TD Bank Information Security Analyst II - Threat Hunting - Cyber in Montgomery, Alabama

Auto req ID 190440BR

Job Title Information Security Analyst II - Threat Hunting - Cyber

Job Status Full Time

Country United States

Province/State Alabama



District of Columbia





Colorado Springs






Fort Worth


San Antonio


Location 20th & K - Washington

Business line TD Bank AMCB

Job Category - Primary Technology Solutions

Job Category(s) Technology Solutions

TD Description

About TD Bank, America's Most Convenient Bank®

TD Bank, America's Most Convenient Bank, is one of the 10 largest banks in the U.S., providing more than 8 million customers with a full range of retail, small business and commercial banking products and services at approximately 1,300 convenient locations throughout the Northeast, Mid-Atlantic, Metro D.C., the Carolinas and Florida. In addition, TD Bank and its subsidiaries offer customized private banking and wealth management services through TD Wealth®, and vehicle financing and dealer commercial services through TD Auto Finance. TD Bank is headquartered in Cherry Hill, N.J. To learn more, visit at Find TD Bank on Facebook at and on Twitter at .

TD Bank, America's Most Convenient Bank, is a member of TD Bank Group and a subsidiary of The Toronto-Dominion Bank of Toronto, Canada, a top 10 financial services company in North America. The Toronto-Dominion Bank trades on the New York and Toronto stock exchanges under the ticker symbol "TD". To learn more, visit at .

Department Overview

Building a World-Class, Diverse and Inclusive Technology Team at TD

Technology Risk Management and Information Security (TRMIS) is a group of technology, security and risk professionals in Canada, the U.S. and the U.K., focused on managing a comprehensive program to assess, prioritize, and mitigate business risk with technology controls.

The Cyber Security Team is responsible for protecting the Bank, customers and employees by mitigating and identifying technology threats to TD. Development of effective risk management programs help ensure TD’s best-in-class cyber security approach.

What We Stand For

The TRMIS program is continuously evolving to mitigate risks to the bank, including introducing new initiatives and improved defense. With a layered approach to protect customers, employees and the bank from cyber threats, TD manages, challenges and reviews technology controls for all business applications.

Job Description

About This Role

We need someone to provide research, evaluation, assessment, operational, reporting and analytical support for Technology Controls and Information Security programs and initiatives. Your ability to provide sound advice and guidance will prove instrumental as you grow in this role.

Meaningful work is fueled by meaningful performance and career development conversations with your manager. Here are the essential job functions of this position:

  • Guide stakeholders within defined parameters related to specific Technology Controls and Information Security programs, policies, standards and incidents.

  • Assist with assessments related to risk, controls, implemented control procedures, vulnerability etc.

  • Contribute to risk and control design assessments for an assigned business application, business portfolio, articulate and document control gap impact both to the business and enterprise-wide.

  • Participate in security management strategy and framework development.

  • Support technology processes, help launch governance practices to monitor, detect, prevent and react to current and emerging security threats to TD.

  • Support development of technology risk reporting, monitoring key trends and defining metrics to measure control effectiveness for your own area.

  • Apply a teamwork philosophy with technology and partners, service or platform owners to integrate all technology security components and address control gaps.

  • Research and investigate regulatory compliance requirements, reporting and questions, support the team in resolving compliance, audit and regulatory issues.

  • Participate in computer security incident responses relevant to business (or enterprise wide), represent your respective position to the business while conveying their needs to the incident response team.

  • Adhere to policies, procedures, technology control standards and regulatory guidelines.

  • Contribute to internal activity and process review, flag windows for improvement.

  • Follow relevant enterprise frameworks and methodologies.

  • Influence behavior to reduce risk, foster a strong technology risk management culture.

  • Support development and/or implementation of standards, policies, procedures, and solutions that mitigate risk and maximize security, service availability, efficiency and effectiveness.

  • Assess, identify and escalate issues appropriately where required.

Other duties as assigned.

• Driving Requirements:

• Travel Requirements:

  • #DI

Job Requirements

What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. Here are the minimum requirements for this position:

  • University Degree.

  • Information Security Certification or Accreditation an asset.

  • 3-5 years of relevant experience.

  • Firm commitment to staying informed and abreast of emerging issues, industry trends etc.

  • Sound knowledge of one or more technology controls or security domains, disciplines and practices.

  • Sound knowledge of organization, technology controls and security risk issues

  • Ability to participate and provide advice / guidance on projects of low to moderate complexity within your own area of expertise.

  • Strength in prioritizing and managing your own workload to deliver quality results and meet timelines under guidance of management.


Preferred Qualifications - Here are the preferred qualifications for this role:

• At least 2-3 years of previous experience working in hunt teams, threat intelligence, incident response, or security operations

• Bachelor’s degree or equivalent program in Information Security, Information Technology, Computer Science, Management Information Systems or similar field experience is required; Master's degree preferred

• Intermediate knowledge of log management, security analytics and event management platforms

• Must be able to define events vs. alerts vs. incidents for the organization, and create incident classification, severity, and priority tables in-line with all threats, risks and vulnerabilities

• Must be able to develop and document intelligence artifacts such advisories, AoA (Anatomy of Attack) and relevant detection and mitigation patterns

• Hands on experience with writing and implementing complex analytics queries, threat visualization dashboards, and large data volume management

• Strong working knowledge of security-relevant data, including network protocols, ports and common services, such as TCP/IP network protocols and application layer protocols (e.g. HTTP/S, DNS, FTP, SMTP, Active Directory etc.)

• Excellent written and oral communication skills

• Organizational and self-directing skills

• Ability to initiate, coordinate and prioritize responsibilities and follow through on tasks to completion

• Ability to work independently on a variety of assignments with minimal supervision

• Completion of at least one of the following: GCIA, GPEN, GWAPT, GCIH, GSEC, CCNP, CISSP

• A background in Data Science, Statistics, anomaly detection or similar skills would be an asset


At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live in and serve, and creating an environment where every employee has the opportunity to reach her/his potential.

If you are a candidate with a disability and need an accommodation to complete the application process, email the TD Bank US Workplace Accommodations Program at . Include your full name, best way to reach you, and the accommodation needed to assist you with the application process.

EOE/Minorities/Females/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity.

**Province/State (Primary) Delaware

City (Primary) Wilmington

ProvState 2 Alabama

City(s) 2 Montgomery

ProvState 3 Colorado

City(s) 3 Colorado Springs

ProvState 4 District of Columbia

City(s) 4 Washington

ProvState 5 Georgia

City(s) 5 Alpharetta

ProvState 6 Texas

City(s) 6 San Antonio

ProvState 7 Virginia

City(s) 7 Vienna