TD Bank, America's Most Convenient Bank, is one of the 10 largest banks in the U.S., providing over 9.8 million customers with a full range of retail, small business and commercial banking products and services at more than 1,100 convenient locations throughout the Northeast, Mid-Atlantic, Metro D.C., the Carolinas and Florida. In addition, TD Auto Finance, a division of TD Bank, N.A., offers vehicle financing and dealer commercial services. TD Bank and its subsidiaries also offer customized private banking and wealth management services through TD Wealth®. TD Bank is headquartered in Cherry Hill, N.J.

We offer a competitive salary and benefit program, including: comprehensive, affordable health care through medical, dental, and vision coverage; financial security with life and disability insurance; opportunities to save using health savings and flexible spending accounts; retirement benefits to help prepare for the future; paid time off and work/life benefits to maintain a good balance.

Building a World-Class Technology Team at TD

We can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open.

TD Information & Cyber Security covers the development and management of security strategies, policies and programs to assess, prioritize and mitigate business risk with technology controls. Priorities include mitigating and managing cyber security threats, ensuring systems availability, aligning with global regulatory risk and compliance requirements, managing systems and network complexity and partnering with businesses for better technology delivery by providing advice on technology controls.
Enterprise Protect, Governance, Risk & Compliance (GRC) is responsible for providing policies and governance for managing risk across the organization through a set of technology-based standards and controls. The Platforms and Technology Risk Services GRC Product and Process Design Group is responsible for the functional design and business support for the Enterprise Protect GRC platform which includes several technology assessment processes, control exception governance processes and related reporting for the Enterprise and business segments to ensure visibility into current and emerging risks enabling investment decisions and prioritization of risk reduction efforts.

About This Role

We are looking for someone to develop and implement Technology Controls and Information Security related policies, programs and tools. You will provide specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect TD. You may also participate on projects of moderate to high complexity and provide complex reporting, analysis, and assessments at the functional, business line or enterprise level.

Meaningful work is fueled by meaningful performance and career development conversations with your manager. Here are the essential job functions of this position:

• Guide partners on a broad range of specific Technology Controls and Information Security programs, policies, standards and incidents.
• Conduct risk assessment, required controls definition, control procedure appropriateness, vulnerability assessments and any other relevant areas.
• Lead or contribute to the completion of risk and control design assessments for an assigned business application, business portfolio, and overall enterprise, as well as risk mitigation and remediation plans and remediation strategy.
• Contribute to the definition, development, and oversight of a global security management strategy and framework.
• Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats against TDBG’s business.
• Develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area.
• Adhere to internal policies and procedures, technology control standards, and applicable regulatory guidelines.
• Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement.
• Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.
• Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise .

What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. Here are the minimum requirements for this position:

• University Degree.
• Information Security Certification / Accreditation an asset.
• 7+ years of relevant experience.
• Expert knowledge of IT security and risk disciplines and practices.
• Advanced knowledge of of organization, technology controls, security and risk issues.
• Demonstrated ability to participate in complex, comprehensive or large projects and initiatives.
• Ability to serve as a lead expert resource in technology controls and information security for project teams, the business, organization and outside vendors.
• Must be eligible for employment under regulatory standards applicable to the position.

• Must be proficient with technology tools including MS Office, databases and GRC tools (Archer user experience preferred).
• Inspire a positive work environment and help champion quality, innovation, teamwork and service to the business
• Learn voraciously, stretch your thinking, share your knowledge and educate others
• Communicate and collaborate with both technical and non-technical professionals
• Cultivate winning relationships by building trust with business and technology partners
• Share our commitment to productivity, effectiveness and operational efficiency
• Embrace change and witness amazing things happen – from the inside.
• Strong written and verbal communication skills and comfortable communicating at all levels of the organization, strong presentation skills a must
• Ability to manage multiple efforts simultaneously, strong project management, reporting, and organizational skills
• Demonstrated ability to participate in complex, comprehensive or large projects and initiatives
• Sound knowledge of one or more technology controls or security domains, disciplines, and practices
• Preferred knowledge of financial industry's technology controls and security risk issues
• Strength in prioritizing and managing your own workload to deliver quality results and meet timelines with limited guidance of management
• 5+ years' experience in the area of IT risk and technology and/or information security in a large organization (experience in a high transaction, large/complex/matrix business environment ideally within Financial Services an asset) including Technology and Cyber-security risk analysis
• Business/technology experience with experience collaborating with others in highly matrix, cross-functional environment

At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live in and serve, and creating an environment where every employee has the opportunity to reach their potential.

If you are a candidate with a disability and need an accommodation to complete the application process, email the TD Bank US Workplace Accommodations Program at USWAPTDO@td.com . Include your full name, best way to reach you, and the accommodation needed to assist you with the application process.

EOE/Minorities/Females/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity.