Information Security Specialist – Software Governance
Job Overview
Job title: Information Security Specialist – Software Governance
Job description: Company Overview
Tell us your story. Don’t go unnoticed. Explain why you’re a winning candidate. Think ”TD” if you crave meaningful work and embrace change like we do. We are a trusted North American leader that cares about people and inspires them to grow and move forward.
Stay current and competitive. Carve out a career for yourself. Grow with us. Here’s our story: jobs.td.com
Department Overview
Building a World-Class Technology Team at TD
We can’t afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open-minded in the way we think about technology. TD’s technology and business teams become more intertwined as new opportunities present themselves. This new era in banking does not equal boring. Not at TD, anyway.
TD Information Security covers the development and management of security strategies, policies and programs to assess, prioritize, and mitigate business risk with technology controls. Priorities include: mitigating and managing cyber security threats, ensuring systems availability, aligning with global regulatory risk and compliance requirements, managing systems and network complexity, and partnering with businesses for better technology delivery by providing advice on technology controls.
There’s room to grow in all of it.
Job Description
About This Role
Reporting to the Senior Manager, Endpoint Governance, this role will be focal to define, document, ensure completeness and correctness of implemented technical and process controls related to software governance on end-point devices implemented or operated in TD:
- Finish implementation and documentation of software governance framework, policies, standards, and procedures.
- Develop, implement, monitor and enhance security policies, procedures, and standards related to software deployed at TD
- Engage with stakeholders of various aspects of the software lifecycle, from procurement through deployment and support to end-of-life retirement
- Develop and produce key risk indicators and key process indicators to document status of software governance
- Own the management of documentation for the Endpoint Governance team, including Technical Security Specifications (TSS) and team procedures, to include tracking document expirations and renewals, tracking writing assignments within the team, editing and proofing documents authored by team members, tracking and guiding approvals, and overseeing publication as appropriate
- Performing in-depth risk assessments to ensure that the security safeguards and controls are in-line with our security policy and standards
- Research, create, develop, and enforce security policies, standards, and procedures to ensure the protection of the organization’s software in alignment with industry good-practice such as NIST
- Provide IT and business resources guidance in interpreting security compliance requirements and performing application and system security assessments
Requirements
What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. It helps if you have:
- Very strong written and oral communication skills
- Strong problem-solving skills and ”out-of-the-box” thinking
- Able to understand complex and/or technical issues quickly
- Experience working on a small team with little direct supervision
- At least five years’ experience (ten is better) in Enterprise GRC-related roles
- Experience in process design and documentation (including flow charts, swim lane diagrams, and ARCI tables)
- Able to negotiate with stakeholders to reach consensus
- A vendor-neutral security-related certification such as CISSP, CISA, CCSP, or CISM is a definite plus
- University or college degree/diploma is good to have, particularly in technology and/or communications
- Experience in working in a heavily-regulated environment (i.e. financial sector)
Additional Information
Join in on what others in TD Technology Solutions are doing:
- Inspire a positive work environment and help champion quality, innovation, teamwork and service to the business.
- Learn voraciously, stretch your thinking,
Hours
37.5
Inclusiveness
At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live and serve. If you require an accommodation for the recruitment/interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.
Company: TD
Expected salary:
Location: Mississauga, ON
Job date: Wed, 26 May 2021 22:11:01 GMT