JOB DESCRIPTION:

Protect Platform is a group of technology, security and risk professionals in Canada, the U.S. and the U.K., focused on managing a comprehensive program to assess, prioritize, and mitigate business risk with technology controls.

Platform Protect - Email Security Governance team is seeking an Email Information Security Specialist. In this role, you will be responsible for providing email security expertise on an enterprise-wide basis to ensure effective controls are in place. You will contribute to the development/evolution of Email security governance policies, standards and processes. You will also provide guidance and consultation to the business and technology teams with regards to design and implementation of information security controls.

• Oversee, monitor, enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.
• May be required to provide after-hours support for change monitoring review and/or security incidents.
• Participate in business specific / cross-functional / enterprise initiatives helping to identify risk and provide guidance.
• Contribute to the review of internal processes and activities to assist in identifying potential opportunities for improvement.
• Identify and recommend opportunities to enhance productivity, effectiveness and operational efficiency especially of existing processes.
• Understanding of key controls, ability to write technical security specifications (TSS) standard documents.
• Create opportunities to educate clients / stakeholders to influence a risk aware culture.
• Participate in the investigation of Information Security Incidents and development of remediation / prevention mechanisms.
• Able to work well with others and be able to influence and change behaviors and build consensus.
• Review requests related to Email, DNS and / or security exceptions. Work with the client to ensure requests meet the required TD Security standards.
• Keep current on emerging trends / developments and grow knowledge of the business, analytical tools, and techniques.

Qualifications:

• 10 years of experience in an information technology role preferably within the financial services industry or a consulting company.
• Knowledge and understanding of various technologies related to email and platforms including secure mail gateways, protocols, APIs, 3rd party providers, Graph API, header analysis, SPF/DKIM/DMARC.
• Experience with email management related to enterprise services and applications.
• Understanding of external IP space and IP restrictions.
• Familiarity of industry guidelines for email technologies, i.e. NIST, CISA, CIS.
• Must be organized, flexible, and able to multitask.
• Solid communication written and verbal skills are required.
• Able to create Process Control and Documents; familiar with RACI framework.
• Working with business partners to ensure remediation plans are followed.
• Resourceful and able to work independently with minimum supervision under the direction of the Senior Manager – Email Security Governance.
• Strong research, analytical and problem-solving abilities.
• Perform Email Design reviews and identify security gaps.
• University degree in Information Technology, Computer Science, Computer Engineering or equivalent.
• Information Security certification or accreditation would be an asset.

LI-Tech

WHO WE ARE:

TD is one of the world’s leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you’ve got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we’re here to support you towards your goals. As an organization, we keep growing – and so will you.

• Oversee, monitor, enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.
• May be required to provide after-hours support for change monitoring review and/or security incidents.
• Participate in business specific / cross-functional / enterprise initiatives helping to identify risk and provide guidance.
• Contribute to the review of internal processes and activities to assist in identifying potential opportunities for improvement.
• Identify and recommend opportunities to enhance productivity, effectiveness and operational efficiency especially of existing processes.
• Understanding of key controls, ability to write technical security specifications (TSS) standard documents.
• Create opportunities to educate clients / stakeholders to influence a risk aware culture.
• Participate in the investigation of Information Security Incidents and development of remediation / prevention mechanisms.
• Able to work well with others and be able to influence and change behaviors and build consensus.
• Review requests related to Email, DNS and / or security exceptions. Work with the client to ensure requests meet the required TD Security standards.
• Keep current on emerging trends / developments and grow knowledge of the business, analytical tools, and techniques