Information Security Specialist handling cyber threats and incidents for TD's Cyber Security Incident Response Team. Leading investigations and enhancing security posture across the organization.
Responsibilities
Detect, investigate, and respond to cyber threats targeting TD
Work within the Cyber Security Incident Response Team (CSIRT)
Lead in complex investigations and develop detection and hunting techniques
Strengthen incident response capabilities
Identify and mitigate cyber threats
Collaborate with stakeholders to reduce risk and enhance security posture
Guide partners on technology throughout incidents
Lead or contribute to containment and recovery plans for Cybersecurity Incidents
Ensure technology, processes, and governance are in place to monitor current and emerging threats
Develop operational enhancements for Cybersecurity including alerting, monitoring, and detection
Adhere to internal policies and regulatory guidelines
Influence behavior to reduce risk and foster a strong technology risk management culture
Requirements
University degree or equivalent hands-on work experience
7+ years of hands-on relevant experience
Expert knowledge of Information Technology (IT) security and Incident Management practices across multiple cybersecurity domains
Strong hands-on experience with traditional incidents response detection tools such as SIEM, EDR, XDR, Firewall, WAF, email proxies, NIDS, and equivalent
Advanced hands-on experience in all modern Operating Systems (Window/NIX/Cloud/Mobile)
Advanced scripting skills, can read data structures and software binary code
Advanced knowledge of Enterprise, technology controls, cybersecurity, and cyber risk issues
Strong communications, leadership and people building skills within Information Technology and/or Cybersecurity
A demonstrated ability to participate in complex, comprehensive and large projects
Must be eligible for employment under regulatory standards applicable to the position
IAM Operations Lead responsible for daily administration, governance, and security of identity infrastructure, ensuring correct access and minimizing risks.
CSOC Analyst responsible for managing security incidents and threat investigation at Just Eat Takeaway. Working with an internal team to detect, investigate, and respond to significant threats.
Security Operations Engineer at Supabase providing front - line coverage for security alerts and customer security tickets. Supporting internal IT operations and improving security processes in a remote setup.
SecOps Engineer integrating security into development processes for Lido Protocol. Collaborating on security practices, incident management, and developer training.
SOC Operator managing 24/7 command centre operations for the Toronto Jewish community. Support during emergencies, manage incidents, and conduct thorough record - keeping.
Security Operations Analyst monitoring and investigating security threats across enterprise systems. Collaborating with teams on incident response and threat intelligence activities.
Manager of Security Operations at Match Group overseeing detection engineering, security operations, and incident response. Leading a high - performing team to maximize threat response capabilities.
Senior SecOps Analyst overseeing end - to - end vulnerability management processes. Collaborating with teams to enhance security measures in a hybrid workplace.
SOC Analyst supporting 24/7 operational capabilities in cybersecurity at Starling. Collaborating with global teams to protect customers and assets through incident response and investigations.