Customer Identity

Work Location:
Toronto, Ontario, Canada

Hours
37.5

Line Of Business
Enterprise Enabling Functions

Pay Details
$108,800 - $163,200 CAD

TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs.

As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.

Job Description
Role Overview:
Customer Identity and Access Management (CIAM), part of TD Global Technology & Solutions, is responsible for safeguarding the Bank and its customers from fraud, financial crimes, and other data protection risks.

The
CIAM Risk & Controls
team owns and enforces TD CIAM Control Standards, across all TD entities and operational jurisdictions with customer-facing operations.
CIAM Risk & Controls
operates as a
First Line of Defense (1A)
function, supporting CIAM product and technology teams to ensure secure customer banking experiences, reduce risk, and maintain customer confidence and trust.

We are seeking a seasoned, detail-oriented, and results-driven
CIAM Risk and Controls Senior Manager
to join our team to support risk governance, control oversight, and compliance initiatives in a highly regulated environment. Reporting to the AVP, CIAM Risk & Controls, this is a People Leadership role responsible for all aspects of development, maintenance, and compliance enforcement of the CIAM Standard and supporting Controls Library across the Bank. This is a highly-visible role and the successful candidate will play a key part in maturing our CIAM program and ensuring alignment with internal policy and external regulatory and industry standards.

The Ideal Candidate Will Have

• Extensive background in identity and access management (IAM) principles and direct exposure to relevant industry standards related to information and cybersecurity (e.g., NIST CSF, NIST 800.63, ISO 27001, CIS Controls).
• Deep technical understanding of IAM tools and architecture supporting identity proofing and authentication functions.
• Solid understanding and experience in compliance enforcement of IAM and/or other information/cybersecurity standards.
• Comprehensive experience in risk and control gap identification and remediation, working collaboratively with technology and business stakeholders to ensure timely and effective resolution.
• Thorough understanding and prior working experience in one or more of the Three Lines of Defense.
• Working experience with operational risk management, internal audit, and regulatory exams and remediation efforts, including documentation and management of evidence artifacts, progress reporting, and support to executive leadership updates.
• Identifying opportunities to improve program and team effectiveness and embracing innovation and automation where practicable.
• Knowledge of CIAM tools and systems, and integration with governance, risk, and controls (GRC) tools is a requirement.

Key Responsibilities
CIAM Subject Matter Expertise (SME):

• Owns the CIAM Standard, associated Technical Specifications, and Controls Library, including ongoing maintenance and enhancements throughout the Standards lifecycle, ensuring alignment with industry peer benchmarks, industry standards, and regulatory requirements.
• Acts in a consultative advisory role to TD technology asset owners and lines of business, providing definitive guidance and support related to CIAM standards, risk governance, control design, and best practices.
• Understand cross-segment end-to-end customer interaction and transaction process flows, ensuring alignment to CIAM Standards and raising risk awareness of identified control gaps.
• Consult with internal stakeholders (e.g., Risk Management, other control functions, Business Segments, etc.) and external experts and counterparts (e.g., industry and professional associations, peer banks, etc.) on the implications of risks related to customer identity and authentication in current and emerging technology and banking trends.
• Stay current with applicable regulatory expectations and emerging IAM trends.

Risk Governance & Oversight

• Support CIAM Product and Technology teams risk assessments, including but not limited to, reviewing Change Risk Assessment (CRA), Privacy Impact Assessment (PIA), etc.
• Support regulatory and internal audit remediation efforts from a CIAM Standards compliance perspective.
• Review and deliver updates to governance committees (e.g., Identity Assurance Management Committee).

Control Monitoring & Reporting

• Support CIAM Standards compliance monitoring and escalate gaps or deficiencies.
• Identify IAM control weaknesses in customer-facing processes and assets and work collaboratively with risk partners and technical and business stakeholders to drive remediation.
• Drive continuous improvement in CIAM Standard, control effectiveness, operational efficiency, and internal stakeholder and customer experience.

Relationship Management

• Lead a team of dedicated CIAM professionals with expertise in compliance and risk controls..
• Work closely with Cyber and Application Security teams for visibility into current and emerging IAM risks and engage CIAM Product and Engineering teams to adjust CIAM roadmap and Standards as necessary.
• Collaborate with Workforce IAM counterparts to ensure alignment and identify efficiency opportunities.
• Work closely with CIAM Product and Engineering, line of business, and supporting Technology leaders to ensure alignment between CIAM capability roadmap, provide guidance regarding CIAM Standards compliance, and identify where planned new technologies and customer platforms may require enhancements to the CIAM Standard.
• Partner with Risk Marketplace (1B), second-line functions (AML, Compliance, Legal), and third-line audit teams.

Desired Qualifications

• Undergraduate degree in Information Security, Risk Management, Computer Science, or related discipline is an asset.
• Advanced degree (MBA, MS in Cybersecurity) preferred.
• 7-10+ years in a technical capacity in Identity & Access Management (IAM), Risk Management, or Cybersecurity
• Compliance experience is a definite asset.
• Financial services experience is an asset.
• Proven experience in control standards, control design, and regulatory remediation.
• Familiarity with IAM tools and GRC platforms.

Professional Certifications
Candidates with one or more of the following professional certifications are preferred:

• Certified Identity and Access Manager (CIAM) or equivalent IAM certifications
• Certified Information Systems Auditor (CISA)
• CISM (Certified Information Security Manager)
• CISSP (Certified Information Systems Security Professional)
• CRISC (Certified in Risk and Information Systems Control)
• ITIL Foundation for process governance

Technical Acumen

• Advanced knowledge of IAM tooling and system architecture for identity proofing, authentication, fraud prevention, and data protection.
• Proficiency in risk frameworks (NIST, ISO, CIS) and regulatory compliance standards.
• Hands-on experience with CIAM platforms and integration with GRC tools.
• Strong understanding of change management, and testing methodologies.

Soft Skills & Character Traits

• Bias for Action: Make informed risk-based decisions quickly; take action to deliver on business objectives swiftly over endless deliberation and inaction.
• Adaptability: Able to work effectively in an often high-stress environment on high-profile time-bound initiatives.
• Analytical and detail oriented: Stay connected to details, audit frequently, and are skeptical when data differs.
• Strategic Thinker: Able to align CIAM initiatives with TD business objectives and regulatory requirements.
• Effective Communicator: Excellent oral and written communication skills with ability to concisely and effectively translate complex technical risks into business impact messaging that resonates with executive audiences.
• Relationship-focused: Ability to build strong relationships across business and technology teams.
• Integrity & Accountability: Uphold the highest standards of ethics and compliance; have conviction and do not compromise for the sake of team cohesion.
• Leadership: Seeks and accepts responsibility.
• Curiosity & Fearlessness: Willing to accept new challenges outside your comfort zone and are unafraid to fail fast and learn.

Why Join Us?
If you are passionate about ensuring TD customers can securely bank with us and making a tangible impact in a highly regulated banking environment, this role offers an opportunity to be a part of initiatives that shape the future of secure digital banking.

Who We Are
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.

TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing – and so will you.

Our Total Rewards Package
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals. Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs. Learn more

Additional Information
We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.

Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.

Colleague Development
If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we're committed to helping you identify opportunities that support your goals.

Training & Onboarding
We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.

Interview Process
We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.

Accommodation
Your accessibility is important to us. Please let us know if you'd like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process.

We look forward to hearing from you

Language Requirement (Quebec Only)
Sans Objet