Senior Information Security Controls Testing Specialist

1 week ago

Canada TD Bank Full time
About the Role

We are seeking a highly skilled and experienced Senior Information Security Controls Testing Advisor to join our team at TD Bank. As a key member of our Information Security team, you will play a critical role in ensuring the security and integrity of our technology controls and systems.

Key Responsibilities
  • Regulatory Compliance: Consult with stakeholders on regulatory compliance requirements, reporting, and questions to ensure alignment with industry standards and best practices.
  • Operational Risk Management: Provide support and consulting in preparation for Operational Risk Management assessments and in composing management responses and appropriate remediation activities.
  • First Line Control Exceptions: Provide support and consulting in composing management responses and appropriate remediation activities for First Line control exceptions and Self-Declared findings.
  • Technology Controls / Information Security: Provide consultation and advice to partners on a broad range of Technology Controls / Information Security programs / policies / standards and incidents for AIVM.
  • Project Consulting: Conduct project consulting on assessment of risk, definition of required controls, appropriateness of implemented control procedures, vulnerability assessments, and any other relevant areas.
  • Risk and Control Design Assessments: Lead or contribute to completion of risk and control design assessments for AIVM activities, articulate and document impact of control gaps to the business and the overall Bank, risk mitigation and remediation plans, remediation strategy document as applicable.
  • Technology Security: Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology / security threats against TDBG's business.
  • Technology Risk Reporting: Support development and maintenance of ongoing Technology Risk reporting, monitoring key trends, and defining metrics to regularly measure control effectiveness for own area.
  • Enterprise Architecture: Work proactively with technology partners / stakeholders and service/platform owners to ensure all technology security components are integrated into the bank's overall Enterprise Architecture, and any control gaps are addressed.
  • Computer Security Incident Responses: Participate if required in computer security incident responses relevant to business (or enterprise wide) and represent respective function and Enterprise position to the business, and business needs to incident response team.
  • Internal Policies / Procedures: Adhere to internal policies / procedures, technology control standards, and applicable regulatory guidelines.
  • Enterprise Frameworks and Methodologies: Adhere to and advise on / oversee / monitor / enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.
  • Risk Management Culture: Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise.
  • Standards, Policies, Procedures, and Solutions: Define / develop / implement / manage standards, policies, procedures, and solutions that mitigate risk and maximize security, availability of service, efficiency, and effectiveness.
  • Relationship Management: Actively manage relationships with other areas of Technology / businesses / corporate and/or control functions and ensure alignment with enterprise and/or regulatory requirements.
  • Emerging Issues, Trends, and Regulatory Requirements: Keep abreast of emerging issues, trends, and evolving regulatory requirements and assess potential impacts to the Bank.
  • Risk Management and Control: Maintain a culture of risk management and control, supported by effective processes and sound infrastructure and in alignment with risk appetite.
  • Business Initiatives: Participate in business-specific / cross-functional / enterprise initiatives as a subject matter expert helping to identify risk / provide guidance.
  • Reporting, Analysis, and Assessments: May develop / provide / contribute to complex reporting, analysis, and assessments at the functional or enterprise level.
  • Knowledge and Skills: Keep current on emerging trends / developments and grow knowledge of the business, analytical tools, and techniques.
  • Workload Management: Prioritize and manage own workload to deliver quality results and meet assigned timelines.
  • Positive Work Environment: Support a positive work environment that promotes service to the business, quality, innovation, and teamwork and ensure timely communication of issues/ points of interest.
  • Relationships and Communication: Establish effective relationships across multiple business and technology partners, program, and project managers.
  • Knowledge Transfer: Participate in knowledge transfer within the team and business units.
  • Expert Knowledge: Expert knowledge of IT security and risk disciplines and practices.
  • Advanced Knowledge: Advanced knowledge of organization, technology controls / security / risk issues.
  • Leadership and Expertise: May participate on complex, comprehensive, or large projects and initiatives. Acts as a lead expert resource in technology controls / information security for project teams, the business / organization, and/or outside vendors.
  • Reporting Structure: Generally reports to Senior Manager or above.
  • Information Security Certification / Accreditation: Information security certification / accreditation an asset (e.g. Experience with risk partner engagement (including ORM, Audit, and Regulators)
    ~ Experience with testing of technology controls
    ~ Experience with development and management of Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs)
    ~ Excellent knowledge of cybersecurity industry control standards
    ~ SharePoint, Confluence, JIRA)
    ~ Working knowledge of ServiceNow Security Operations modules a plus (e.g. Vulnerability Response, Configuration Compliance)
    ~

  • Information Security Specialist

    1 month ago

    Canada, CA The Toronto-Dominion Bank Full time

    Information Security Specialist (Penetration Testing) Work Location: CanadaHours: 37.5Line of Business: Technology SolutionsPay Details: We’re committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including...

  • Information Security Specialist

    4 weeks ago

    Canada 7 STAR LIQUOR-SAINT ALBERT Full time

    Position Overview: Information Security Specialists are essential technology professionals who evaluate and mitigate security vulnerabilities related to data, software, and hardware systems. Their primary goal is to identify, prevent, and reduce the impact of security incidents.Key Responsibilities:Assess administrative, physical, and technical security...

  • Information System Security Specialist

    4 weeks ago

    Canada, CA VDart Inc Full time

    Role: Information System Security SpecialistLocation: Montreal, Quebec (Hybrid)Type: ContractJob Responsibilities Include:Contacting system owners/vendors for assigned systems to gather relevant background material about the system/application and setting up interviews for information gathering.Conducting remote/in-person interviews with system...

  • Senior Advisor for Information Security Controls Assessment

    4 weeks ago

    Canada TD Bank Full time

    Position Overview: As a candidate, we encourage you to engage in open discussions with your recruiter regarding compensation, including the specific salary details for this role. Key Responsibilities: Consult on regulatory compliance obligations, reporting, and inquiries. Provide guidance and support in preparation for Operational Risk Management...

  • Senior Security Assessment Specialist

    4 weeks ago

    Canada AGS Cyber Full time

    Company Overview:AGS Cyber is a leading global cybersecurity consulting firm dedicated to providing top-notch security solutions.Position Summary:We are currently looking for a Senior Security Assessment Specialist to join our Canadian team. This role is pivotal in enhancing our cybersecurity posture through rigorous testing and evaluation of...

  • Seeking Information Security Specialist

    4 weeks ago

    Canada Elliotts Immigrations Services LLP Full time

    Position Overview:As an Information Security Specialist, you will play a critical role in safeguarding our organization's digital assets and sensitive information. Your expertise will be essential in identifying and mitigating security risks.Key Responsibilities:1. Monitor and analyze computer networks for potential security threats.2. Investigate and...

  • Cloud Security Controls Testing Analyst

    4 weeks ago

    Canada The Toronto-Dominion Bank (Canada) Full time

    Cloud Security Controls Testing AnalystLocation: Remote/HybridEmployment Type: Full timeJob Overview: Enhance and maintain security protocols across cloud infrastructures. Formulate and execute policies and programs related to cloud security. Fortify infrastructure security through suitable configurations and controls. Develop preventive and detective...

  • IT Security Assessment Specialist

    1 month ago

    Canada, CA Pqxel Inc. Full time

    Position Overview: We are seeking an experienced IT Security Assessment Specialist to lead and execute a detailed IT security assessment for our client, Health Care Client( HCC).This project will involve conducting comprehensive tests across various domains including external and internal network penetration testing, web and non-web application penetration...

  • Information Security Specialist in Higher Education

    4 weeks ago

    Canada Bronson Technical Search Full time

    Position: Information Security Specialist in Higher EducationContract Type: TBDLocation: Remote in CanadaWe are in search of an experienced Information Security Specialist in Higher Education to design, strategize, recommend, implement, enhance, and oversee security protocols aimed at safeguarding computer networks, connected devices, and sensitive...

  • Senior Product Security Specialist

    3 days ago

    Canada Absorb Technology Full time

    Senior Product Security EngineerWe are seeking a seasoned and strategic Senior Product Security Engineer to safeguard our SaaS application, ensure compliance with industry regulations, and drive a culture of security within the organization.Key Responsibilities:Lead security risk assessments and threat modeling to identify and mitigate potential...

  • Senior Product Security Specialist

    4 days ago

    Canada Absorb Technology Full time

    Senior Product Security EngineerWe are seeking a seasoned and strategic Senior Product Security Engineer to safeguard our SaaS application, ensure compliance with industry regulations, and drive a culture of security within the organization.Key Responsibilities:Lead security risk assessments and threat modeling to identify and mitigate potential...

  • Information Security Analyst

    3 months ago

    Canada StackAdapt Full time

    StackAdapt is a self-serve advertising platform that specializes in multi-channel solutions including native, display, video, connected TV, audio, in-game, and digital out-of-home ads. We empower hundreds of digitally-focused companies to deliver outcomes and exceptional campaign performance everyday. StackAdapt was founded with a vision to be more than an...

  • Information Security Specialist(IAM Engineer)

    1 week ago

    Canada The Toronto-Dominion Bank (Canada) Full time

    Job DescriptionJob Title: Information Security Specialist(IAM Engineer)Job Summary:We are seeking an experienced Information Security Specialist with expertise in Identity and Access Management (IAM) to join our team at The Toronto-Dominion Bank (Canada). As an IAM Security Expert, you will be responsible for providing consultation and advice to partners on...

  • Information Security Specialist(IAM Engineer)

    1 week ago

    Canada The Toronto-Dominion Bank (Canada) Full time

    Job DescriptionJob Title: Information Security Specialist(IAM Engineer)Job Summary:We are seeking an experienced Information Security Specialist with expertise in Identity and Access Management (IAM) to join our team at The Toronto-Dominion Bank (Canada). As an IAM Security Expert, you will be responsible for providing consultation and advice to partners on...

  • Senior Info Security Specialist

    1 month ago

    Canada, CA Canadian Tire Full time

    What you’ll doThe Senior Information Security Specialist is responsible for ensuring that enterprise data is secured and the delivery services in the areas related to data discovery, encryption, certificate and key management, data loss prevention and data loss protections (DLP) infrastructure support. The Senior Information Security Specialist will focus...

  • Senior Product Security Specialist

    1 week ago

    Canada Absorb Technology Full time

    About the Role:We are seeking a seasoned and strategic Senior Product Security Engineer to join our high-performing team at Absorb Technology. As a Senior Product Security Engineer, you will be instrumental in safeguarding our SaaS application, ensuring compliance with industry regulations, and driving a culture of security within the organization.Key...

  • Senior Product Security Specialist

    1 week ago

    Canada Absorb Technology Full time

    About the Role:We are seeking a seasoned and strategic Senior Product Security Engineer to join our high-performing team at Absorb Technology. As a Senior Product Security Engineer, you will be instrumental in safeguarding our SaaS application, ensuring compliance with industry regulations, and driving a culture of security within the organization.Key...

  • Telecommunications and Information Systems Specialist

    4 weeks ago

    Canada Canadian Armed Forces Full time

    Telecommunications and Information Systems SpecialistNon-Commissioned Member | Full Time, Part TimeAs a vital component of the military, Telecommunications and Information Systems Specialists are responsible for overseeing, managing, and executing the repair and upkeep of various Air Force and Joint telecommunications and information systems. Their expertise...

  • Security Operations Specialist

    1 month ago

    Canada, CA M87 Cyber Security Inc. Full time

    We are always on the lookout for amazingtalent who can contribute to our growth and deliver results! M87 Cybersecurityis seeking a Cybersecurity Operations Specialist responsible for developing athorough understanding of our security systems and programs to secure ourinfrastructure. If you love technology and are eager to join our team — wewould love to...

  • Information Security and IT Operations Specialist

    4 weeks ago

    Canada Cedeksconsulting Full time

    Position Title: Information Security and IT Operations SpecialistOverview:Cedeksconsulting is a dynamic and expanding organization providing specialized software solutions tailored for the insurance sector. We are seeking a dedicated professional to join our team in a hands-on capacity, where you will take ownership of critical...