Information Security Specialist (Penetration Testing)
Work Location : Canada
Hours : 37.5
Line of Business : Technology Solutions
Pay Details : We’re committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.
Job Description : Responsibilities :
Responsibilities :
- Conduct Penetration Tests : Perform thorough and methodical penetration testing on web applications, network infrastructures, and other systems to identify security vulnerabilities.
- Vulnerability Assessment : Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture.
- Report Findings : Document and communicate findings clearly and effectively to both technical and non-technical stakeholders.
Prepare comprehensive reports with recommendations for remediation.
- Develop and Execute Test Plans : Design and execute detailed test plans.
- Stay Current : Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective.
- Collaborate with Teams : Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements.
- Perform Risk Assessments : Evaluate and assess potential security risks related to new and existing systems and technologies.
- Compliance : Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies.
Requirements :
- Technical Skills :
- Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali.
- Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles.
- Analytical Skills : Strong analytical and problem-solving abilities with attention to detail.
- Communication : Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders.
- Ethical Standards : Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards.
Preferred Qualifications :
- Experience with penetration testing in cloud environments (e.g., AWS, Azure) and PCI testing.
- Familiarity with security standards and frameworks.
Certifications : Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable.
Who We Are :
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches / stores.
Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world.
Our Total Rewards Package : Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals.
Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs.
Additional Information : We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we’re committed to providing the support our colleagues need to thrive both at work and at home.
Language Requirement : N / A.
J-18808-Ljbffr