×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity AI Engineer IT Consultant Systems Engineer

Information Security Specialist ( AI Platform Security Specialist; B3617

Job in Toronto, Ontario, M5A, Canada
Listing for: The Toronto-Dominion Bank (Canada)
Full Time position
Listed on 2026-02-17
Job specializations:
  • IT/Tech
    Cybersecurity, AI Engineer, IT Consultant, Systems Engineer
Job Description & How to Apply Below
Position: Information Security Specialist ( AI Platform Security Specialist) (B3617)

Description

Key Responsibilities and Design Mandate

1. Security Design and Technical Leadership

· Own and Define Security Architecture:
Translate high-level business and regulatory requirements into detailed, reusable, and robust security architecture and design standards for the AI platform across Azure and GCP.

· Security PoC Mandate:
Lead and execute Proof-of-Concepts (PoCs) for complex, novel security technologies (like LLM Firewalls, Agentic AI security tools, and data posture management) to validate their effectiveness and establish implementation blueprints.

· Hybrid Cloud Hardening:
Design and document the necessary hardening and segmentation strategies to securely integrate AI assets deployed in Azure/GCP with sensitive On-Premises systems and data sources.

· Mentorship:
Serve as a subject matter expert, providing leadership and technical guidance to junior engineers and cross-functional teams on complex security implementations.

· Evaluate end-to-end AI lifecycle and apply security controls at each stage to protect against adversarial attacks and supply chain attacks.

2. Advanced Protocol and Application Security

· Agentic AI Protocol Security:
Act as the organizational expert in securing emerging multi-agent and tool-calling frameworks, specifically defining security requirements for protocols like Agent-to-Agent (A2A) and Model Context Protocol (MCP).

· Identity and Access Design (IAM):
Architect the entire Identity and Access Management (IAM) framework for AI environments, ensuring secure token exchange (OAuth 2.0/OIDC) and defining granular, auditable role-based access control (RBAC) across multi-cloud infrastructure.

· API Security Gateway:
Design the security posture and controls for API gateways and application delivery networks that front external-facing LLM and RAG (Retrieval-Augmented Generation) applications.

· Mitigation Solutions:
Support the design, build, and testing of security controls to mitigate common AI/ML attacks as outlined by frameworks like the OWASP Top 10 for LLM Applications, Mitre Atlas.

3. Collaboration and Strategy Translation

· AI Red Team Support:
Partner closely with AI Development teams to provide the essential infrastructure and tooling expertise necessary to support their AI Red Team program and broader security initiatives.

· Strategy Implementation:
Work directly with Dev Ops and Platform Engineering teams to translate your successful security PoCs and design blueprints into robust, production-ready Infrastructure as Code (IaC) controls and automated security pipelines.

· Risk Governance:
Provide expert input to governance bodies regarding AI security risks, technical trade-offs, and compliance mapping for new AI product launches.

Required Qualifications and Expertise

· 7+ years of progressive experience in Cloud Security, Cyber Security Engineering, or Application Security.

3+Year with A.I. leading programs end to end.

· Deep, demonstrable knowledge of security design and architecture principles for scalable cloud-native applications.

· Expert-level practical experience securing infrastructure and services in Microsoft Azure and Google Cloud Platform (GCP).

· Deep understanding of AI security frameworks such as OWASP Top 10 for LLM Applications, OWASP API Top 10, Mitre Atlas

· Deep understanding of the end-to-end AI lifecycle with proven ability to secure each stage against adversarial attacks and supply chain vulnerabilities

· Expertise in Identity and Access Management (IAM) and advanced authorization protocols (OAuth 2.0/OIDC).

· Mandatory experience designing and implementing centralized Secrets Management solutions (e.g., Azure Key Vault, GCP Secret Manager).

· Proven ability to conduct security evaluations and technical PoCs for complex security products.

· Strong understanding of security vulnerabilities unique to Generative AI, LLM, and RAG architectures.

· Familiarity with Agentic AI concepts and security implications of emerging protocols (A2A, MCP).

· Excellent written and verbal communication skills, capable of presenting technical risks and design strategy to both engineers and executive leadership.

Who We Are:

TD is one of the world's leading global…

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search