Job Posting Title Information Security Specialist - Devsecops jobs at Td Bank in Canada, Toronto

Depth & Scope:

• Expert knowledge of specific domain or range of engineering frameworks, technology, tools, processes and procedures, as well as organization issues
• Expert knowledge of TD applications, systems, networks, innovation, design activities, best practices,business/organization,Bank standards, and may fulfill a governance role
• Expert knowledge and experience in own discipline; integrates knowledge of business and functional priorities
• Acts as a key contributor in a complex and critical environment
• May provide leadership to teams or projects; shares expertise
• Applies in-depth skills and broad knowledge of the business to address complex problems and non-standard situations

Education & Experience:

• Bachelor's or Graduate degree
• Strong academic background (e.g., computer science, engineering)

Preferred Qualifications :

• 7 + years relevant experience in cyber security/ data protection.
• Expertise with network, email, and endpoint DLP.
• Expertise in DLP policy creation life cycle.
• Expert knowledge of Win Server 2016/2019 and/or RHEL/Unix
• Knowledge of PCI and other regulatory requirements for Data protection
• Understanding of firewalls, intrusion detection systems, authentication mechanisms, and networking protocols including SMTP, HTTP(s), DNS, TCP/IP, and SNMP as they pertain to security solutions.
• Exceptional problem-solving and analytical capabilities.
• Excellent communication and teamwork skills.
• Skills in scripting and RegEx is nice to have

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Job Description:

Description

• Review and analyze current network designs to ensure they are in line with TD Standards and Controls
• Work with Project teams to understand and accommodate application architecture and the App’s specific requirements for Azure/GCP networking
• Work with security team to understand and accommodate network security requirements for application
• Work with network engineering team to help them build and troubleshoot Cloud networks (focus on Azure and GCP)
• Define network governance model within an infrastructure as code environment.
• Opine on designs that account for the end-to-end solution of a system that is in line with the business and security objectives, which could include the design of the functional architecture for multiple functions of the enterprise.
• Analyzes the chosen technologies against the implied target state and leverages deep operational knowledge to identify technical and business gaps from a security perspective
• Establish requirements and drive implementation of network monitoring and management infrastructure for both availability and performance management within the content of the overall Azure cloud implementation
• Will require both operational and design skills to help execute the intended architecture in a secure and maintainable way on the Azure/GCP/AWS platforms.
• Review requests for firewall rules and/or security exceptions (e.g. URL filtering exceptions, SSL decryption bypass, Pull Requests). Work with the client to ensure the requests meet the required security standards
• Oversee, monitor, enforce enterprise frameworks and methodologies that relate to technology controls / information security activities
• May be required to provide after-hours support for firewall Rules review.
• Participate in business specific / cross-functional / enterprise initiatives helping to identify risk and provide guidance
• Identify and recommend opportunities to enhance productivity, effectiveness and operational efficiency especially of existing processes
• Participate in the investigation of Information Security Incidents and development ofremediation/preventionmechanisms

Qualifications:

• 10+ years of experience as a full time IT professional
• 3+ years of experience designing and supporting Azure environments, including IaaS and PaaS
• Thorough understanding ofnetworking/firewallingconcepts and network security deployment strategies, including both traditional on premises and cloud deployments.
• This includes a detailed understanding of layers 3/4 and 7.
• Knowledgeable of cloud and hybrid-cloud implementations including IaaS, PaaS and SaaS
• Demonstrable experience deploying enterprise workloads to Azure and/or GCP
• Ability to understand network security standards and effectively apply these as part of network security governance
• Understanding and experience working with Infrastructure As Code – ability to review and understand YAML/JSON files and templates as they pertain to networking. Familiarity with Bitbucket and GitHub is a plus
• Hands on experience using the Azure administration portal
• Understand product offerings from Azure/GCP/AWS and vendor partners
• Have intimate knowledge of Cloud Micro-segmentation and Cloud network automation
• Have intimate knowledge of Azure networking services or and offerings, and best practices and patterns for Azure cloud-native network design, Azure firewall, azure private link, VPN gateways, Network Watcher, Azure Monitor.
• Have intimate knowledge of cloud tools and capabilities (SIEM, SOAR, EDR and similar) and integration requirements required to automate cloud on-boarding and ongoing security operations
• Must have extensive working experience with Microsoft Office technologies
• JIRA experience is a plus

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Job Description

Reporting to the Senior Manager of the Enterprise Protect (EP) Technology Controls Office (TCO), the Senior Analyst will work alongside a team of strong 1B risk professionals and technology stakeholders in managing Global Security & Defense's (GSD) risk & controls portfolio. Through building strong relationships and developing a thorough understanding of the organization's objectives and strategy, the successful candidate will act as a trusted risk partner, balancing technology and business acumen to guide the teams as they navigate through complex risk domains and regulatory requirements. A key component of the role is to foster and effectively manage relationships with Risk & Control Partners and executives across all lines of defense (such as Technology & Cybersecurity, Compliance, Operational Risk, Audit).

Responsibilities:

• Managing, monitoring, reporting and communication of technology and cybersecurity risks as well as regulatory, audit and self-identified issues.

• Provide our GSD stakeholders with oversight and guidance over remediation activities for Audit, Regulatory, Operational Risk Management (ORM) issues and other tech and cyber risk issues

• Supporting and consulting GSD stakeholders in preparation for and throughout audits and exams, and in understanding potential issues, composing management responses and appropriate remediation activities

• Working with Internal and External Auditors, Legal & Compliance, to ensure appropriate oversight of IT and cyber risks

• Participate in the execution of Operational Risk Management and Compliance programs involving multiple stakeholders across the organization.

• Participate in establishing robust and flexible processes for internal and external regulatory and risk operational reporting and status reporting, including regulatory requirements across multiple jurisdictions

• Understanding and keeping current on technology and cybersecurity trends as well as evolving audit, regulatory and compliance requirements

• Manage stakeholder and executive relationships as they pertain to Program deliverables; influence and challenge individuals at all levels of the organization to effectively manage risk and proactively drive milestone progress and delivery dates

• Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology / security threats against TDBG’s business

• Contribute to the definition, development, and oversight of a global security management strategy and framework

Job Requirements

• University Degree.

• 5-7 years of relevant experience.

• Excellent stakeholder management, communication (written and verbal), and organizational skills, including the ability to present topics in business terms to both technology and business staff including executives.

• Ability and commitment to serve as a subject matter expert on business-specific, cross-functional and enterprise initiatives.

• Agile mindset with a passion for innovation and challenging the status quo

• Knowledge of business and technology standards.

• Information Security Certification / Accreditation an asset.

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Department Overview

This is a senior level role and specific deliverables and accountabilities include, but are not limited to:

• Guiding and leading various team members with initiatives the Endpoint Protect team is involved with either in a leading or supporting capacity
• Applying your experience and expertise to ensure all TD areas that interact with Endpoint Threat Protection and Automation technologies (eg: EDR, AV, FIM, SOAR, etc) are implemented correctly and have the necessary capabilities, processes and documentation to operate effectively.
• Contribute to project activities such as: understanding business needs to properly scope and estimate project efforts, identifying risks and recommending mitigation measures, communicating activity status, as well as escalating and communicating possible issues and working with other teams within and outside of security engineering to ensure project goals are being met and any projects you lead continue to make progress.
• Build relationships and support internal teams (eg: Cyber Security Operations, Red / Blue / Hunting Teams, Threat Intelligence) leveraging other Endpoint Threat Protection tools such as the threat intel, breach attack simulation and automation platforms for their team's deliverables
• Partner with Operations to automatically integrate with appropriate tools and processes efficiency improvements via automation (scripting or using software development techniques)
• Leading and participating in changes / updates to infrastructure that may occur outside business hours
• Monitor and control costs associated with your work, which may include contributions to negotiations of third-party contracts/agreements
• Collaborate with governance and control groups (e.g. regulatory and operational risk, compliance and audit) to provide your subject matter expertise and consult on risk and compliance issues related to Engineering technology and tools.
• Work with technology partners (e.g., Solution Designers and Architects) to research and analyze current state system capabilities and define technology solutions options and recommendations.
• Gain knowledge in own area, stay abreast of technology trends and developments, develop expertise in TD services, applications, infrastructure, analytical tools and techniques, business domains and their products and services.
• Work with vendors to support business case development (consistent with technology requirements and guidelines) including benefits identification, RFI/RFP and service level agreements.
• Coach new or less experienced colleagues and serve as a reference point throughout requirements management life cycle.

Job Requirements

This is a senior level role and will require a commensurate level of experience and proficiency with the requirements.

• Experience with solution, policy and architecture design along with experience implementing and supporting endpoint security tools, particularly EDR (Endpoint Detection and Response), FIM (File integrity monitoring), Security Automation / Orchestration platforms, Threat intelligence tools / platforms, Breach Attack Simulation platforms and similar
  • Examples of such tools include (but not limited to): Crowdstrike, Microsoft Defender Platform tools, Symantec Datacentre Security, XSOAR
• Experience leading multi-team projects and managing project timelines to ensure deliverables are met
• Extensive experience with OS administration and troubleshooting (Windows and Linux, MacOS is a plus)
• Knowledge of modern digital architecture (cloud, container, messaging and microservices)
• Proficiency, experience, and sound knowledge of other design activities used to secure systems and networks
• Proficient in troubleshooting application and network issues
• Customer Service in an IT context which includes communications both to technical and non-technical teams and individuals
• A strong desire to work and learn independently, and able to contribute in a team environment
• Nice to have:
  • Familiarity with operating or developing in Azure, AWS or Google Cloud Compute Platform
  • Technology and Infrastructure (such as): Azure / Azure AD / Active Directory / Networks

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Targeted sales training is provided where you will build your sales skills and credit knowledge. Our comprehensive training will ensure you smoothly integrate within TD's employee focused corporate culture and your new team.Your Sales Manager is committed to your success and will work closely with you by making joint sales calls and conducting monthly coaching sessions. You will work from a sales management system which has been designed specifically for our sales channel to enable your success.

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Targeted sales training is provided where you will build your sales skills and credit knowledge. Our comprehensive training will ensure you smoothly integrate within TD's employee focused corporate culture and your new team.Your Sales Manager is committed to your success and will work closely with you by making joint sales calls and conducting monthly coaching sessions. You will work from a sales management system which has been designed specifically for our sales channel to enable your success.

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Job Description:

About This Role:

As a Container Vulnerability Management Analyst at TD Bank, you will be a member of the Enterprise Vulnerability Management (EVM) Governance team and will develop and implement technology controls and policies to ensure that the containerized technologies are built and deployed securely. You will focus on enabling TD teams and leaders to understand security risks coming from vulnerabilities in containers. Working closely with our partners in development experience and DevOps verticals, you will identify gaps in current processes and tooling, enforce standards and policies and track vulnerability remediation to mitigate risks. You will have an opportunity to present various reports, analyses, and assessments to functional, business, and enterprise-level audiences.

To succeed in this position, you will need to have a strong understanding of vulnerability management and risk management disciplines as well as technical expertise in the world of containers, including technologies such as Docker, Kubernetes, Red Hat OpenShift, Wiz and any of the cloud platforms (Azure and GCP preferred).

Responsibilities:

• Provide technical expertise and oversight for container scanning, container vulnerability prioritization, and remediation control requirements.
• Be a lead contributor to enterprise-level initiatives pertaining to container security and risk remediation.
• Effectively communicate critical vulnerabilities, their impacts, associated risk, and remediation priorities to cross-functional leadership teams.
• Help build and enforce technology controls, along with container security standards to ensure best practices are followed, when building and deploying application containers.
• Influence behavior to reduce risk and foster a strong technology risk management culture throughout the bank.

Job Requirements:

Must-haves

• Bachelor's or Master's degree
• 5+ years of experience in information security or product security
• Strong experience with vulnerability management concepts, including identifying, assessing, mitigating, and reporting security vulnerabilities
• Technical expertise with Docker, Kubernetes, platforms such as Azure Kubernetes Service (AKS) or Google Kubernetes Engine (GKE), container registries such as Azure Container Registry (ACR) or Google Artifact Registry (GAR), Sonatype Nexus.
• Experience with container scanning tools such as Aqua Security or Wiz
• ServiceNow SecOps, including the Vulnerability Response modules
• Working knowledge of CVEs, CWEs, risk treatment and remediation tracking strategies
• Familiarity with prioritization techniques of vulnerabilities such as EPSS, SSVC, etc.
• Familiarity with Azure or GCP cloud and cloud security.
• Demonstrated ability to participate in complex, comprehensive or large projects and initiatives.
• Ability to support technology controls and information security for project teams, the business, organization, and outside vendors.
• Ability to work independently without supervision; demonstrated ability to manage and deliver tasks and job responsibilities in a timely manner
• Excellent written communication and organizational skills.

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.