Senior Information Security Analyst, FIM

Work Location: Singapore

Hours: 40

Line of Business: Technology Solutions

Pay Details:

We are committed to providing fair and equitable compensation to all our colleagues. As a candidate we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions including pay details for this role.

This role is for an incident manager on Fusion Incident Management (FIM). The individual will be responsible for coordinating incident response activities for information security fraud or investigative incidents. The individual will also be responsible for post‑incident activities such as root cause analysis and observations as well as written incident communications and briefings delivered to operational teams and senior leaders at the Bank. Fusion Incident Management operates 24 / 7 / 365 and leverages an on‑call rotation across the team (inclusive of this position). This member of the team will lead incident response and management efforts associated with information security fraud data exposure and insider threat incidents. This is an individual contributor position but requires members of the team to lead and coordinate incident response efforts effectively managing diverse and multidisciplinary teams engaged in response activities. The individual will be regularly liaising across the organization and primarily interfacing with executive and/or functional stakeholders to minimize overall technology risks to the Bank for own area.

• Manage, coordinate and lead information security fraud and/or investigative incidents.

• Drive response efforts leveraging critical thinking skills, investigative mindset and active listening.

• Track incident tasks data and workstreams.

• Effectively author and review communications for stakeholders, operational personnel and leadership.

• Document and evidence cases comprehensively in the team’s system of record.

• Participate in and lead response efforts during on‑call routines.

• Provide technical expertise and consultation to partners and/or stakeholders on a broad range of Technology and Fraud Controls / Information Security programs / policies / standards and incidents for own specialized discipline / practice area.

• As needed conduct risk assessments for incidents, articulate and document impact of control gaps to the business and the overall Bank risk mitigation and remediation plans or provide information security solutions to address risks as applicable.

• Ensure technology processes and governance are in place to monitor, detect, prevent and react to current and emerging security threats against TDBG’s business.

• Assist with driving risk remediation activities and identify new issues in need of remediation alongside senior and executive leadership on Fusion Incident Management.

• Assist with driving the evolution of internal processes, documentation and routines alongside senior and executive leadership on Fusion Incident Management.

• Consult on regulatory compliance requirements, reporting and questions.

• Provide support and consulting in preparation for audits and in composing management responses and appropriate remediation activities.

• Ensure adherence to internal policies, procedures, technology control standards and applicable regulatory guidelines.

• Proactively review internal processes and activities and identify opportunities for improvement.

• Adhere to and advise on, oversee, monitor, and enforce enterprise frameworks and methodologies that relate to technology controls and information security activities.

• Influence behavior to reduce risk and foster a strong technology risk‑management culture throughout the enterprise.

• Support the team in staying knowledgeable on emerging issues, trends and evolving regulatory requirements and assess potential impacts to the Bank.

• Assess and identify key issues, escalating to appropriate levels and stakeholder business management where required.

• Maintain a culture of risk management and control supported by effective processes and sound infrastructure in alignment with risk appetite.

• Identify, mitigate and report on risk issues per enterprise policy/guidelines and ensure appropriate escalation processes are followed.

• Support and contribute to cross‑functional/enterprise initiatives as an organizational or subject‑matter expert helping to identify risk and provide guidance for complex situations.

• Responsible for incident management activities and leadership of incidents to containment, eradication, recovery and closure.

• Assist the team leads by growing peer colleague expertise to align with enterprise demand and the Bank’s direction; continually look for ways to provide and enhance the value delivered.

• Foster an environment/culture that encourages productivity, innovation, process improvement, teamwork and a high level of professionalism.

• Coordinate necessary resources to ensure completion by deadlines.

• Prioritize and manage own workload to deliver quality results and meet timelines.

• Support a positive work environment that promotes inclusivity, service to the business, quality, innovation, and teamwork and ensures timely communication of issues and points of interest.

• Identify and recommend opportunities to enhance security productivity, effectiveness and operational efficiency.

• Establish effective relationships across multiple business and technology partners, program and project managers.

• Participate in knowledge transfer within the team and business units.

• Advanced knowledge of bank technology standards and managing people/projects.

• Strong communication, negotiation and organizational skills, specifically including the ability to present options in business terms to both IT and business staff, including executives.

• 5–7 years of relevant experience.

• University degree preferred.

• Experience managing or participating in incident response.

• Must excel at working on a team in a collaborative environment.

• Experience in information security fraud operations investigations and/or insider threat.

• Command/executive presence; ability to lead and bring calm to stressful and complex situations.

• Multi‑tasking and time‑management skills a must.

• Ability to think outside the box to comprehensively respond to all incidents.

• Information security certification/accreditation an asset.

TD is one of the world’s leading global financial institutions and is the fifth largest bank in North America by branches. Every day we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent and creativity to the Bank, those we serve and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.

Our Total Rewards package reflects the investment we make in our colleagues to help them and their families achieve their well‑being goals. Total Rewards at TD includes a base salary and several other key plans such as health and well‑being benefits including medical coverage, paid time off, career development and reward and recognition programs.

We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs and a competitive benefits plan we’re committed to providing the support our colleagues need to thrive both at work and at home.

If you’re interested in a specific career path or are looking to build certain skills we want to help you succeed. You’ll have regular career development and performance conversations with your manager as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities.

We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

We’ll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.

If you require an accommodation for the recruitment/interview process (including alternate formats of materials or accessible meeting rooms or other accommodation) please let us know and we will work with you to meet your needs.

IT Experience, Splunk, IDS, Cybersecurity, FIPS, PCI, NIST Standards, Information Security, Encryption, FISMA, RMF, SIEM

Employment Type: Full‑Time

Experience: years

Vacancy: 1