Information Security Specialist (Cloud Build Governance)

TD
Old Toronto
CAD 80,000 - 100,000
Job description

Information Security Specialist (Cloud Build Governance)

TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs.

As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.

Job Description:

As a member of the Cloud Security Build team, the Information Security Specialist (Cloud Build) will be responsible for maintaining and elevating the security across our cloud environments with expertise in securing cloud platforms, particularly GCP, AWS and Azure. The ideal candidate will have hands-on experience in cloud security and a deep understanding of various aspects including Identity and Access Management, Data Protection, Infrastructure Security, Logging and Monitoring, Incident Response, and Compliance Frameworks.

The main goal of this role is to define, develop, test and/or implement Technology Controls / Cloud Security related policies, programs, tools and provide specialized expertise and guidance on assessing risks, identifying potential gaps, and providing security solutions to mitigate risks and protect the Bank.

KEY ACCOUNTABILITIES

  1. Maintaining and elevating the security across our cloud environments (GCP, AWS and Azure) by implementing best practices and industry standards.
  2. Develop cloud services security controls, review with operation team, and facilitate the implementation.
  3. Strengthen infrastructure security through appropriate configurations and security controls.
  4. Build detective/preventive controls to identify and assist mitigate potential security threats.
  5. Ensure compliance with relevant regulatory requirements and industry standards.
  6. Work with cross-functional teams to ensure they are following the established security processes.
  7. Communicate security risks and best practices to technical and non-technical stakeholders.
  8. Possess programming skills to automate security processes and Security Control testing.
  9. Review our architecture and design through a security lens to provide actionable, timely requirements and recommendations.
  10. Demonstrate a strong understanding of network concepts and their application in cloud security.
  11. Work on automation initiatives to streamline security operations and improve efficiency.
  12. Act as a subject matter expert (SME) in cloud security, providing guidance and support to the team.
  13. Demonstrate leadership qualities to mentor junior team members and drive security initiatives forward.

REQUIRED CORE SKILLS / EXPERIENCE:

  1. Strong understanding of Cloud infrastructure security principles and practices controls.
  2. Knowledge of security policies, standards, and practices.
  3. Experience with cloud technologies provided by AWS, GCP, Azure.
  4. Experience working on enterprise cloud services deployments (SaaS, PaaS, IaaS) and understanding security challenges involved in deploying Cloud Applications and server virtualization/container orchestration technologies.
  5. Experience using CI/CD pipelines for change management and automated security testing.
  6. Experience in leveraging automation languages within Cloud platforms (Azure, GCP, AWS) to apply custom policies/controls and facilitate deployment of new security across different cloud infrastructures including the ability to leverage SDLC practices for deployment and automation.
  7. Experience with programming and scripting languages (Python, PowerShell Core, Terraform, Azure CLI, Wiz CLI, GCP CLI) and API integrations.
  8. Experience in various tools (ex. Kubernetes, Python, GitHub, Jenkins, Bitbucket, etc.), including the ability to deploy, configure, and run.
  9. Experience with data formats (JSON, YAML, XML).
  10. Knowledge of modern cloud technology components and deployment patterns.
  11. Hands-on experience with logging/monitoring Security tools (ex. Wiz.io, Aquasec) for cloud environments.
  12. Excellent communication skills with the ability to interact effectively with stakeholders.
  13. Knowledge of cloud architecture, cloud operations, cloud-based identity access and management, security, automation, and orchestration.
  14. A clear understanding of security protocols and standards and experience with software and security architectures.
  15. Experience with Cloud-native Security Solutions.
  16. Experienced with agile delivery teams and environment.

EXPERIENCE & EDUCATION:

  1. A university degree in Engineering, Computer Science, or Information Technology.
  2. Information security certification / accreditation an asset.
  3. 7+ years of relevant experience.

Who We Are:

TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new Information Security Specialist (Cloud Build Governance) jobs in Old Toronto