skip to main content

Important Notice

It appears you are using an older version of your browser. While some functions will be available, Maine JobLink works best with a modern browser such as the ones provided by:

Please download and install the latest version of the browser of your choice. We apologize for any inconvenience.

InfoSec Specialist - 3rd Party Cyber Risk

Click the Facebook, Google+ or LinkedIn icons to share this job with your friends or contacts. Click the Twitter icon to tweet this job to your followers. Click the link button to view the URL of the job, which then can be copied and pasted into an e-mail or other document.

Job Details
Job Order Number
Company Name
TD Bank
Physical Address

Falmouth, ME 04105
Job Description


Job Title:

InfoSec Specialist – 3rd Party Cyber Risk

TD Description:

About TD Bank, America’s Most Convenient Bank®

TD Bank, America’s Most Convenient Bank, is one of the 10 largest banks in the U.S., providing more than 8 million customers with a full range of retail, small business and commercial banking products and services at approximately 1,300 convenient locations throughout the Northeast, Mid-Atlantic, Metro D.C., the Carolinas and Florida. In addition, TD Bank and its subsidiaries offer customized private banking and wealth management services through TD Wealth®, and vehicle financing and dealer commercial services through TD Auto Finance. TD Bank is headquartered in Cherry Hill, N.J. To learn more, visit at Find TD Bank on Facebook at and on Twitter at .

TD Bank, America’s Most Convenient Bank, is a member of TD Bank Group and a subsidiary of The Toronto-Dominion Bank of Toronto, Canada, a top 10 financial services company in North America. The Toronto-Dominion Bank trades on the New York and Toronto stock exchanges under the ticker symbol “TD”. To learn more, visit at .

Auto req ID:


Department Overview:

Building a World-Class Technology Team at TD

We can’t afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open


United States

Job Requirements:


What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. Here are the minimum requirements for this position:

+ University Degree.

+ Information Security Certification / Accreditation an asset.

+ 7+ years of relevant experience.

+ Expert knowledge of IT security and risk disciplines and practices.

+ Advanced knowledge of of organization, technology controls, security and risk issues.

+ Demonstrated ability to participate in complex, comprehensive or large projects and initiatives.

+ Ability to serve as a lead expert resource in technology controls and information security for project teams, the business, organization and outside vendors.

+ Must be eligible for employment under regulatory standards applicable to the position.



Job Description:


About This Role

We are looking for someone to develop and implement Technology Controls and Information Security related policies, programs and tools. You will provide specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect TD. You may also participate on projects of moderate to high complexity and provide complex reporting, analysis, and assessments at the functional, business line or enterprise level.

Meaningful work is fueled by meaningful performance and career development conversations with your manager. Here are the essential job functions of this position:

+ Guide partners on a broad range of specific Technology Controls and Information Security programs, policies, standards and incidents.

+ Conduct risk assessment, required controls definition, control procedure appropriateness, vulnerability assessments and any other relevant areas.

+ Lead or contribute to the completion of risk and control design assessments for an assigned business application, business portfolio, and overall enterprise, as well as risk mitigation and remediation plans and remediation strategy.

+ Contribute to the definition, development, and oversight of a global security management strategy and framework.

+ Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats against TDBG’s business.

+ Develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area.

+ Adhere to internal policies and procedures, technology control standards, and applicable regulatory guidelines.

+ Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement.

+ Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.

+ Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise .

Other duties as assigned • Driving Requirements: • Travel Requirements:


At TD, we are committed to fostering an inclusive, accessible environment, where all employees and customers feel valued, respected and supported. We are dedicated to building a workforce that reflects the diversity of our customers and communities in which we live in and serve, and creating an environment where every employee has the opportunity to reach their potential.

If you are a candidate with a disability and need an accommodation to complete the application process, email the TD Bank US Workplace Accommodations Program at . Include your full name, best way to reach you, and the accommodation needed to assist you with the application process.

EOE/Minorities/Females/Veterans/Individuals with Disabilities/Sexual Orientation/Gender Identity.


Maine, New Jersey


Falmouth, Mount Laurel


Preferred Qualifications – Here are the preferred qualifications for this role:

CISSP, CRISC, CISA, CISM, CEH or equivalent certification is preferred

•\tStrong working knowledge of industry frameworks such as the ISO 27002, NIST Cyber Security Framework

•\tStrong understanding of ISO27000 Series, SSAE 16/CSAE 3416/ISAE 3402 SOC reports, PCI DSS, CSA CAIQ, BITS SIG, NIST, and vulnerability/penetration testing reports.

•\tSupplier Risk Management experience dealing with high transaction, large/complex/matrix business environment ideally within Financial Services.

•\tDeep knowledge of IT security and Risk disciplines and practices.

•\tAbility to articulate technology risks in a business-friendly manner along with excellent client engagement/management skills

•\t5+ years’ experience in Technology controls with emphasis on Risk, Data and CyberSecurity controls

•\tIn-depth knowledge and understanding of cyber risk management practices and methodologies including risk assessments

•\tProven track record in building positive working relationships across global organization and influencing change

•\tExperience with cybersecurity controls and technology preferred

Job description – additional bullets

•\tIntegrate emerging risk control requirements into the existing Third Party Cyber Risk Management assessment process

•\tIdentify opportunities for improving third party cyber risk posture as well as TD’s third party cyber risk management processes, including expanded monitoring and KRI enhancements.

•\tIdentify opportunities for third party cyber control assessment process improvements to deliver increasing operational efficiencies

Work Location:

Mt Laurel – Technology Center – 17000 Horizon Way

To view full details and how to apply, please login or create a Job Seeker account.