucket/GitHub, Jfrog Artifactory, Jenkins, Azure DevOps, GitLab CI/CD, CircleCI.
Benefits
- Upskilling through online courses, cross-functional development opportunities, and tuition assistance.
- Competitive Rewards program including bonus, flexible vacation, personal, sick days and benefits.
- Community Engagement with various programs such as hackathons, contests, Humans of Digital and much more!
