×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Network Security IT Consultant

Information Security Specialist - Cyber Security Incident Response

Job in Toronto, Ontario, C6A, Canada
Listing for: TD Securities
Full Time position
Listed on 2025-12-10
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Network Security, IT Consultant
Salary/Wage Range or Industry Benchmark: 96900 - 136800 CAD Yearly CAD 96900.00 136800.00 YEAR
Job Description & How to Apply Below

Information Security Specialist - Cyber Security Incident Response

Work Location: Toronto, Ontario, Canada

Hours: 37.5

Line Of Business: Technology Solutions

Pay Details: $96,900 - $136,800 CAD

TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience  compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job‑related knowledge, geographic location, and other specific business and organizational needs.

As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.

Job Description
  • As an Information Security Specialist, you will play a critical role in detecting, investigating, and responding to cyber threats targeting TD.
  • You will work within the Cyber Security Incident Response Team (CSIRT), leading complex investigations, developing detection and hunting techniques, and strengthening our incident response capabilities.
  • This role requires an experienced security professional with deep technical expertise in incident handling and analysis, malware investigation and containment, and cyber kill chain. You will be responsible for identifying and mitigating cyberthreats, collaborating with stakeholders across Protect Platform, ITS, and business teams to reduce risk and enhance our security posture.

The personnel in this role will work as part of a cyber security operations team responsible for carrying out 24x7 security monitoring operations. Operations are carried out on a rotating shift schedule that involves occasional on‑call and/or weekend support.

Essential Job Functions
  • Guide partners on a broad range of technology throughout incidents
  • Lead cyber security incidents and cyber security events
  • Lead or contribute to containment and recovery plans for cyber security incidents
  • Contribute to the definition, development, and oversight of a global security management strategy and framework
  • Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats against TD businesses and network domains
  • Develop ongoing operational enhancements for cyber security including alerting, monitoring, and detection across multiple security domains
  • Adhere to internal policies and procedures, technology control standards, and applicable regulatory guidelines
  • Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement
  • Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls / information security activities
  • Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise
Job Requirements
  • University degree or equivalent hands‑on work experience
  • 7+ years of hands‑on relevant experience
  • Expert knowledge of IT security and incident management practices across multiple cyber security domains
  • Strong hands‑on experience with traditional incident response detection tools such as SIEM, EDR, XDR, firewall, WAF, email proxies, NIDS, and equivalents
  • Advanced hands‑on experience in all modern operating systems (Windows, Linux, cloud, mobile)
  • Advanced scripting skills, can read data structures and software binary code
  • Advanced knowledge of enterprise technology controls, cyber security, and cyber risk issues
  • Strong communications, leadership and people‑building skills within IT and/or cyber security
  • A demonstrated ability to participate in complex, comprehensive and large projects
  • Has the ability to serve as a leading expert in technology controls and information security for project teams, the business, organization, and external vendors
  • Must be eligible for employment under regulatory standards applicable to the position
Preferred Qualifications
  • Extensive experience…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search