Job Specifications
Lieu De Travail
Toronto, Ontario, Canada
Horaire
0
Secteur D’activité
Solutions technologiques
Détails De La Rémunération
$76,800 - $115,200 CAD
La TD a à cœur d’offrir une rémunération juste et équitable à tous les collègues. Les occasions de croissance et le perfectionnement des compétences sont des caractéristiques essentielles de l’expérience collègue à la TD. Nos politiques et pratiques en matière de rémunération ont été conçues pour permettre aux collègues de progresser dans l’échelle salariale au fil du temps, à mesure qu’ils s’améliorent dans leurs fonctions. Le salaire de base offert peut varier en fonction des compétences et de l’expérience du candidat, de ses connaissances professionnelles, de son emplacement géographique et d’autres besoins particuliers du secteur et de l’entreprise.
En tant que candidat, nous vous encourageons à poser des questions sur la rémunération et à avoir une conversation franche avec votre recruteur, qui pourra vous fournir des détails plus précis sur ce poste.
Description Du Poste
Mandate / Marketability
The Senior Information Security Analyst is responsible for leading the team of Information Security Analysts in tier 1
and tier 2 triage investigations and incident handling for cybersecurity operations.
Key Accountabilities
Lead and coordinate Real-time analysis on identified cyber incidents currently impacting the bank’s operations.
Analyze, triage, and remediate security incidents internally and/or escalate to Cyber Security Incident Response team
(CSIRT) for further investigation, treatment or support if needed.
Manage incident queue in internal ticketing system in a timely and accurate manner to resolve a multitude of
information security related situations and ensure that intake of incidents and reports from internal customers are
properly recorded, timely updated, followed up and closed as per agreed SLA level ensuring quality and accurately in
reporting.
Manage and support phishing operations through ticketing system in a timely and accurate manner to mitigate any
phishing campaign targeting our internal employees.
Manage executive communications who are directly impacted or targeted as part of a phishing campaign.
The ability to guide team to identify, triage and remediate security incidents related to Web Attacks, Malware incidents,
and other external and internal threats is required.
This role will be primarily on office hours but occasionally be required to participate in shift rotations to support as part
of a cyber security operations team responsible for carrying out 24x7 on-site security monitoring operations.
Operations which are carried out in North America shifts that run from 7am-3pm, 12pm-8pm or 7pm-7am on a rotating
basis.
The personnel will be assigned to be on-call rotationally on a weekly basis to support and coordinate with the team for
any notable events during after office hours and weekend.
Time will be balanced between 75% operational (BAU and Queue work) and 25% project work (improvement initiatives, Subject matter expert on SOC projects etc.)
Authorities Scope & Impact
Accountable to respond to, investigate and remediate cyber threats to the bank. Escalate to internal and Cyber Security Incident Response team if required. This job contributes to Technology and Operations through first line management and identifications of electronic threats to TDBG’s infrastructure.
Cross Functional Relationships
The Senior Information Security Analyst will be responsible for managing information between multiple technical
teams, the CSOC, CSIRT and ITS, LOB TS when appropriate.
Job Requirements
Knowledge and Skills:
5 - 7 years of experience in Information Security Operations or related field is required.
A minimum of 3 years experience of leading and coordinating the Security Operations Monitoring team.
A thorough understanding of security controls and mechanisms, as well as threat risk assessment techniques related
to complex data, applications, and networking environment.
Must have expert knowledge of security incident and event management using an enterprise incident management
framework, log analysis, network traffic analysis, malware investigation and remediation, SIEM correlation logic and
alert generation.
Ability to perform analysis and reporting on information from multiple data sources using data mining technique for the
purpose of documenting analysis results, produce report and present to a technical and executive stakeholder.
Must have expert knowledge in SIEM, EDR, XDR, Firewall, WAF, NIDS and equivalent.
Understanding of Security principles, techniques, and technologies such as NIST Cybersecurity Framework, SANS
Top 20 Critical Security Controls and OWASP Top 10.
Strong organizational and self-directing skills. Ability to initiate, coordinate and prioritize responsibilities and follow
through on tasks to completion.
Must demonstrate expert knowledge in Enterprise IT operations, incident management, change manageme
About the Company
The Toronto-Dominion Bank & its subsidiaries are collectively known as TD Bank Group (TD). TD is the sixth largest bank in North America by assets & serves approx. 28 million customers in a number of locations in key financial centres around the globe. With over 95,000 employees, TD ranks among the world's leading online financial firms, with more than 17 million active online and mobile customers. Delivering legendary customer experiences is who we are & is part of our goal to be the Better Bank. Visit our Careers page to l...
Know more