178 Data Compliance jobs in Singapore
QA Analyst (Data & Compliance)
Posted 9 days ago
Job Viewed
Job Description
Location: Remote, Singapore
Classification: Full-time
Company Overview
Pixalate is an online trust and safety platform that protects businesses, consumers and children from deceptive, fraudulent and non-compliant mobile, CTV apps and websites. Our software and data have been used to unearth multiple high profile criminal and illegal surveillance cases including:
- UNICEF: Pixalate was recently recognized by UNICEF as a Key Innovator for protecting children’s online privacy. & UNICEF Global Compliance Tech case study
- Gizmodo: An iCloud Feature Is Enabling a $65 Million Scam, New Research Says
- Adweek: A 7-Figure Ad Fraud Scheme Running on Roku Underlines Murkiness of CTV
- Washington Post: Your kids’ apps are spying on them
- Pro Publica: Porn, Piracy, Fraud: What Lurks Inside Google’s Black Box Ad Empire
- ABC7 News: The State of Children's Privacy Online
- NBC News: How many apps are tracking your children
At Pixalate, we are building technology products for a trustworthy, clean and safe supply chain for Connected TV, Mobile and Web advertising. Our team of lawyers, data scientists, engineers, economists and researchers span globally with presence in California, New York, Washington DC, London and Singapore.
Our software has transformed how the advertising industry approaches quality and safety through our ratings, risk assessment, compliance, and fraud prevention technology. Now, we’re looking for a QA Analyst who lives and breathes data integrity, thrives on complex datasets, and wants to ensure our products set the industry standard for quality and reliability.
Role Overview
In this role, you won’t just “test software” - you’ll safeguard the trustworthiness of our data pipelines, analytics, and ML models that power multi-million-dollar business decisions and compliance workflows. You’ll work closely with data engineers, data scientists, and product teams to build rigorous QA frameworks that validate everything from ETL pipelines to automated UI flows.
You’ll have autonomy, high visibility, and the chance to influence product quality across the organization.
Key Responsibilities
- Own end-to-end QA for data-driven features, from raw ingestion through analytics layers and UI presentation.
- Develop and execute comprehensive test plans for high-volume, high-velocity datasets — ensuring accuracy, and completeness.
- Partner with engineering & data science teams to validate ETL logic, transformation rules, and ML training datasets.
- Build automated data validation scripts using SQL/BigQuery queries and integrate them into CI/CD pipelines.
- Implement and maintain automated UI testing using tools like Selenium, Appium, Playwright, or similar.
- Proactively identify data integrity issues and prevent them from reaching production
- Establish QA best practices for data-centric applications and mentor other QA team members.
- Champion data quality metrics as a core part of product health.
Skills and Qualifications
- 3+ years in QA, with a strong focus on data testing and UI automation (ad tech or analytics product experience is a plus).
- Proficiency in SQL or BigQuery Standard SQL for data validation and back-end testing
- Experience validating large-scale datasets, ETL pipelines, or BI dashboards.
- Familiarity with ML model workflows and techniques for QA’ing training data.
- Strong understanding of QA methodologies and automation frameworks.
- Sharp analytical mindset with obsessive attention to detail.
- Excellent communication skills — able to explain complex data issues to non-technical stakeholders.
Why You'll Love Working with Pixalate
At Pixalate, we offer a competitive salary, outstanding benefits, and a dynamic work environment. You will have the opportunity to work on pioneering technologies alongside some of the brightest minds in the industry. If you're passionate about maintaining high software quality and thrive in a fast-paced, challenging environment, you'll fit right in.
Benefits
- Monthly internet reimbursement
- Casual, remote work environment
- Hybrid, flexible hours
- Opportunity for advancement
- Fun annual team events
- Being part of a high performing team that wants to win and have fun doing it
- Extremely competitive compensation
Senior Data Security Compliance Specialist, Information Security
Posted today
Job Viewed
Job Description
Location:
Singapore
Team:
Security
Employment Type:
Regular
Job Code:
A A
Responsibilities
About the Team
The team is responsible for managing and mitigating information security risks posed within the organisation. To ensure that the company's risk management and governance strategies are up to date and aligned across the organisation, this team is responsible for working with stakeholders from cross-functional teams to perform regular risk assessments, designing and implementing risk mitigation controls. This team is also responsible for managing the optimization, operation, training, and data analysis of the internal threat platform and UEBA (User and Entity Behavior Analytics) and DLP (Data Loss Prevention) platforms within the company.
Responsibilities
- Conduct periodic data security assessments to evaluate the efficacy of existing protective measures and identify areas for enhancement. Perform comprehensive reviews of all data processing activities (e.g., data collection, storage, transmission) to identify potential security vulnerabilities and formulate risk mitigation strategies.
- Design, implement, and maintain robust data security solutions, including data classification frameworks, data loss prevention (DLP) systems, and access control mechanisms. Utilize Security information and event management (SIEM) tools to monitor for real-time security threats and anomalies, ensuring prompt identification of potential risks.
- Conduct thorough root-cause analyses of security incidents, maintain detailed documentation of investigation processes, and develop actionable recommendations to prevent recurrence.
- Establish key performance indicators (KPIs) to monitor and ensure adherence to established security policies and industry standards. Develop pragmatic solutions to address identified security risks and fulfill compliance requirements.
- Research emerging data security technologies and industry trends (e.g., AI-driven threat detection) to recommend innovative protective solutions that enhance organizational security posture.
Qualifications
Minimum Qualifications
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
- Minimum of 5 years of hands-on experience in data security, with a demonstrated focus on implementing and managing data protection solutions.
- Proficiency in programming languages (Python, SQL) and scripting tools for security automation and data analysis. Strong analytical capabilities to interpret security logs and identify latent threats.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively across cross-functional teams and deliver clear, concise training materials.
Preferred Qualifications
- Proven experience in deploying and administering DLP tools and encryption technologies, with a comprehensive understanding of their operational implementation.
- Professional certifications such as CISSP, CISA, or CRISC are highly desirable.
Job Information
About Us
Founded in 2012, ByteDance's mission is to inspire creativity and enrich life. With a suite of more than a dozen products, including TikTok, Lemon8, CapCut and Pico as well as platforms specific to the China market, including Toutiao, Douyin, and Xigua, ByteDance has made it easier and more fun for people to connect with, consume, and create content.
Why Join ByteDance
Inspiring creativity is at the core of ByteDance's mission. Our innovative products are built to help people authentically express themselves, discover and connect – and our global, diverse teams make that possible. Together, we create value for our communities, inspire creativity and enrich life - a mission we work towards every day.
As ByteDancers, we strive to do great things with great people. We lead with curiosity, humility, and a desire to make impact in a rapidly growing tech company. By constantly iterating and fostering an "Always Day 1" mindset, we achieve meaningful breakthroughs for ourselves, our Company, and our users. When we create and grow together, the possibilities are limitless. Join us.
Diversity & Inclusion
ByteDance is committed to creating an inclusive space where employees are valued for their skills, experiences, and unique perspectives. Our platform connects people from across the globe and so does our workplace. At ByteDance, our mission is to inspire creativity and enrich life. To achieve that goal, we are committed to celebrating our diverse voices and to creating an environment that reflects the many communities we reach. We are passionate about this and hope you are too.
Data & Security Compliance Intern
Posted today
Job Viewed
Job Description
Company
Univers. Pte. Ltd.
Designation
Data & Security Compliance Intern
Date Listed
19 Aug 2025
Job Type
Entry Level / Junior Executive
Intern/TS
Job Period
From Jan 2026, For At Least 6 Months
Profession
IT / Information Technology
Industry
Computer and IT
Location Name
HarbourFront Avenue, Keppel Bay Tower, Singapore
Address
1 HarbourFront Ave, Singapore
Map
Allowance / Remuneration
$1,800 monthly
Company Profile
About Univers
Univers provides the world's most comprehensive decarbonization system.
We help companies and countries optimize energy systems and reduce carbon emissions with accurate, reliable, and actionable decarbonization data. Our EnOS (Energy and Environment Operating System) platform connects on-the-ground operational technology and in-the-cloud intelligence to deliver real-time energy data and data-driven carbon monitoring, reporting, and abatement.
With 220 million sensors and smart devices connected, 550GW of renewable energy under management, and a community of over 500 customers, we're helping the world's leading businesses get the world to net zero—and what comes after it.
For more information, please visit
Job Description
About the role
We are looking for a motivated and detail-oriented Data & Security Compliance Intern to support the implementation of the OneTrust Governance platform, and Third-Party and Internal Audits over the course of 6 months. You will gain hands-on experience in privacy and compliance operations, OneTrust system configuration and on-site standards and certification audits. A key part of your role will involve assisting with document migration and building and testing workflows within OneTrust to help automate core governance processes and coordinate the collection of audit evidence during external and internal audits.
Key Responsibilities
Assist in the migration of privacy and compliance documents (e.g., data inventories, vendor assessments, policies) from spreadsheets and legacy tools into OneTrust.
Help with building, configuring, and testing workflows in OneTrust to support operational privacy processes (e.g., DPIAs, RoPAs, third-party risk assessments).
Collaborate with teams to review and validate data entered into OneTrust.
Participate in user acceptance testing (UAT) and collect feedback on workflow functionality and usability.
Support the coordination of third-party audits, including:
Liaising with internal stakeholders (e.g., Legal, IT, HR) to collect and organize evidence required for compliance audits or assessments.
Tracking evidence submission status and maintaining organized documentation.
Document implementation progress, configuration notes, and lessons learned for future reference.
Attend project meetings and contribute status updates and insights.
Learning Outcomes
By the end of the internship, you will have:
- Hands-on experience with OneTrust platform setup, configuration, and workflow testing.
- Exposure to audit readiness activities, including evidence management and stakeholder coordination.
- Understanding of how organizations manage data privacy and compliance through digital tools.
- Developed practical skills in documentation, communication, and process coordination.
Prerequisite Skills & Qualifications
Education:
Currently pursuing a Bachelor's or Master's degree in Information Technology, Computer Science, Law, Data Science, Cybersecurity, or related field.
Core Skills:
Comfortable using digital tools and platforms (e.g., Microsoft Office, M365, SaaS applications).
Quick to learn and adapt to new software applications or systems.
Detail-oriented and organized in working with documents, forms, and structured data.
Basic understanding of concepts like data privacy, risk, or compliance is helpful but not required.
Strong written and verbal communication skills.
Ability to work independently and manage tasks proactively.
Nice-to-Have (Not Required):
- Exposure to OneTrust or other GRC/privacy platforms.
- Experience working with automation tools, or low-code/no-code systems.
Application Instructions
Please apply for this position by submitting your text CV using InternSG.
Kindly note that only shortlisted candidates will be notified.
Open to Full-time Internship Only, with at least 6 months commitment
Please also indicate your period of availability
• Your exact period of availability? (Exact Start and End Date)
• Is this internship credit bearing and counting towards graduation requirements?
• Are you a full-time student?
• Do you require a work pass or visa?
Apply for this position
Information Security
Posted today
Job Viewed
Job Description
Internship
Summary
Provide better appreciation and experiential learning in Cybersecurity defence in terms of concepts, architecture, technologies, tools, and operations.
Job Description
Responsibilities:
Application Security
Research web and mobile application security best practices
Research into the latest IAM technologies and propose enhancements to existing SIA infrastructure
Assist in tracking and resolving penetration test and threat modelling findings
Perform internal security testing using Burp Suite and Kali Linux, etc.
Security Compliance
Work closely with various IT teams to identify, assess and manage information security risks
Assist to coordinate with application and various IT teams on various compliance controls.
Perform proactive threat analysis from network traffic, user and security logs, and other relevant security data to hunt for potential adversary activity.
MAS Technology Risk Management Guidelines
-Assist to collect and compile security related statistics, assess the information and prepare management reports.
- Assist in conducting regular phishing campaigns and compile the results for analysis.
Risk Management
- Assess and enforce the security controls of IT projects
Projects
Assist in the Cyber and Information Security project requirement gathering, procurement and implementations.
Assist the project manager and liaise with vendor
Provide internal support during the implementation
Requirements:
Pursuing a degree with specialization in Information Security
Interest in cyber security
Good trouble-shooting and analytical skills
Independent and resourceful
Good interpersonal skills
Information Security
Posted today
Job Viewed
Job Description
Summary
Provide better appreciation and experiential learning in Cybersecurity defence in terms of concepts, architecture, technologies, tools, and operations.
Job Description
Responsibilities:
Application Security
- Research web and mobile application security best practices
- Research into the latest IAM technologies and propose enhancements to existing SIA infrastructure
- Assist in tracking and resolving penetration test and threat modelling findings
- Perform internal security testing using Burp Suite and Kali Linux, etc.
Security Compliance
- Work closely with various IT teams to identify, assess and manage information security risks
- Assist to coordinate with application and various IT teams on various compliance controls.
- Perform proactive threat analysis from network traffic, user and security logs, and other relevant security data to hunt for potential adversary activity.
MAS Technology Risk Management Guidelines
- Assist to collect and compile security related statistics, assess the information and prepare management reports.
- Assist in conducting regular phishing campaigns and compile the results for analysis.
Risk Management
- Assess and enforce the security controls of IT projects
Projects
- Assist in the Cyber and Information Security project requirement gathering, procurement and implementations.
- Assist the project manager and liaise with vendor
- Provide internal support during the implementation
Requirements
- Pursuing a degree with specialization in Information Security
- Interest in cyber security
- Good trouble-shooting and analytical skills
- Independent and resourceful
- Good interpersonal skills
Information Security
Posted today
Job Viewed
Job Description
Job Objectives
The Security Governance Specialist role will support the Head of Security Governance in enhancing and maintaining the Security Governance within the Group Information Security(GIS) function in the Bank.
Key Responsibilities
This position will support senior Security Governance team members and work closely with various business, risk and technology stakeholders to:
Proactively assess the compliance exposure to current and emerging security-related regulatory requirements and plan & track remediation efforts.
Manage reverse third-party due diligence engagements related to GIS.
Manage audit, assurance and regulatory engagements related to GIS including ongoing knowledge management on queries and request for information.
Track and report against the technology KORI(Key Operational Risk Indicators)/KRIs and required security metrics.
Execution of the GIS KRCSA (Key Risk and Control Self Assessments).
Management policy, procedures and standards updates and control.
Manage various GIS initiatives and duties as assigned.
Key Requirements
Communicate effectively with a variety of internal and external teams and stakeholders.
Capable of managing a variety of priorities and deliverables with minimal guidance or supervision.
Ability to respond to any requests and issues on a timely basis.
Education
Diploma/Degree in engineering/Computer Science / IT/Cyber Security from a recognized education institution.
Professional Technology Risk Management/Cybersecurity related qualification will be favorable although not mandatory.
Knowledge of industry best practices.
Technical Skills
Overall experience 5+ years of experience.
2+ years of relevant experience in Security/IT governance disciplines.
Have a strong security risk and analytical mindset in approaching situations and interactions with stakeholders.
Effective negotiating skills and demonstrated sensitivity to working and interacting with stakeholders.
Good knowledge of Security concepts and practices.
Good knowledge of Security related guidelines and advisories from regulators.
Good with numbers for use in metrics.
Soft Skills
Good written and verbal communication skills and expertise in setting and managing stakeholder expectations.
Process aware mindset.
Strong analytical and problem-solving skills.
Effective time management and organizational skills.
Strong team player.
Able to work independently with minimal supervision.
High degree of attention to detail and discipline on tracking and managing the closure of identified gaps and issues.
Willing to learn quickly.
Information Security
Posted today
Job Viewed
Job Description
Job Objectives
The Security Governance Specialist role will support the Head of Security Governance in enhancing and maintaining the Security Governance within the Group Information Security(GIS) function in the Bank.
Key Responsibilities
This position will support senior Security Governance team members and work closely with various business, risk and technology stakeholders to:
• Proactively assess the compliance exposure to current and emerging security-related regulatory requirements and plan & track remediation efforts.
• Manage reverse third-party due diligence engagements related to GIS.
• Manage audit, assurance and regulatory engagements related to GIS including ongoing knowledge management on queries and request for information.
• Track and report against the technology KORI(Key Operational Risk Indicators)/KRIs and required security metrics.
• Execution of the GIS KRCSA (Key Risk and Control Self Assessments).
• Management policy, procedures and standards updates and control.
• Manage various GIS initiatives and duties as assigned.
Key Requirements
• Communicate effectively with a variety of internal and external teams and stakeholders.
• Capable of managing a variety of priorities and deliverables with minimal guidance or supervision.
• Ability to respond to any requests and issues on a timely basis.
Education
• Diploma/Degree in engineering/Computer Science / IT/Cyber Security from a recognized education institution.
• Professional Technology Risk Management/Cybersecurity related qualification will be favorable although not mandatory.
• Knowledge of industry best practices.
Technical Skills
• Overall experience 5+ years of experience.
• 2+ years of relevant experience in Security/IT governance disciplines.
• Have a strong security risk and analytical mindset in approaching situations and interactions with stakeholders.
• Effective negotiating skills and demonstrated sensitivity to working and interacting with stakeholders.
• Good knowledge of Security concepts and practices.
• Good knowledge of Security related guidelines and advisories from regulators.
• Good with numbers for use in metrics.
Soft Skills
• Good written and verbal communication skills and expertise in setting and managing stakeholder expectations.
• Process aware mindset.
• Strong analytical and problem-solving skills.
• Effective time management and organizational skills.
• Strong team player.
• Able to work independently with minimal supervision.
• High degree of attention to detail and discipline on tracking and managing the closure of identified gaps and issues.
• Willing to learn quickly.
IT Security Policies
Information Security
Security Architecture
Information Security Policies
Information Security Policy
Security Governance
Application Security
Due Diligence
Cyber Security
Information Security Governance
IT Governance
Knowledge Management
Assurance
IT Security Assessments
Operational Risk
CISA
Regulatory Requirements
IT Security Best Practices
Audit
CISSP
Be The First To Know
About the latest Data compliance Jobs in Singapore !
Information Security
Posted today
Job Viewed
Job Description
Location: CBD, Singapore
Type: 1-year contract (with possible extension)
This is a leadership n Hands on role — you'll help set the strategy, make big decisions on security, and lead responses if anything goes wrong
You are tasked with keeping the company's IT systems and data secure.
This includes making sure there are strong security policies, protecting against cyber threats, and helping the company meet regulations.
You'll work closely with top management and teams across the company to manage risks and improve cybersecurity.
When need arises. you will need to hands on to solve the problems
.
Job scope:
Leadership
- Set and lead the company's overall IT security plan.
- Advise top leaders on cybersecurity matters.
- Create security rules and make sure everyone follows them.
- Help other departments understand and support security goals
Operations
- Manage the IT security budget carefully.
- Track performance — like system downtime, incident handling speed, and vendor performance.
- Make business cases to justify investments in security tools or projects.
Cybersecurity Incident Handling
- Keep improving systems to detect and prevent cyberattacks.(Leadership and Hands on)
- Monitor for threats and respond quickly if there's a breach.(Leadership and Hands on)
Compliance
- Identify and manage cybersecurity risks (including third-party/vendor risks).
- Ensure the company follows laws and industry standards (like MAS TRM, ISO 27001).
- Regularly check and report on security risks and how they're being handled.
Requirement
- A degree in Computer Science, IT with Certification :CISSP, CISM, CISA, CRISC, or CCSP.
- 5 years in IT Security n 3years in a leadership role like IT Security Manager or CISO.
Added advantage:
Finance or insurance domain.
Other Skills
- Strong knowledge of cybersecurity laws, risks, and standards.
- Ability to explain technical issues to non-technical people.
- Good leadership and teamwork skills.
- Experience with budgeting and running IT security projects.
What You'll Be Measured On:
- Annual cybersecurity strategy report
- Quarterly risk reports and dashboards
- Performance metrics (e.g: incident handling, cost efficiency)
- Budget usage and cost tracking
- Regular reviews of IT security performance and vendor quality
Work location :CBD
Whats on offer
(1) Attractive package
(2) Stable Management
(3) Dynamic work environment.
For better response, pls apply via job page
click job opening, click relevant position.
We regret that only shortlisted candidates will be notified.
Tell employers what skills you haveInformation Security
Leadership
Security Operations
Cyber Security
Investments
ISO
ISO 27001
Compliance
Budgeting
CISA
Network Security
CISSP
Information Security Engineer
Posted today
Job Viewed
Job Description
CyberArk Engineer
We are seeking a skilled and motivated CyberArk Engineer to join our growing security engineering team. In this role, you will be responsible for designing, implementing, and supporting privileged access management (PAM) solutions using CyberArk, ensuring the highest levels of security, compliance, and operational efficiency.
The ideal candidate will hold a CyberArk Certified Delivery Engineer (CDE) certification and have experience with Sentry (preferred). You will collaborate with cross-functional teams to protect sensitive data and critical systems from unauthorized access.
Key Responsibilities:
- Manage the onboarding and lifecycle of privileged accounts across various systems and environments.
- Implement CyberArk policies and security best practices to align with compliance and regulatory standards.
- Develop and maintain automation scripts and integrations with CyberArk using REST APIs, PowerShell, and other tools.
- Monitor and troubleshoot CyberArk infrastructure and user issues, providing escalation support as needed.
- Troubleshoot and remediate CyberArk Central Policy Manager (CPM) failures, including credential rotation errors, connectivity issues, and policy misconfigurations.
- Analyse CPM logs and error codes to identify root causes and implement durable solutions in collaboration with infrastructure and application teams.
- Perform health checks and tuning of CPM components to ensure stability and optimal performance.
- Basic understanding of custom CPM and PSM connectors for target platforms not natively supported by CyberArk.
- Work with application owners to gather requirements for new connectors, create integration documentation, and test connector functionality in pre-production environments.
- Leverage scripting (e.g., PowerShell, Python) to enhance connector behaviour and automate remediation tasks.
- Contribute to the connector certification process and maintain version control for custom components.
- Assist with audits, documentation, and reporting of privileged access activities.
- Work with IT, DevOps, and Security teams to integrate PAM solutions into existing workflows.
- Stay up to date with emerging threats, PAM trends, and CyberArk product updates.
Required Qualifications:
- CyberArk Certified Delivery Engineer (CDE) certification (must-have)
- 3+ years of experience implementing and supporting CyberArk solutions in enterprise environments
- Proficiency with CyberArk components and architecture
- Strong scripting skills (PowerShell, Python, etc.) and experience using CyberArk APIs
- Understanding of Identity and Access Management (IAM) concepts, Zero Trust, and least privilege
- Solid knowledge of Windows/Linux systems, Active Directory, and network security fundamentals
Preferred Qualifications:
- Experience or certification with Sentry
- CyberArk Defender or Guardian certification(s)
- Familiarity with cloud PAM implementations (AWS, Azure, GCP)
- Experience with SIEM tools and security monitoring
- Bachelor's degree in Computer Science, Information Security, or related field
Interested candidates may apply through the application system. We regret to inform only Shortlisted candidates will be notified.
By sending us your personal data and curriculum vitae (CV), you are deemed to consent to PERSOLKELLY Singapore Pte Ltd and its affiliates to collect, use and disclose your personal data for the purposes set out in the Privacy Policy available at You acknowledge that you have read, understood, and agree with the Privacy Policy.
PERSOLKELLY Singapore Pte Ltd
• RCB No E
• EA License No. 01C4394
• EA Registration No. R Derrick Tiew Yong Han)
This is in partnership with the Employment and Employability Institute Pte Ltd ("e2i").
e2i is the empowering network for workers and employers seeking employment and employability solutions. e2i serves as a bridge between workers and employers, connecting with workers to offer job security through job-matching, career guidance and skills upgrading services, and partnering employers to address their manpower needs through recruitment, training, and job redesign solutions. e2i is a tripartite initiative of the National Trades Union Congress set up to support nation-wide manpower and skills upgrading initiatives.
Information Security Specialist
Posted today
Job Viewed
Job Description
Work Location :
Singapore, Singapore
Hours:
40
Line of Business:
Technology Solutions
Pay Details:
We're committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.
Job Description:
Responsibilities:
- Conduct Penetration Tests: Perform thorough and methodical penetration testing on web applications, mobile, AI, network infrastructures, and other systems to identify security vulnerabilities.
- Vulnerability Assessment: Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture.
- Report Findings: Document and communicate findings clearly and effectively to both technical and non-technical stakeholders. Prepare comprehensive reports with recommendations for remediation.
- Develop and Execute Test Plans: Design and execute detailed test plans
- Stay Current: Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective.
- Collaborate with Teams: Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements.
- Perform Risk Assessments: Evaluate and assess potential security risks related to new and existing systems and technologies.
- Compliance: Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies.
Requirements:
- At least 8-10 years of relevant experience
- Technical Skills:
- Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali.
- Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles.
- Analytical Skills: Strong analytical and problem-solving abilities with attention to detail.
- Communication: Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders.
- Ethical Standards: Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards.
Preferred Qualifications:
- Experience with penetration testing in AI, cloud environments (e.g., AWS, Azure) and PCI testing.
- Familiarity with security standards and frameworks
- Certifications: Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable.
Who We Are
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing – and so will you.
Our Total Rewards Package
Our Total Rewards package reflects the investment we make in our colleagues to help them, and their families achieve their well-being goals. Total Rewards at TD includes a base salary and several other key plans such as health and well-being benefits, including medical coverage, paid time off, career development, and reward and recognition programs.
Additional Information:
We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.
Colleague Development
If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we're committed to helping you identify opportunities that support your goals.
Training & Onboarding
We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.
Interview Process
We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.
Accommodation
If you require an accommodation for the recruitment / interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.