JOB DESCRIPTION:

The Information Security Specialist main function is to be a team lead for the Security Operations Management
Pod and is responsible for driving program commitments, and execution of a continuous delivery approach.
These processes include onboarding technologies to program, support POD members with obtaining and
defining requirements, consolidating blockers and support escalation with key stakeholders.

WHO WE ARE:

TD is one of the world’s leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you’ve got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we’re here to support you towards your goals. As an organization, we keep growing – and so will you.

• 
  
  
  
• Communicate with key stakeholders to determine cyber technology relevance in-scope for the

• Program, and drive conversations to define requirements for onboarding to Program.
• 
  
  
  
• Clearly communicate Program objectives and support ongoing effort to design, build and implement

• the onboarding of cyber technologies to achieve Program commitments.
• 
  
  
  
• Collaborate and align across multiple teams and across domains to drive requirement definitions.

• 
  
  
  
• Drive process optimization through defining target state, while identifying opportunity for tactical

• solutions in efforts to iterate and mature in short-term to long-term goals.
• 
  
  
  
• Support definition development of cyber technologies to be inventoried and onboarded to Project.

• 
  
  
  
• Lead process development to build and implement cyber technology compliance monitoring for hand-

• over to Compliance Monitoring team.
• 
  
  
  
• Identify opportunity for automation to improve maturity of existing processes.

• 
  
  
  
• Responsible for assessing blockers and engaging technology teams responsible to support for removal

• of blockers identified by POD members.
• 
  
  
  
• Responsible for identifying quarterly commitment sizing, estimation of time requirements, and

• dependencies.
• 
  
  
  
• Responsible for ensuring adherence to POD TD’s and CICS’ agile framework.

• 
  
  
  
• Identify risks to delivery commitments and escalate in a timely manner to ensure appropriate

• escalations and support are received.
  Qualifications
• 
  
  
  
• A University or post-Graduate degree in Information Technology, Computer Science, ComputerEngineering, or a related discipline is an asset.

• 
  
  
  
• Min 5+ years’ experience in working in Cyber Security / Information Risk Management, preferably in an operations role (Compliance Management, SOC, Vulnerability Management, Security Tools Operations,DevSecOps).

• 
  
  
  
• Excellent written and oral communication skills.

• Ability to convey detailed technical information into summarized business language. ·
• Basic people management skills. ·
• Ability to coordinate a team work to ensure an adequate workload to team members depending on their skills, knowledge and performance. ·
• Basic knowledge of security controls/mechanisms and threat/risk assessment techniques pertaining to complex data, cloud, application and networking environments. ·
• Basic experience and knowledge of cloud security in one or more cloud platforms (AWS, GCP, Azure) ·
• Basic experience and knowledge of endpoint and network security technologies and controls (Endpoint Threat Detection, DDOS, WAF etc.) ·
• Organizational and self-directing skills – ability to initiate, coordinate and prioritize responsibilities and follow through on tasks to completion. ·
• An approach to work that includes initiative, sound judgment, diplomacy and Discretion. ·
• Advanced problem Solving / Analytical Thinking Skills. · Ability to work independently on a variety of assignments with minimal supervision. ·
• Ability to work without supervision with senior managers, supervisors, VIPs and Users. ·
• Ability to perform analysis and reporting on information from multiple data sources using data mining technique for the purpose of documenting analysis results, produce report and present to technical and executive stakeholders. · Demonstrate expertise in Enterprise IT operations, incident management, change management, Access/Identity Management, Security Operations, vulnerability and compliance management, ticketing system, incident ticket life cycle and SLA terms ·
• Experience working within Agile framework and using JIRA. ·
• Experience with ServiceNow and Splunk.
  Certifications: · Completion the following preferred: GIAC (GCIA, GPEN, GWAPT, GCIH, GSEC and etc), CCNP, CCNA, CISSP,CCSP (and Cloud related qualifications)
  

  LI-Tech