Work Location:

Toronto, Ontario, Canada

Hours:

37.5

Line of Business:

Technology Solutions

Pay Details:

We’re committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.

Job Description:

The Cryptography Planning team is responsible for development of the Cryptography Framework and Guiding Principles for TD Bank to enable in-depth cryptographic data protection for on-premises, mobile and in the Cloud.  We are tasked with researching vendors and solutions, proposal, evaluation, developing systems blueprints, and creation of documentation for building and automation of Data Protection technologies and, as needed, the re-engineering of existing technologies in the Information and Data Security space.  This will entail collaboration with the Crypto Lab team for Proof-of-Concept evaluation of products, and preparation of solution blueprint documentation for handing over to the Crypto Engineering team for build and testing.

The ideal candidate possesses subject matter expertise on identifying cryptographic and data security gaps at the enterprise level scale, performing impact and stakeholder analysis, and recommending remediating measures.

This role will be responsible for solutions in areas such as, but not limited to:

• Cryptographic protection of Data at Rest and Data in Transit.
• Cryptography Governance (Policies, Procedures, Standards, Guides).
• Database Transparent Data Encryption (TDE) and encryption in Transi.t
• Protecting data in Public Cloud (Azure, Google).
• Thales Vormetric/CipherTrust Data At Rest Encryption.
• Hardware Security Module (HSM) – Thales, Entrust, Utimaco, Atalla.
• Cryptographic Tools (Venafi)
• PKI (x509 Digital Certificates, SSH, Microsoft ADCS, TLS ciphers)
• Key Lifecycle Management for symmetric and asymmetric keys.
• Post-Quantum Cryptography.

The successful candidate must have demonstrated ability to identify, analyze and document solutions in these areas using Systems Engineering Development Lifecycle approach (V-Model), and to work closely with Business and Engineering teams to warrant that built solutions enhance productivity and add business value.

Technical Requirements

The successful candidate is expected to have sound technical knowledge in a wide range of Information and Data Security technologies, frameworks, tools, processes, and procedures. This role is looking for people with skills in as many of the below technology areas as possible:

• 3+ year experience in Cryptography domain.
• Technologies and security controls for protection of data at rest and data in transit.
• In-depth knowledge of PCI DSS requirements for data protection.
• Understanding and navigation of NIST 800-Series Special Publications in respect to cryptography and FIPS 140-3 certification levels for cryptographic modules.
• In-depth knowledge of various cryptographic and encryption technologies and standards (Symmetric/Asymmetric cryptography, PKI, Digital Signing and Hashing).
• Understanding principles of Post-Quantum Cryptography and its standardization.
• Ability to translate complex technical concepts to values and outcomes for communicating to Senior Leadership and non-technical Business partners.
• Working knowledge of Microsoft Office suite for developing presentation decks, design documentation, drawings, and reports.
• Expertise in either: Windows/Unix/Linux Databases (including MS SQL, Oracle, MongoDB) or Storage (SAN, NAS).
• Experience with Cryptography as it applies to Cloud Solutions in Highly Virtualized Environments.
• Strong verbal and written communications skills are essential for this role.
• An industry recognizable IS Security certification (e.g. CISSP).
• Working knowledge of Mainframe cryptography and Mainframe HSM is a Plus.
• Experience with data protection against Ransomware is a Plus.
• Employment experience in Financial industry is a Plus.

Job Requirements

This role plays a critical role for the Crypto Organization in the analysis, proposal, conceptual design of solutions and automation for security infrastructure and tools. This includes producing solution documentation, interacting with Enterprise Architecture and Engineering teams, multiple lines of Business, Infrastructure teams, Application Development, Support, Vendors and Service Providers. The successful candidate must demonstrate an exceptional record of competence and a strong ability to communicate with other engineers, technology, and business partners.

  

Job Requirements include:

• Acting as a key contributor to developing solution structure and framework for cryptographic protection of data in complex environments.
• Selecting and assessing security tools and solutions that best meet the stated Security needs.
• Developing and documenting design patterns for adoption by our engineering partners.
• Contribute input into and lead development of solution documentation, System Requirements, Cryptography and Data Protection Policies, Procedures, Standards and Guides.
• Producing technical and analysis documentation, reports, and summaries.
• Creating high level and technical level presentations and presenting to technical and non-technical audiences and Senior Management.
• Knowledge of the Regulatory and Compliance landscape pertaining to the Financial Industry.
• Solid analytical, reasoning, organizational and time management skills.
• Ability to establish and maintain effective working relationships with all levels of personnel both internally and externally; e.g., Senior Management, peers, clients, and vendors.
• Ability to work in a fast-paced environment and manage multiple deadlines and priorities.
• Adapt to new different or changing requirements, quickly grasp new concepts, and reflect on lessons learned. Define problem/challenge, identify alternatives, and make timely decisions.
• Work closely & collaboratively with Internal Engineering, Deployment & Operations teams to drive design adoption across IT.
• Attention to details and follow through.
• Ability to make engineering design decisions, solve problems related to cryptographic principles.
• Align with the Department strategies and delivering superior results in short and long terms.
• Provide subject matter expertise consulting service to our Business partners.
• Manage communications and activities with 3rd party solution and service providers.
• Plan, schedule, run and manage working meetings and produce meeting minutes.

Who We Are:

TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.

TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you’ve got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we’re here to support you towards your goals. As an organization, we keep growing – and so will you.

Our Total Rewards Package
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals. Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs. Learn more

Additional Information:
We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we’re committed to providing the support our colleagues need to thrive both at work and at home.

Colleague Development
If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.
 

Training & Onboarding
We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Interview Process 
We’ll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.

Accommodation
Your accessibility is important to us. Please let us know if you’d like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process.

We look forward to hearing from you!

Language Requirement:

N/A.