Job Description

TD Description
Tell us your story. Don\'t go unnoticed. Explain why you\'re a winning candidate. Think "TD" if you crave meaningful work and embrace change like we do. We are a trusted North American leader that cares about people and inspires them to grow and move forward. Stay current and competitive. Carve out a career for yourself. Grow with us.
Department Overview
Building a World-Class, Diverse and Inclusive Technology Team at TD

We can\'t afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open-minded in the way we think about technology. TD\'s technology and business teams become more intertwined as new opportunities present themselves. This new era in banking does not equal boring. Not at TD, anyway.

The Fusion Centre is a multi-disciplinary team with global 24/7 representation in Canada, United States, Israel, and Singapore providing timely response and coverage necessary to review, triage and investigate incidents.

We are looking for someone to support the Fusion Centre\'s Watch team. The Watch team facilitates comprehensive incident response and timely information sharing with Senior Executives on incidents impacting or of interest to the Bank. In collaboration with partner teams, Watch team members triage, coordinate taskforces, respond to and issue written communications on complex threats, events and incidents. Through its work, Watch builds and promotes shared awareness through effective incident coordination and communication. The position reports to the Senior Manager, Fusion Watch.

There\'s room to grow in all of it!

About this Role

We are looking for someone to join TD\'s Fusion Centre Watch Team as a Senior Information Security Analyst. The Fusion Watch team is responsible for incident and crisis management, ensuring coordination and collaboration for response efforts. This team provides executive communications and incident coordination for cyber security/cyber-fraud incidents and proactive risk mitigation initiatives. As well, Fusion Watch supports other threat management teams such as Cyber-Fraud, Physical Security and Insider Risk. In this role, you\'ll be responsible for booking and hosting incident response/risk mitigation calls, creating and updating incident response documentation, and drafting and issuing communications. You will also play a role in shaping the evolution of this fast-growing team and the Fusion Centre\'s approach to protecting the Bank.

Key Accountabilities:

• Participate in the Watch team\'s rotating on-call schedule; while on rotation, you may be called in outside of normal business hours to respond to an incident.
• Liaise and support assembly of stakeholders during cyber incidents, cyber-fraud events or crisis events, as well as facilitate taskforce meetings and communication bridges.
• Build and maintain relationships, and during incidents work with internal stakeholders throughout the incident management lifecycle (i.e., Business LoBs, Technology groups, Fusion/cyber teams (CSOC/CSIRT), Threat Intelligence, Risk, Fraud, Physical Security, legal, and executive community).
• Engage with information sharing teams to create non-technical communication materials to inform critical stakeholders on emerging events that have or may have impact to TD to ensure consistent information is gathered and shared with appropriate stakeholders.
• Assist in managing the incident confluence site, JIRA task triaging and workstream assignment.
• Communicate to impacted teams and key stakeholders using appropriate language targeted to the audience.
• Facilitate timely engagement and coordinate incident response with core Fusion Centre partners during active information security events/incidents, by facilitating calls, taking minutes and tracking action items.
• Engage key stakeholders to conduct a detailed internal assessment of TD\'s readiness against a scenario experienced by the external party.
• Establish and maintain Fusion Watch communication and coordination playbooks (for internal incidents and external \'celebrity\' events), maintain comprehensive list of Fusion Centre partners required for response and contribute to the continuous improvement of the team\'s practice/processes.
• Contribute to the development and delivery of Fusion communication products.
• Contribute to regular Fusion Centre reporting.
• Build and maintain relationships with business units and key stakeholders.
• Adhere to policies, procedures, technology control standards and regulatory guidelines.
• Contribute to internal activity and process review, flag windows for improvement.
• Assess, identify and escalate issues appropriately.

Job Requirements
Knowledge and Skills:

• University Degree.
• 3-5+ years of relevant experience.
• Previous work experience in Crisis Management, Cyber Security, Threat/Cyber Intelligence, SOC, CSIRT (Cyber Security Incident Response Team), Fraud/Cyber-Fraud or incident management is considered a strong asset.
• Knowledge and background in Information Technology, Information Security, Fraud/Cyber-Fraud or Cyber Security considered an advantage.
• Information Security, Incident Management or Investigation certificate/accreditation/experience is a plus.
• Experience in incident coordination and preparedness with the ability to provide timely analysis and documentation for incident and exercise reporting.
• Strong written and verbal communication skills, able to exercise judgment and to communicate complex issues in a clear, simple and/or understandable manner.
• Experience working with executive audiences, senior leadership, and varying levels of stakeholders.
• Excellent organizational, analytical and problem-solving skills with a strong attention to detail.
• Excellent time-management and organizational skills to manage multiple deadlines and tasks with varying priority levels.
• Strong time management, organization skills and business acumen.
• Understanding of TD\xe2\x80\x99s organizational structure, infrastructure, products and services.

Additional Information
Join in on what others in TD Technology Solutions are doing:

• Inspire a positive work environment and help champion quality, innovation, teamwork and service to the business.
• Learn voraciously, stretch your thinking,

#tdcybersecurity #LI-Post
Inclusiveness
At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live and serve. If you require an accommodation for the recruitment/interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.
Job Family
Information Security
Job Category - Primary
Technology Solutions
Job Category(s)
Technology Solutions
Hours
37.5
Business Line
Corporate
Time Type
Full Time
Employment Type
Regular
Country
Canada
**Province/State (Primary)
Ontario
City (Primary)
Toronto
Work Location
310-320 Front Street West Corporate
Job Expires
31-Mar-2023