Sr. Security Specialist - 54106

# of positions: 2

Duration: 1 year

Extension possible: potential

Interview Process: 2 rounds

Work Location: 66 Wellington Street West- Mainly remote, but will need to come one and awhile adhoc

CANDIDATE PROFILE DETAILS:

Degree/Certifications Required: CISSP, Audit designation- would be nice to have.

Years of experience: 10 years

Reason for request/why opened: Project based

% Interaction with Stakeholders: fair amount of interaction

Project Scope: Integrate Nordstrom credit card business into TD

Team Size: 10 to 15 main team but project team is large

Personality Style/Team Culture: hardworking, someone who is experienced and hit the ground running.

Selling Points of Position: working on important project for the bank.

Best Vs Average Candidate:

Technology risk and controls

Risk assessments for technology

Fraud experience- benefit

Data life cycle - benefit

Banking experience would be ideal- credit card business

How will performance be measured: deliverables

SUMMARY OF DAY TO DAY RESPONSIBILITIES:

2nd line of defense for risk- Cyber, fraud.

Will be reviewing what the 1st line of defense and ensuring results are correct.

The Security Specialist?s role is to provide vision and leadership for developing and supporting security initiatives. The Security Specialist directs the planning and implementation of enterprise IT system, business operation, and facility defenses against security breaches and vulnerability issues. This individual is also responsible for auditing existing systems, while directing the administration of security policies, activities, and standards. Direct and apply control systems to prevent error, abuse, fraud, etc. Take full responsibility for minimizing disaster threat effects and for recovery. Raise awareness of all levels of the organization regarding security practices. Aligns the security policy with policies and plans of the organization. Constantly review procedures for security failings and disaster recovery. Take leading role in originating/maintaining security policies and strategies. Take leading part to ensure compliance with security plans/standards. Manage risk analysis, disaster recovery, planning and event simulation

MUST HAVE:

Technology risk and controls

Risk assessments for technology

3rd party cyber risk

experience in large system migration

NICE TO HAVE

Fraud experience- benefit

Data life cycle - benefit

Banking experience is a nice to have