TD Bank Jobs

Job Information

TD Bank Vulnerability Security Engineer in Toronto, Ontario

Work Location:

Toronto, Ontario, Canada



Line of Business:

Technology Solutions

Pay Details:

We’re committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.

Job Description:

Division (CAN)

Protect Platform – Enterprise Protect (EP)

Protect Platform is part of the TD Bank Group (TDBG), one of Canada's largest financial institutions. Enterprise Protect designs, delivers and maintains available, adaptable, secure, and cost-effective infrastructure-based technology services to TD and supports the bank’s vision and strategy to be the best-run, most integrated, customer-focused, financial institution in areas where the bank competes.

Working with technology and business partners, EP delivers and maintains all internal (employee facing - computers, phones, mobile, software and hardware) and external (customer facing - banking, trading and monetary vehicles supported by electronic systems) infrastructure technology solutions that support the bank. EP plays a critical role by providing this computing / network foundation in a secure manner in support of 1600+ applications serving 22 million customers and hundreds of millions of transactions daily, and in support of the ongoing productivity and mobility of TD’s 85,000+ staff.

With a North American-wide workforce, EP has centers located in Toronto, Scarborough, Mississauga, Barrie, London Ontario, Canada, New Jersey and New York, USA.

Report Location


Job Type

Full Time

Job Status

Permanent (Hybrid)

Job Description

The Security Engineering Vulnerability Protect team is responsible for evaluating, designing, building, implementing, and providing the L3 support of security tools. These tools provide forensic investigation capabilities, vulnerability and code scanning, as well as database activity monitoring. Activities will entail completion of design, build, certification and deploy for hand over of support to L2 support teams.

The Engineer must be up to date with the latest security technologies and architectures. The Security Engineer has advanced experience in the security space and possesses an Engineering mindset to be able to identify the root cause of complex problems and collaborate with teams or vendors to resolve problems or incidents.

This role will be responsible for solutions in areas such as, but not limited to:

  • Encase forensic investigation tools

  • Qualys Vulnerability scanning

  • Veracode code scanning

  • IBM Guardium database activity monitoring

  • External attack surface management tooling

  • Mobile Pen testing tools

The successful candidate must have demonstrated advanced ability to architect, engineer, design, build, support and document solutions in these areas of Security Engineering working closely with the Business, other Security Engineering teams to ensure built solutions enhance productivity and add value to the organization.

Technical Requirements

It is expected that the Engineer will have advanced knowledge in a wide range of Security technologies, frameworks, tools, processes and procedures. This role is looking for people with skills in as many of the below technology areas as possible:

  • Advanced skills with vulnerability and forensic investigation tooling.

  • Experience with (cloud based) SCA and SAST code scanning tools.

  • Experience with Security as it applies to Cloud Solutions in Virtualized Environments.

  • Strong operating system knowledge of Windows Server 2019/2022 and RHEL/Unix 6+.

  • Ability to use Linux and Powershell CLI commands.

  • Nice to have skills: scripting in at least one language (Python, PowerShell, etc.)

  • Ability to leverage API calls to extract data sets from security tooling.

  • Understanding of firewalls(application/proxy), intrusion detection systems, authentication mechanisms, and networking protocols including SMTP, HTTP(s), DNS, TCP/IP, and SNMP as they pertain to security solutions.

  • Ability to walk through problems independently and communicate the solution.

Job Requirements

This role plays a critical role for the Security Engineering Organization in the proposal, design, build, automation, implementation and L3 support of security infrastructure and tools. This includes interacting with Engineering teams, multiple lines of Business, Infrastructure teams, Application Development, Support, Vendors and Service Providers. The successful candidate must demonstrate an exceptional record of competence and a strong ability to communicate with other engineers, technology owners and business partners.

Job Requirements include:

  • Work autonomously on high profile, complex technology initiatives with significant impact to the organization

  • Expertise in assessing and selecting security tools and solutions that best meet the stated Security need at the Bank

  • Extensive related work experience in building complex Security Engineering Infrastructure solutions with the ability to be a key contributor in a complex and critical environment.

  • Experience with security regulatory / compliance requirements including PCI and SOX

  • Experience in creating high level and technical presentations and communication skills to explain the approach to a varying audience

  • Strong analytical, reasoning, and organizational skills are essential.

  • Excellent verbal and written communications skills are essential.

  • Ability to establish and maintain effective working relationships with all levels of personnel both internally and externally; e.g. leadership, executives, clients, vendors, and agencies.

  • Proven ability to work in a fast paced environment and manage multiple deadlines and priorities.

  • Adapts to new different or changing requirements, quickly grasps new concepts adapts and reflects on lessons learned – comfortable with ambiguity, analyzes and evaluates, defines problem/challenge, identifies alternatives and makes timely decisions

  • Work closely & collaboratively with Internal Engineering, Deployment & Operations teams to drive design adoption across IT

  • Proven ability to leverage deep subject matter expertise to develop and deploy a vision and help align others to that vision.

  • Attention to detail and follow through including the ability to document work.

  • Ability to transfer knowledge to fellow team members.

  • Ability to make engineering design decisions, efficiently build solutions, solves technical problems, and makes improvements to our systems.

  • History of making an impact, developing and executing on strategies and delivering superior results in both the short and long term

  • Good exp in any/multiple tools mentioned below :

  • Encase forensic investigation tools

  • Qualys Vulnerability scanning

  • Veracode code scanning

  • IBM Guardium database activity monitoring

  • External attack surface management tooling

  • Mobile Pen testing tools

Additional Information

  • The ability to be adaptable and learn new things is critical to this role as we will frequently be called to design, build and certify technology not currently in TD Bank.

  • Highly motivated individual with a track record of successfully implementing security solutions across line of business boundaries.

  • Must be able to work with a pool of experts and ensure high levels of service even when the effort crosses organizational boundaries.

  • Thrives in a fast paced environment, managing multiple deadlines and competing priorities.

  • Excellent customer service orientation and a professional approach; including ability to interact with all levels across the organization.

  • Proven negotiation and influencing abilities, with contract/vendor management experience an asset.

  • Strong communicator, with excellent oral, written and presentation skills.

Education and Accreditation

  • University, post-graduate degree or 3+ years experience

  • Strong academic background (e.g., computer science, engineering)

  • Certification in one or more security certifications e.g. CISSP, CCSP


M-F (with some evening/weekend work)

Regular Hours – 37.5


At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live and serve, and creating an environment where every employee has the opportunity to reach their potential.

TD is committed to providing accommodations. If you require an accommodation, we will work with you to meet your needs.

Who We Are:

TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.

TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you’ve got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we’re here to support you towards your goals. As an organization, we keep growing – and so will you.

Our Total Rewards Package

Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals. Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs. Learn more (

Additional Information:

We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we’re committed to providing the support our colleagues need to thrive both at work and at home.

Colleague Development

If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

Training & Onboarding

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Interview Process

We’ll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.


Your accessibility is important to us. Please let us know if you’d like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process.

We look forward to hearing from you!

Language Requirement:


Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.