08/30/2026

Address:

100 King Street West

Technology

Why Join BMO’s Threat Response Operations Team?

Join a highly regarded Incident Response team responsible for protecting BMO against evolving cyber threats. As an Incident Response Specialist, you’ll investigate and respond to complex Level 2 cybersecurity incidents while working alongside experienced professionals across Threat Intelligence, Detection, Incident Management, and GSOC teams.  In this role, you’ll investigate escalated cyber incidents, produce high-quality incident documentation, collaborate across security teams, and contribute to operational readiness and continuous improvement efforts.

This is an excellent opportunity for cybersecurity professionals looking to deepen their expertise in incident response, and enterprise threat operations within a collaborative and high-impact environment.

What Makes This Opportunity Stand Out

• Be part of a mature and advanced cyber incident response program within a leading financial institution

• Work on real-world investigations involving threat containment, mitigation, and forensic analysis

• Gain exposure to enterprise-scale cybersecurity operations and advanced EDR tooling

• Contribute to continuous improvement initiatives that strengthen BMO’s security capabilities

• Hybrid model with office flexibility across our offices in downtown Toronto, Scarborough, or our Barrie office.

KEY Technical Skills:

• Security Operations / Incident Response experience —3–4 years.

• Breach-class incident response investigation —3–4 years.

• Digital forensics / forensic analysis —2–3 years.

• Incident response using EDR tooling  (endpoint detection monitoring tools)—3–4 years.

• Developing and assessing operational process documentation —3–4 years

• Live response analysis and development of host activity timelines —3–4 years.

• Incident response reporting —2–3 years.

Core Responsibilities:

• Monitors, restores service, changes, supports and handles day-to-day activities 7/24/365 required to run the mission critical Information Security systems for BMO.

• Provides responsive customer service in support of cyber security.

• Monitors & maintains security tools and applications.

• Collaborates with internal and external stakeholders in order to deliver on business objectives and to support operational activities for Information Security.

• Identifies opportunities to strengthen the capability of the Information Security organization at BMO, such as: sharing expertise to promote technical development and mentoring employees.

• Recommends approaches or changes to streamline and integrates security processes and systems in the organization, while considering Information Security methodology to improve overall efficiency.

Additional Information:

• Builds effective relationships with internal/external stakeholders.
• Anticipates and reduces complexity for others.
• Provides input into the planning and implementation of operational programs.
• Develops and documents procedures and processes, conforming to the industry best practices and Bank’s security regulations, policies and standards.
• Assists in the preparation of end user materials.
• Gathers and documents requirements for use in various audits, reports, & projects.
• Creates activity reports for security tools and applications.
• Develops an understanding of organizational interactions and complexity to engage with the appropriate matrix areas.
• Actions service requests, transactions, queries etc. within relevant service level agreements.
• Coordinates and facilitates incident management activities. Includes deploying changes to the production environment and engaging 2rd party providers contracted to the Bank during an incident.
• Provides technical Information Security subject matter expertise.
• Stays abreast of industry technical and business trends through participation in professional associations, practice communities and individual learning.
• Ensures consistent, high quality practices/work and the achievement of business results in alignment with business/group strategies and with productivity goals.
• Focus is primarily on business/group within BMO; may have broader, enterprise-wide focus.
• Exercises judgment to identify, diagnose, and solve problems within given rules.
• Works independently on a range of complex tasks, which may include unique situations.
• Broader work or accountabilities may be assigned as needed.
• Take measured risks while protecting the bank by applying our Risk Management Framework in the execution of your role, in line with our Risk Culture and within our approved Risk Appetite, making sound and risk informed decisions that align to business strategy, protect assets, and adhere to applicable policy documents (Frameworks, Policies, Standards, Procedures and Supporting documents), laws and regulations.

  Qualifications:

• Typically between 2 - 4 years of relevant experience and post-secondary degree in Business or Computer Science, or a related field of study or an equivalent combination of formal training, or industry / technical certifications or work experience.
• Preference for candidates who have or are pursuing at least one certification in a related field, with strong preference for Information Security certifications from a well-recognized institution (e.g. (ISC)2, ISACA, SANS).
• Experience in Information Security or with multiple areas of systems and computer operations (e.g. Identity & Access Management, IT operations, Certification & Key Management, Security Platform Administration, Security Incident Response).
• Understanding and problem solving ability of information security issues within their business group - In-depth.
• Partnering, communication, and negotiation skills to communicate effectively within the team and with technology and business partners - Working.
• Understands the scope of complexity that exists in the operating environment and the ways which security platforms impact that environment.
• Knowledge of Information Security support and operations concepts, practices, concepts, and technology obtained through formal training and work experience.
• Knowledge of Information Security processes, procedures and controls - In-depth.
• Knowledge of the technical and business environment and the corporate processes and procedures - In-depth.
• Technical proficiency gained through education and/or business experience.
• Verbal & written communication skills - In-depth.
• Collaboration & team skills - In-depth.
• Analytical and problem solving skills - In-depth.
• Influence skills - In-depth.
• Data driven decision making - In-depth.

$67,200.00 - $124,200.00

Salaried

The above represents BMO Financial Group’s pay range and type.

Salaries will vary based on factors such as location, skills, experience, education, and qualifications for the role, and may include a commission structure. Salaries for part-time roles will be pro-rated based on number of hours regularly worked. For commission roles, the salary listed above represents BMO Financial Group’s expected target for the first year in this position.

BMO Financial Group’s total compensation package will vary based on the pay type of the position and may include performance-based incentives, discretionary bonuses, as well as other perks and rewards. BMO also offers health insurance, tuition reimbursement, accident and life insurance, and retirement savings plans. To view more details of our benefits, please visit: https://jobs.bmo.com/global/en/Total-Rewards

About Us

At BMO we are driven by a shared Purpose: Boldly Grow the Good in business and life. It calls on us to create lasting, positive change for our customers, our communities and our people. By working together, innovating and pushing boundaries, we transform lives and businesses, and power economic growth around the world.

As a member of the BMO team you are valued, respected and heard, and you have more ways to grow and make an impact. We strive to help you make an impact from day one – for yourself and our customers. We’ll support you with the tools and resources you need to reach new milestones, as you help our customers reach theirs. From in-depth training and coaching, to manager support and network-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.

To find out more visit us at https://jobs.bmo.com/ca/en.

BMO is committed to an inclusive, equitable and accessible workplace. By learning from each other’s differences, we gain strength through our people and our perspectives. Accommodations are available on request for candidates taking part in all aspects of the selection process. To request accommodation, please contact your recruiter.

Note to Recruiters: BMO does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to BMO, directly or indirectly, will be considered BMO property. BMO will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for service to submit resumes.