Posted:
12/18/2024, 4:44:05 AM
Location(s):
Toronto, Ontario, Canada ⋅ Ontario, Canada
Experience Level(s):
Senior
Field(s):
IT & Security ⋅ Software Engineering
Work Location:
Toronto, Ontario, CanadaHours:
37.5Line of Business:
Technology SolutionsPay Details:
$108,800 - $163,200 CADTD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs.
As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.
Job Description:
Job Profile Summary
The PKI Security Architect is responsible for playing a key role in leading the architectural design of robust security architectures that leverage Public Key Infrastructure (PKI) systems. This role involves creating and maintaining enterprise-wide security architecture and patterns, with a focus on cryptography, Public Key Infrastructure (PKI), digital signing, and Cryptographic Trust.
This role has responsibility over setting security architecture repeatable designs across multiple security and technology domains through collaborating with stakeholders to ensure the organization’s security controls meet industry standards and regulatory requirements while aligning with business goals.
The PKI Security Architect works strategically and transparently within the Enterprise Architecture organization as well as its partners in Infrastructure Security and Technology Services and drives security architecture strategy within the business objectives.
Depth & Scope:
Security Architecture Development:
Develops and drives migration of PKI Security Architecture to preferred enterprise framework.
Design enterprise-level security architectures and architecture patterns related to PKI cryptography domains.
Works with TD's segment businesses to ensure timely adoption, consistency, and utilization of the published architectural patterns.
Acts as SME for preferred Security Architecture framework.
Develop PKI security frameworks and roadmaps tailored to business objectives and risks.
Develop and maintain comprehensive architectural documentation which is easily consumed by IT stakeholders.
Partner with IT, DevOps, and business units to integrate security requirements seamlessly into workflows.
Cryptography Expertise:
Create scalable cryptographic architectural solutions for digital certificates, symmetric and asymmetric encryption, and digital signature.
Develop cryptographic trust frameworks for managing digital certificates lifecycle.
Apply strong theoretical knowledge and industry experience in advanced cryptography schemes to secure complex IT infrastructure, customer-facing services, and sensitive customer and enterprise data.
Ensure the confidentiality, integrity, and availability of sensitive data through strong PKI encryption strategies.
Provide expertise on cryptographic compliance with standards such as FIPS, PCI DSS, ISO 27001/27002.
Technical Skills:
Expertise in architecturing PKI systems and multi-tier Certificate Authorities (CAs).
Solid understanding of cryptographic technologies and standards (RSA, ECC, AES, TLS, X.509, etc.).
Strong knowledge of digital signing, trust models, and secure key management practices.
Strong knowledge of Post-Quantum Cryptography, Quantum threats to PKI and cybersecurity, and the concept of Crypto Agility.
Understanding of the FIPS Post-Quantum Cryptography standards (FIPS 203, FIPS204, FIPS 205), their role and application in PKI ecosystem.
Proficiency in security architecture frameworks (e.g., SABSA, TOGAF, NIST Cybersecurity Framework).
Experience with cloud security architectures and tools for platforms like Azure, Google Cloud, AWS.
Ability to connect the dots across application domains and cryptographic products to identify areas of value for the enterprise.
Experience with HSMs and secure key management practices.
Experience with automation tools for digital certificate management.
Experience in the Financial Services industry and understanding of the complex regulatory environment is a plus.
Experience with Agile operating models and frameworks is a plus.
Soft Skills:
Excellent communication skills for both technical and non-technical audiences.
Ability to cut through complexity and ambiguity to communicate and facilitate to help business partners visualize concepts, simplify complex scenarios, drive and influence prioritization and consensus.
Strong technical writing skills to create and support required documentation.
Ability to present in front of large audience.
Ability to work independently and collaboratively in a fast-paced environment.
Education & Experience:
Bachelor’s degree in Computer Science, Information Security, or a related field.
5+ years security architecture experience.
5+ years large corporate environment experience preferred.
One or more certifications in the following areas (or equivalent) preferred: CISSP, SSCP,
CISA, CISM or CIPP.
Who We Are:
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you’ve got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we’re here to support you towards your goals. As an organization, we keep growing – and so will you.
Our Total Rewards Package
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals. Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs. Learn more
Additional Information:
We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we’re committed to providing the support our colleagues need to thrive both at work and at home.
Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements.
Colleague Development
If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.
Training & Onboarding
We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.
Interview Process
We’ll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.
Accommodation
Your accessibility is important to us. Please let us know if you’d like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process.
We look forward to hearing from you!
Language Requirement (Quebec only):
Sans ObjetWebsite: https://www.td.com/
Headquarter Location: Toronto, Ontario, Canada
Employee Count: 10001+
Year Founded: 1955
IPO Status: Private