TD Bank Senior Information Security Analyst in Mount Laurel, New Jersey
Auto req ID 182023BR
Job Title Senior Information Security Analyst
Job Status Full Time
Country United States
Location Technology Center
Wilmington - Market Street
Business line TD Bank AMCB
Job Category - Primary Technology Solutions
Job Category(s) Technology Solutions
TD Description About TD Bank, America's Most Convenient Bank®
TD Bank, America's Most Convenient Bank, is one of the 10 largest banks in the U.S., providing more than 8 million customers with a full range of retail, small business and commercial banking products and services at approximately 1,300 convenient locations throughout the Northeast, Mid-Atlantic, Metro D.C., the Carolinas and Florida. In addition, TD Bank and its subsidiaries offer customized private banking and wealth management services through TD Wealth®, and vehicle financing and dealer commercial services through TD Auto Finance. TD Bank is headquartered in Cherry Hill, N.J. To learn more, visit www.tdbank.com. at http://www.tdbank.com/ Find TD Bank on Facebook at www.facebook.com/TDBank and on Twitter at www.twitter.com/TDBank_US .
TD Bank, America's Most Convenient Bank, is a member of TD Bank Group and a subsidiary of The Toronto-Dominion Bank of Toronto, Canada, a top 10 financial services company in North America. The Toronto-Dominion Bank trades on the New York and Toronto stock exchanges under the ticker symbol "TD". To learn more, visit www.td.com at http://www.td.com/ .
Building a World-Class Technology Team at TD
We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open-minded in the way we think about technology. TD's technology and business teams become more intertwined as new opportunities present themselves. This new era in banking does not equal boring. Not at TD, anyway.
TD Information Security covers the development and management of security strategies, policies and programs to assess, prioritize, and mitigate business risk with technology controls. Priorities include: mitigating and managing cyber security threats, ensuring systems availability, aligning with global regulatory risk and compliance requirements, managing systems and network complexity, and partnering with businesses for better technology delivery by providing advice on technology controls.
There's room to grow in all of it.
About This Role
The Senior Information Security Analyst / Penetration Tester is expected to conduct formal security testing on web, mobile, APIs and infrastructure systems on both a planned and ad-hoc basis. The Penetration Tester will be a key adviser to security personnel on defensive strategies and work with other personnel to secure and reduce overall risk to the bank.
Meaningful work is fueled by meaningful performance and career development conversations with your manager. Here are the essential job functions of this position:
Performs thorough penetration testing that includes the identification, reporting, and recommendations for security vulnerabilities while adhering to management driven scope and deadlines
Identifies, proves, and reports vulnerabilities that cannot be identified by scanners or tools
Reviews and identifies false positives generated by scanners or tools
Stays up to date on the latest exploits and security trends
Delivers clear and coherent written reporting and remediation guidance
Demonstrates the ability to assess risk and apply to remediation guidance
Apply a teamwork philosophy with technology and partners, service or platform owners to integrate all technology security components and address control gaps.
Adhere to policies, procedures, technology control standards and regulatory guidelines.
Contribute to internal activity and process review, flag windows for improvement.
Influence behavior to reduce risk, foster a strong technology risk management culture.
Define, develop, implement and manage standards, policies, procedures, and solutions that mitigate risk and maximize security, service availability, efficiency and effectiveness.
Manage relationships with other technology/business/corporate/control functions.
Assess, identify and escalate issues appropriately.
Other duties as assigned
• Driving Requirements:
• Travel Requirements:
What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. Here are the minimum requirements for this position:
Information Security Certification / Accreditation an asset.
5-7 years of relevant experience.
Firm commitment to staying informed and abreast of emerging issues, industry trends etc.
Advanced knowledge of one or more technology controls or security domains, disciplines and practices.
Sound to advanced knowledge of business, technology controls, security and risk issues.
Demonstrated ability to participate in projects of moderate to high complexity.
Ability and commitment to serve as a subject matter expert on business-specific, cross-functional and enterprise initiatives.
Readiness to participate in projects of moderate to high complexity and provide complex reporting, analysis, and assessments at the functional, business line or enterprise level.
Preferred Qualifications - Here are the preferred qualifications for this role:
Certified as GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP) preferred
Demonstrated experience with automated and manual penetration tools
Demonstrated experience with creating and communication of reports regarding web application vulnerabilities to various level of personnel within a large organization
Knowledge and understanding of banking or financial services industry
Strong analytical skills with high attention to detail and accuracy
At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live in and serve, and creating an environment where every employee has the opportunity to reach her/his potential.
If you have a disability that requires an accommodation to complete the application process, please e-mail TD Bank's HR Compliance Department at email@example.com. Please include your full name, contact information and details about your request within the e-mail.
EOE/Minorities/Females/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity.
**Province/State (Primary) New Jersey
City (Primary) Mount Laurel