Information Security Specialist (Penetration Testing)

Information Security Specialist (Penetration Testing)

Work Location : Canada

Hours : 37.5

Line of Business : Technology Solutions

Pay Details : We’re committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.

Job Description : Responsibilities :

Responsibilities :

• Conduct Penetration Tests : Perform thorough and methodical penetration testing on web applications, network infrastructures, and other systems to identify security vulnerabilities.
• Vulnerability Assessment : Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture.
• Report Findings : Document and communicate findings clearly and effectively to both technical and non-technical stakeholders.

Prepare comprehensive reports with recommendations for remediation.

• Develop and Execute Test Plans : Design and execute detailed test plans.
• Stay Current : Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective.
• Collaborate with Teams : Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements.
• Perform Risk Assessments : Evaluate and assess potential security risks related to new and existing systems and technologies.
• Compliance : Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies.

Requirements :

• Technical Skills :
• Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali.
• Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles.
• Analytical Skills : Strong analytical and problem-solving abilities with attention to detail.
• Communication : Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders.
• Ethical Standards : Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards.

Preferred Qualifications :

• Experience with penetration testing in cloud environments (e.g., AWS, Azure) and PCI testing.
• Familiarity with security standards and frameworks.

Certifications : Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable.

Who We Are :

TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches / stores.

Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world.

Our Total Rewards Package : Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals.

Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs.

Additional Information : We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we’re committed to providing the support our colleagues need to thrive both at work and at home.

Language Requirement : N / A.

J-18808-Ljbffr