Information Technology Security Manager

I T Security Manager, FT Perm positionNumber of Positions: 2Location: Toronto,ON,CAMust be eligible to work in CanadaHybrid position for now, 4d/w onsite; fully onsite as of the New YearRole#1 IT Security Manager - Customer Authentication ControlRoles and responsibilities:1. Stay Updated on Cybersecurity Trends: Continuously monitor the evolving landscape of cyber threats, fraud schemes, and industry best practices.2. Manage Authentication Tools: Oversee the implementation and maintenance of authentication tools and processes to ensure secure access to systems and data.3. Policy Lifecycle Management: Develop, implement, and maintain comprehensive cybersecurity policies and procedures.4. Vendor Collaboration and Oversight: Collaborate with vendors to ensure compliance with security standards and conduct regular security assessments.5. Handle Audit and Regulatory Requests: Respond to audits and regulatory inquiries, providing necessary documentation and evidence.6. Documentation and Reporting: Create clear and concise documentation for security policies, procedures, and incident response plans.7. Data Analysis: Utilize Excel and PowerPoint to analyze data, identify trends, and generate insightful reports.8. Effective Communication: Communicate complex security concepts to technical and non-technical audiences, both internally and externally.9. Risk Assessment and Mitigation: Identify, assess, and mitigate security risks through regular vulnerability assessments and penetration testing.10. Incident Response: Participate in incident response activities, including investigation, containment, and remediation.Must have skills/ experience/qualifications: Bachelor's degree in engineering, Information Security, or a related field. 10+ years of experience in cybersecurity, with a focus on identity and access management. Strong understanding of authentication protocols (e.g., OAuth, SAML, OpenID Connect). Experience with authentication tools like ThreatMetrix, BioCatch, Document Verification Services etc. is a plus. Knowledge of industry standards and regulations related to identity and access management. Strong analytical and problem-solving skills.Role #2 IT Security Manager Monitoring and Investigation Roles and responsibilities:Focuse s on strengthening our fraud detection, authentication, and CIAM (Customer Identity and Access Management) capabilities. This role will lead the expansion of our monitoring and alerting footprint across enterprise platforms, ensuring control effectiveness, regulatory alignment, and rapid incident response in a complex financial environment.- Lead the design and deployment of monitoring and alerting strategies using Splunk, Datadog, Dynatrace, and Databricks across TD’s digital ecosystem- Define alert thresholds and tuning logic to minimize false positives while maintaining high sensitivity to fraud and access anomalies- Oversee triage workflows for triggered alerts, coordinating with global teams to ensure timely investigation and resolution- Develop governance frameworks for alert lifecycle management, including setup, ownership, escalation, and audit readiness- Monitor control effectiveness across CIAM, authentication, and fraud domains, driving continuous improvement- Collaborate with fraud and cybersecurity teams to support incident investigations and mitigation strategies- Analyze alert trends and performance metrics to inform strategic improvements and risk prioritization- Champion automation and workflow optimization for alert handling, reporting, and compliance documentation- Ensure alignment with TD’s enterprise risk management and regulatory obligations (e.g., OSFI, OCC)- Provide mentorship and leadership within the security monitoring team, fostering a culture of accountability and innovationMust have skills/ experience/qualifications:- 10+ years of experience in information security, CIAM/fraud detection, or observability engineering within financial services- Hands-on expertise with Splunk, Datadog, Dynatrace, and Databricks for alert creation, analytics, and dashboarding- Strong understanding of CIAM, authentication protocols, and fraud risk indicators in regulated environments- Experience designing governance frameworks and control monitoring programs aligned with financial compliance standards- Proven ability to lead cross-functional teams and drive incident response processes across geographies- Excellent communication and documentation skills, with a strategic mindset and attention to regulatory detailMust have FT Perm experience, long term employment historyMust send a word format resume