22 Oct
The Toronto-Dominion Bank (Canada)
Toronto
Senior Manager, Information Security (DevSecOps Governance)
Work Location: Toronto, Ontario, Canada
Hours: 37.5
Line of Business: Technology Solutions
Job Description:
KEY ACCOUNTABILITIES:
- Develop, implement, and maintain security policies, standards, and guidelines for DevSecOps practices.
- Ensure adherence to regulatory and internal compliance requirements within DevSecOps processes.
- Ensure the seamless integration of security practices into DevOps workflows, reducing security vulnerabilities and improving the security posture.
- Collaborate with DevOps, development, and operations teams to embed security controls and practices into the software development lifecycle (SDLC).
- Provide guidance on secure coding practices,
vulnerability management, and risk mitigation strategies.
- Maintain and update security policies, standards, and guidelines to align with regulatory and organizational requirements.
- Monitor and assess the effectiveness of security controls and make necessary adjustments to mitigate risks.
- Develop and deliver training programs to enhance the security awareness and capabilities of DevOps and development teams.
- Promote a culture of security awareness and continuous improvement within the organization.
REQUIRED CORE SKILLS / EXPERIENCE:
- Strong understanding of DevSecOps principles and practices.
- Proficiency with CI/CD tools (e.g., GitHub, Jenkins, Azure DevOps) and security testing tools (e.g., Veracode, Snyk, Aqua, SonarQube).
- Knowledge of cloud security best practices and technologies, particularly in Azure and GCP.
- Experience with security frameworks and standards (e.g., NIST, ISO 27001, PCI DSS).
- Familiarity with infrastructure as code (IaC) tools (e.g., Terraform, Ansible).
- Experience with containerization and orchestration tools (e.g., Docker, Kubernetes).
- Excellent communication and collaboration skills.
- Strong problem-solving and analytical skills.
- Ability to work effectively in a fast-paced and dynamic environment.
- Detail-oriented with strong organizational skills.
EXPERIENCE & EDUCATION:
- Bachelor's degree in computer science, Information Security, or a related field.
- 5+ years of experience in information security, with a focus on DevSecOps and cloud security.
- Experience in a financial services environment is preferred.
- Relevant certifications such as CCSP, AWS/Azure Security Specialty, or similar are highly desirable.
Who We Are:
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world.
Our Total Rewards Package:
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals.
Additional Information:
We’re delighted that you’re considering building a career with TD.
Please let us know if you’d like accommodations to help us remove barriers so that you can participate throughout the interview process.
#J-18808-Ljbffr
▶️ Senior Manager, Information Security(DevSecOps Governance)
🖊️ The Toronto-Dominion Bank (Canada)
📍 Toronto