Senior Manager, Information Security(DevSecOps Governance)
Senior Manager, Information Security (DevSecOps Governance)
Work Location: Toronto, Ontario, Canada
Hours: 37.5
Line of Business: Technology Solutions
Job Description:
KEY ACCOUNTABILITIES:
- Develop, implement, and maintain security policies, standards, and guidelines for DevSecOps practices.
- Ensure adherence to regulatory and internal compliance requirements within DevSecOps processes.
- Ensure the seamless integration of security practices into DevOps workflows, reducing security vulnerabilities and improving the security posture.
- Collaborate with DevOps, development, and operations teams to embed security controls and practices into the software development lifecycle (SDLC).
- Provide guidance on secure coding practices, vulnerability management, and risk mitigation strategies.
- Maintain and update security policies, standards, and guidelines to align with regulatory and organizational requirements.
- Monitor and assess the effectiveness of security controls and make necessary adjustments to mitigate risks.
- Develop and deliver training programs to enhance the security awareness and capabilities of DevOps and development teams.
- Promote a culture of security awareness and continuous improvement within the organization.
REQUIRED CORE SKILLS / EXPERIENCE:
- Strong understanding of DevSecOps principles and practices.
- Proficiency with CI/CD tools (e.g., GitHub, Jenkins, Azure DevOps) and security testing tools (e.g., Veracode, Snyk, Aqua, SonarQube).
- Knowledge of cloud security best practices and technologies, particularly in Azure and GCP.
- Experience with security frameworks and standards (e.g., NIST, ISO 27001, PCI DSS).
- Familiarity with infrastructure as code (IaC) tools (e.g., Terraform, Ansible).
- Experience with containerization and orchestration tools (e.g., Docker, Kubernetes).
- Excellent communication and collaboration skills.
- Strong problem-solving and analytical skills.
- Ability to work effectively in a fast-paced and dynamic environment.
- Detail-oriented with strong organizational skills.
EXPERIENCE & EDUCATION:
- Bachelor's degree in computer science, Information Security, or a related field.
- 5+ years of experience in information security, with a focus on DevSecOps and cloud security.
- Experience in a financial services environment is preferred.
- Relevant certifications such as CCSP, AWS/Azure Security Specialty, or similar are highly desirable.
Who We Are:
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world.
Our Total Rewards Package:
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals.
Additional Information:
We’re delighted that you’re considering building a career with TD. Please let us know if you’d like accommodations to help us remove barriers so that you can participate throughout the interview process.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
