Information Security Analyst II (US)

About The Position

Requirements

• Bachelor's degree preferred
• Information security certification / accreditation an asset
• 3-5 years of relevant experience
• Requires sound knowledge of one or more technology controls / security domains, disciplines and practices
• Requires sound knowledge of organization, technology controls / security/ risk issues

Nice To Haves

• 3-5 years of experience in Information Security Operations or related field is required.
• A minimum of 3 years experience of leading and coordinating the Security Operations Monitoring team.
• A thorough understanding of security controls and mechanisms, as well as threat risk assessment techniques related to complex data, applications, and networking environment.
• Must have expert knowledge of security incident and event management using an enterprise incident management framework, log analysis, network traffic analysis, malware investigation and remediation, SIEM correlation logic and alert generation.
• Ability to perform analysis and reporting on information from multiple data sources using data mining technique for the purpose of documenting analysis results, produce report and present to a technical and executive stakeholder.
• Must have expert knowledge in SIEM, EDR, XDR, Firewall, WAF, NIDS and equivalent.
• Understanding of Security principles, techniques, and technologies such as NIST Cybersecurity Framework, SANS Top 20 Critical Security Controls and OWASP Top 10.
• Strong organizational and self-directing skills.
• Ability to initiate, coordinate and prioritize responsibilities and follow through on tasks to completion.
• Must demonstrate expert knowledge in Enterprise IT operations, incident management, change management, Access/Identity Management, security operations, vulnerability and compliance management, ticketing system, incident ticket life cycle and SLA terms.
• Must have excellent written and oral communication skills.
• Ability to work independently on a variety of assignments with minimal supervision.
• Ability to work without supervision with the senior leadership team.
• Good to have basic programming skills in various disciplines including scripting languages.

Responsibilities

• Provides research, evaluation, assessment, operational, reporting and / or analytical support on Technology Controls / Information Security related programs and initiatives.
• Participates and provides advice / guidance on Cyber Security projects of moderate complexity.
• Provides enterprise wide subject matter expertise on cyber security
• Responds to Security Incidents, provides guidance, research and root cause analysis and develops remediation plans
• Participates and provides advice / guidance on projects of low to moderate complexity within own area of specialization
• Assembles and contributes enterprise level metrics for internal, managerial and regulatory reporting
• Researches and documents enterprise level processes.
• Creates Gap Analysis Reports
• Analyzes enterprise wide reports, malware alerts, emerging threats and potential impact on Bank's state of controls.
• Recommends appropriate action plans to management
• Prioritizes and manages own workload in order to deliver quality results and meet timelines under guidance of management

Benefits

• Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition.