informatics security analyst

Posted on October 22, 2025 by TD Bank

Work Location: Toronto, Ontario, Canada

Hours: 37.5

Line of Business: Technology Solutions

Pay Details: $91,200 - $136,800 CAD

TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job‑related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.

• Conduct Penetration Tests: Perform thorough and methodical penetration testing, focusing specifically on AI and LLMs.
• Vulnerability Assessment: Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture.
• Report Findings: Document and communicate findings clearly and effectively to both technical and non‑technical stakeholders. Prepare comprehensive reports with recommendations for remediation.
• Develop and Execute Test Plans: Design and execute detailed test plans.
• Stay Current: Keep up‑date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective.
• Collaborate with Teams: Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements.
• Perform Risk Assessments: Evaluate and assess potential security risks related to new and existing systems and technologies.
• Compliance: Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies.
• Provide support and consulting in preparation for Audits and in composing management responses and appropriate remediation activities.
• Participate in computer security incident responses relevant to business (or enterprise‑wide) and represent the respective function and enterprise position to the business, and business needs to incident response team.
• Adhere to internal policies / procedures, technology control standards, and applicable regulatory guidelines.
• Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement.
• Adhere to and advise on / oversee / monitor / enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.
• Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise.
• Remain informed of emerging issues, industry trends and/or relevant changes.

• Technical Skills: Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali. Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles.
• Analytical Skills: Strong analytical and problem‑solving abilities with attention to detail.
• Communication: Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non‑technical stakeholders.
• Ethical Standards: Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards.

• Experience with penetration testing in AI, cloud environments (e.g., AWS, Azure) and PCI testing.
• Familiarity with security standards and frameworks.

• Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable.

Advertised until 2025-11-20