136 Ethical Hacking jobs in Singapore

XTX Markets is a leading algorithmic trading firm which uses state-of-the-art machine learning technology to produce price forecasts for over 50,000 financial instruments across equities, fixed income, currencies, commodities and crypto. It uses those forecasts to trade on exchanges and alternative trading venues, and to offer differentiated liquidity directly to clients worldwide. The firm trades over $250bn a day across 35 countries and has over 250 employees based in London, Singapore, New York, Paris, Bristol, Mumbai, Yerevan and Kajaani.

We leverage the talent of the people who work here, modern computational techniques and state-of-the-art research infrastructure to analyse large data sets across markets quickly and efficiently, to maximize the effectiveness of our proprietary trading algorithms. We are actively seeking new methods and ideas. The models that drive our trading strategies have evolved considerably over the last 10 years, from econometric methods that gave our company its name, to trees, to neural networks, to modern deep learning architectures.

XTX Markets has an unrivalled level of computational resources in the trading industry, with a growing research cluster currently containing over 25,000 GPUs with 650 petabytes of usable storage. Teams across the firm include world-class researchers with backgrounds in pure math, programming, physics, computer science and machine learning. The firm is also constructing a large-scale data centre in Finland to future-proof its significant computational capabilities.

At XTX Markets technology is our business and we are a diverse organization which attracts outstanding talent from across all industry backgrounds. We are focused on teamwork and our people collaborate on all aspects of the business, working openly and with respect for each other, our clients and the market. Our culture is non-hierarchical and one where everyone is valued. We strive for excellence in everything we do.

The Team

The Information Security team at XTX Markets are accountable for all aspects of the firm’s physical and IT security. From obtaining and transforming events and signals into actionable intelligence to helping design and implement authentication/authorisation systems, alongside third-party risk assessment and global regulatory compliance. This role is based in our Singapore office, and you will work closely with the Risk and Information Security teams in our London HQ.

The Role

As our first Information Security Analyst, you’ll work to ensure that XTX Markets’ data and infrastructure meet – and, where appropriate, exceed – the requirements of global regulators and auditors.

You will:

• Develop and automate compliance workflows (detection, analysis, business justifications, evidence-gathering).
• Liaise with external auditors to resolve findings and document compensating controls.
• Manage third-party/vendor risk assessments and ongoing security reviews.

You’ll also have opportunities to contribute across the security function: improving our vulnerability-management program, enhancing our detection framework, and helping triage and respond to security alerts. You will actively collaborate with a range of stakeholders within the firm.

• 3+ years in Information Security, with a focus on audit/compliance.
• Programming/scripting skills (e.g. Python, PowerShell) particularly for automating repeatable tasks.
• Strong written and verbal communication skills.
• Rapid learner with outstanding attention to detail.
• Self-starter: able to work autonomously, prioritise tasks, and admit mistakes.
• Able to write clear, succinct business justifications and technical documentation.
• Hands-on proficiency with vulnerability management/compliance platforms (e.g. Tenable Nessus).
• Familiarity with Indian information-security regulations and audit practices (SEBI, NSE, etc.)
• An academic foundation in computer science or a related subject would be beneficial.

Seniority level

• Seniority level Associate

Employment type

• Employment type Full-time

Job function

• Job function Information Technology
• Industries Financial Services and Capital Markets

Referrals increase your chances of interviewing at XTX Markets by 2x

Get notified about new Information Security Analyst jobs in Singapore, Singapore .

Technology & Cyber Security Risk Analyst IT Compliance & Cybersecurity Analyst - Financial Service IT Compliance & Cybersecurity Analyst, Financial Service (Campus Recruitment 2025) (Senior) Cyber Security Consultant & Penetration Tester Offensive Security Engineer (Red Team) - Information Security Information Security Analyst / IT Support Engineer Information Technology - Cyber Security Lead Engineer Cyber Security Analyst - Intern #GeneralInternship Information Technology Security Engineer Security Incident Management Analyst - AVP - SINGAPORE

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

#J-18808-Ljbffr

XTX Markets is a leading algorithmic trading firm which uses state-of-the-art machine learning technology to produce price forecasts for over 50,000 financial instruments across equities, fixed income, currencies, commodities and crypto. It uses those forecasts to trade on exchanges and alternative trading venues, and to offer differentiated liquidity directly to clients worldwide. The firm trades over $250bn a day across 35 countries and has over 250 employees based in London, Singapore, New York, Paris, Bristol, Mumbai, Yerevan and Kajaani.

We leverage the talent of the people who work here, modern computational techniques and state-of-the-art research infrastructure to analyse large data sets across markets quickly and efficiently, to maximize the effectiveness of our proprietary trading algorithms. We are actively seeking new methods and ideas. The models that drive our trading strategies have evolved considerably over the last 10 years, from econometric methods that gave our company its name, to trees, to neural networks, to modern deep learning architectures.

XTX Markets has an unrivalled level of computational resources in the trading industry, with a growing research cluster currently containing over 25,000 GPUs with 650 petabytes of usable storage. Teams across the firm include world-class researchers with backgrounds in pure math, programming, physics, computer science and machine learning. The firm is also constructing a large-scale data centre in Finland to future-proof its significant computational capabilities.

At XTX Markets technology is our business and we are a diverse organization which attracts outstanding talent from across all industry backgrounds. We are focused on teamwork and our people collaborate on all aspects of the business, working openly and with respect for each other, our clients and the market. Our culture is non-hierarchical and one where everyone is valued. We strive for excellence in everything we do.

The Team

The Information Security team at XTX Markets are accountable for all aspects of the firm’s physical and IT security. From obtaining and transforming events and signals into actionable intelligence to helping design and implement authentication/authorisation systems, alongside third-party risk assessment and global regulatory compliance. This role is based in our Singapore office, and you will work closely with the Risk and Information Security teams in our London HQ.

The Role

As our first Information Security Analyst, you’ll work to ensure that XTX Markets’ data and infrastructure meet – and, where appropriate, exceed – the requirements of global regulators and auditors.

You will:

• Develop and automate compliance workflows (detection, analysis, business justifications, evidence-gathering).
• Liaise with external auditors to resolve findings and document compensating controls.
• Manage third-party/vendor risk assessments and ongoing security reviews.

You’ll also have opportunities to contribute across the security function: improving our vulnerability-management program, enhancing our detection framework, and helping triage and respond to security alerts. You will actively collaborate with a range of stakeholders within the firm.

• 3+ years in Information Security, with a focus on audit/compliance.
• Programming/scripting skills (e.g. Python, PowerShell) particularly for automating repeatable tasks.
• Strong written and verbal communication skills.
• Rapid learner with outstanding attention to detail.
• Self-starter: able to work autonomously, prioritise tasks, and admit mistakes.
• Able to write clear, succinct business justifications and technical documentation.
• Hands-on proficiency with vulnerability management/compliance platforms (e.g. Tenable Nessus).
• Familiarity with Indian information-security regulations and audit practices (SEBI, NSE, etc.)
• An academic foundation in computer science or a related subject would be beneficial.

Apply for this job

*

indicates a required field

First Name *

Last Name *

Preferred First Name

Email *

Phone

Resume/CV

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Website

Please indicate what right to work you have in Singapore. * Select.

#J-18808-Ljbffr

**Work Location** :
Singapore, Singapore
**Hours:**
40
**Line of Business:**
Technology Solutions
**Pay Details:**
We're committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.
**Job Description:**
**Job Role/Responsibilities**
The Information Security Analyst is responsible for tier 1/tier 2 triage, investigation, and incident response for Cyber security incidents.
+ Conduct Real-time analysis on identified cyber incidents currently impacting the bank's operations.
+ Analyze, triage and remediate security incidents internally and/or escalate to Cyber Security Incident Response team (CSIRT) for further investigation, treatment or support if needed.
+ Manage intake of incidents and reports from internal customers through internal ticketing system in a timely accurate manner in order to resolve a multitude of information security related situations.
+ The ability to identify and triage and remediate security incidents such as Malware, Phishing and Web Attacks is required.
+ The CSOC Security Analyst is responsible for supporting the event log monitoring, analysis needs of customers.
+ The personnel in this role will work as part of a cyber security operations team responsible for carrying out 24x7 on-site security monitoring operations. Operations which are carried out in Singapore shifts that run from 7am-3pm, 12pm-8pm or 7pm-7am on a rotating basis.
+ Accountable to respond to, investigate and remediate cyber threats to the bank. Escalate to internal and Cyber Security Incident Response team if required.
+ This job contributes to Technology and Operations through first line management and identifications of electronic threats to TDBG's infrastructure.
+ The Information Security Analyst will be responsible for managing information between multiple technical teams, the CSOC, CSIRT and ITS, LOB TS when appropriate.
**Job Requirements**
+ Min 3 years of Information Security Operations or similar working experience
+ Understanding of security controls/mechanisms and threat/risk assessment techniques pertaining to complex data, application and networking environments.
+ Excellent written and oral communication skills.
+ Organizational and self-directing skills - ability to initiate, coordinate and prioritize responsibilities and follow through on tasks to completion.
+ An approach to work that includes initiative, sound judgment, diplomacy and Discretion.
+ Ability to work independently on a variety of assignments with minimal supervision.
+ Ability to work without supervision with senior managers, supervisors, VIPs and Users.
+ Advanced knowledge of security incident and event management, log analysis, Network traffic analysis, Malware investigation and remediation, SIEM correlation logic and alert generation.
+ Ability to perform analysis and reporting on information from multiple data sources using data mining technique for the purpose of documenting analysis results, produce report and present to a technical and executive stakeholders.
+ Understanding of Security principles, techniques and technologies such as SANS Top 20 Critical Security Controls and OWASP Top 10.
+ A background with Cloud Security Monitoring is highly desired, preferably with Azure Security Center, Microsoft MCAS, AWS.
+ Basic programming skills in various disciplines including scripting languages.
+ Candidate should possess strong hands-on experience with traditional incidents response detection tools such as SIEM, EDR, XDR, Firewall, WAF, NIDS and equivalent.
+ Experience with Security Orchestration, Automation and Response tools (SOAR).
+ Demonstrate expert knowledge in Enterprise IT operations, incident management, change management, Access/Identity Management, Security Operations, vulnerability and compliance management, ticketing system, incident ticket life cycle and SLA terms
**Background and Education:**
+ Completion of a Bachelor's degree or equivalent program in Computer Science, Management Information Systems or similar field is required.
+ Completion of a Master's degree or equivalent program in Computer Science, Management Information Systems or similar field is preferred.
+ Preferably to have at least one of the following: GIAC (GSEC, GCIH, GCIA, GCFE, GCFA) CompTIA Security+ / CySA+, SC200, CISSP, CCSP
**Who We Are**
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you.
**Our Total Rewards Package**
Our Total Rewards package reflects the investment we make in our colleagues to help them, and their families achieve their well-being goals. Total Rewards at TD includes a base salary and several other key plans such as health and well-being benefits, including medical coverage, paid time off, career development, and reward and recognition programs.
**Additional Information:**
We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.
**Colleague Development**
If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals.
**Training & Onboarding**
We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.
**Interview Process**
We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.
**Accommodation**
If you require an accommodation for the recruitment / interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.
Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.

Description

Proficio is one of the fastest growing Managed Detection and Response (MDR) providers (formerly MSSP) in America, providing 24×7 security analysis and monitoring services to mid to large-sized enterprises. Our growth is being fueled by the rapid rise in cloud-based services, the acceptance of the Software-as-a-Service (SaaS) model, and the increasing number of cyber security attacks on businesses, hospitals and government. We have developed proprietary security content and threat intelligence tools to identify and proactively defend against advanced attacks and insider threats.

We are looking for top performers to join our exciting fast growing company to help address the most challenging security issues in the industry. If you are a serious security professional looking to catch the next wave, we should talk. As a Proficio SOC Analyst, you will be responsible for helping our customers to identify security threats, thwart hackers, and prevent data breaches. You will work with the industry’s leading SIEM technology to monitor security events, prioritize alerts, and investigate and remediate incidents.

Direct experience in a Security Operations Center (SOC) is ideal, but we are looking for people who can use their knowledge of security, analytical abilities, and strong communication skills to take on one of the most challenging roles in this exploding field. This is an opportunity to learn, contribute, and grow unlike few others in the IT industry today.

Roles and Responsibilities

· Event monitoring using a SIEM Console

· Watch active channels/dashboards and replay and interpret events

· Create annotations, reports and cases

· Investigate incidents using channels, event graphs, annotations, cases, and reports

· Recognize patterns or inconsistencies that could indicate complex cyber attacks

· Recommend improvements to service, efficiency and quality of work

· Develop and document appropriate troubleshooting techniques

· Demonstrate excellent communication and customer care skills

· Meet defined service level agreements regarding response time and customer notification

Requirements

· Undergraduate degree in a systems administration, networking, or technical field such as computer science or engineering, or equivalent work experience

· Experience as a SOC Analyst is preferred

· Experience with SIEM technology is preferred

· 4+ years of practical experience with security technologies like SIEM, firewalls, IDS/IPS, and vulnerability management

· Solid understanding of computer network fundamentals including address resolution protocol, routing, network address translation, virtual private networks, and the OSI model

· Ability to read and interpret network diagrams

· Excellent communication skills

· Ability to work in a dynamic and rapidly changing environment

Press Tab to Move to Skip to Content Link

Select how often (in days) to receive an alert:

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Operations Center (SOC) Analyst, you'll play a crucial part in maintaining, monitoring, and enhancing our IT security infrastructure. You'll be at the forefront of incident response, patch management, and system integrity, ensuring our digital assets remain secure and operational.

What will you do?

• Act as Incident first responder for a 24/7 staffed SOC.
• Monitor security sensors and review logs to identify network anomalies or intrusions.
• Perform initial analysis of security alerts.
• Escalate security incidents using established policies and procedures in a timely manner.
• Work with customers to analysis potential security incidents, identifying root cause and implement mitigation step(s)/ remedial action(s).
• Performing Response action based on standardize workflow and agreement with clients.
• Assist with the development of incident response plans, workflows, and SOPs.
• Provide threat and vulnerability analysis security advisory services.
• Fulfil Change Requests, Service Requests and respond to internal / external enquiries with regards to Incident Management.

The ideal candidate should possess:

• Professional security certifications such as GCIA will be an advantage.
• Experience in managing security alerts and identifying network intrusions
• Able to work well as a team and with different stakeholders

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

#J-18808-Ljbffr

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

#J-18808-Ljbffr

Select how often (in days) to receive an alert:

NCS is a leading technology services firm that operates across the Asia Pacific region in over 20 cities, providing consulting, digital services, technology solutions, and more. We believe in harnessing the power of technology to achieve extraordinary things, creating lasting value and impact for our communities, partners, and people. Our diverse workforce of 13,000 has delivered large-scale, mission-critical, and multi-platform projects for governments and enterprises in Singapore and the APAC region.

As a Security Analyst, this incumbent will perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise

What will you do?

• Perform initial analysis (e.g. analysing and reviewing alerts, eliminating false positives and determining severity of threats) to determine impact of compromise
• Conduct basic investigations of security events, including malware infections and unauthorized access attempts.
• Determine the nature, mechanisms and scope of incident by performing event correlation and historical searches to determine the extent of a security compromise
• Escalate complex or highly suspicious alerts for further investigation and response.
• Record details of all activities, including investigations performed, findings and remediation steps taken.
• Collects data, evidence, and context necessary for further escalation.
• Perform event correlation across the In-Scope Institutions to identify similar attack pattern and spread of attack.
• Handling case management, generating tickets and reports when required, and tracking open tickets until closure

The ideal candidate should possess:

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or related field.
• Able to commit to permanent night shifts
• Team player and able to work independently.
• Experience in analysing data and review alerts

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity —and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future .

Together, we make the extraordinary happen .

Learn more about us at ncs.co and visit our LinkedIn career site.

#J-18808-Ljbffr

**Work Location** :
Singapore, Singapore
**Hours:**
40
**Line of Business:**
Technology Solutions
**Pay Details:**
We're committed to providing fair and equitable compensation to all our colleagues. As a candidate, we encourage you to have an open dialogue with a member of our HR Team and ask compensation related questions, including pay details for this role.
**Job Description:**
**Key Position Objectives**
+ Mitigate the risk to TD through the assessment, control, and reporting of exceptions to the enterprise Vulnerability Management operational objectives.
+ Leverage data driven insights to identify and maintain a register of operational impediments to the VM Platform's operational objectives, subsequently planning, executing, and driving collaboration and resolution of thematic issues with applicable stakeholders.
+ Contribute to the direction of the enterprise VM Platform through the development of supporting vulnerability policies, frameworks, standards, control objectives, guidelines, and operational procedures.
+ Contribute to the enterprise Vulnerability Management strategy by facilitating ongoing centralized collaboration and enforcing accountability amongst key VM Platform function leads.
+ Support the integration of enterprise vulnerability management capabilities, including technology solutions, governance structures, and supporting processes.
+ Support the normalization of processes across the application & infrastructure vulnerability management portfolio.
+ Support the development of process documentation, guidance, and governance outputs related to vulnerability management operations.
+ Assist with the development of testing and data validation procedures for ServiceNow-delivered capabilities like risk scoring enhancements.
**Typical Daily Activities**
+ Vulnerability & patch exception analysis
+ Vulnerability standards, guidelines, process development
+ Monthly vulnerability risk scorecards
+ Design, coordination, & execution of vulnerability scenarios
+ Thematic deep dive tracking & analysis on operational vulnerability impediments
+ Internal & external stakeholder engagement (advisory & guidance)
+ Monitoring vulnerability regulatory and industry capability changes
**Job Requirements**
What can you bring to TD? Share your credentials, but your relevant experience and knowledge can be just as likely to get our attention. It helps if you have:
+ Strong familiarity with navigating & operating within enterprise size organizations.
+ Strong experience in developing and supporting IT risk governance practices.
+ Experience defining key security controls and control testing.
+ Familiarity & desire to cultivate knowledge related to vulnerability management operations in areas such as:
+ Vulnerability Intelligence,
+ Vulnerability Scanning,
+ Vulnerability Triage,
+ Vulnerability Remediation.
+ Excellent knowledge of cybersecurity industry control standards (e.g. NIST, ISO, CIS).
+ Demonstrated understanding of industry vulnerability management standards (e.g. NVD CVSS).
+ Familiarity & desire to cultivate knowledge related to:
+ Vulnerability scanning tools (e.g. Qualys, Tenable, Rapid7)
+ Networking, operating systems (e.g. Unix, Widows, zOS)
+ Database systems (e.g. Oracle, SQL Server, Sybase)
+ Working knowledge of ServiceNow Security Operations modules (e.g. Vulnerability Response, Application Vulnerability Response, Container Vulnerability Response).
+ Familiarity with reporting & data visualization methods and tools (e.g. ServiceNow Performance Analytics, MS PowerBI, Tableau).
+ Familiarity with various GRC platforms and alternative tracking methods (e.g. SharePoint, Confluence, JIRA).
+ Excellent project & time management skills.
+ 5 - 7 years' work experience in a mid-large size organization
+ 5 - 7 years' work experience in developing and supporting IT risk governance.
+ Cybersecurity/IT Risk related certifications (e.g. CRISC, CISSP, CISM)
**Who We Are**
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you.
**Our Total Rewards Package**
Our Total Rewards package reflects the investment we make in our colleagues to help them, and their families achieve their well-being goals. Total Rewards at TD includes a base salary and several other key plans such as health and well-being benefits, including medical coverage, paid time off, career development, and reward and recognition programs.
**Additional Information:**
We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.
**Colleague Development**
If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals.
**Training & Onboarding**
We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.
**Interview Process**
We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.
**Accommodation**
If you require an accommodation for the recruitment / interview process (including alternate formats of materials, or accessible meeting rooms or other accommodation), please let us know and we will work with you to meet your needs.
Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.

The Cyber Security Analyst is responsible for safeguarding the organization’s digital assets by identifying and mitigating potential security risks, monitoring network activity for unusual behaviour, and responding to incidents. This role requires a strong understanding of security best practices, hands-on experience with various security tools, and the ability to respond quickly and effectively to emerging threats.

A key focus of this role is on the effective management and optimization of the Security Information and Event Management (SIEM) system, ensuring it provides actionable intelligence for rapid threat response. This role will require strong analytical skills, good collaboration skills, detailed working knowledge of current and emerging security technologies, and the ability to correlate events to identify abnormal behaviour.

•

Responsible to ensure accurate and rapid response to security events

•

Analyze security logs, SIEM alerts, and incident reports to identify and mitigate risks.

•

Respond to and investigate security incidents, including breaches, malware outbreaks, and phishing attacks. Monitor networks and systems for security breaches, alerts, and anomalous activity.

•

Conduct root-cause analysis to prevent future incidents and develop incident response procedures.

•

Provide analysis and trending of security log data from various security devices

•

Configure and maintain SIEM tools to align with the organization’s security objectives and threat landscape.

•

Create custom SIEM dashboards and reports for different stakeholders to visualize critical security metrics and incident data.

•

Develop and optimize SIEM content, including rules, alerts, and correlation logic, to improve threat detection and response.

•

Regularly review and tune SIEM rules to reduce false positives, enhance event correlation, and maintain relevance to evolving threats.

•

Document and update SIEM processes and configurations, ensuring a high level of data accuracy and availability.

•

Perform regular vulnerability scans and assist in patch management processes. Work with IT teams to prioritize and remediate them.

•

Recommend solutions to mitigate risks in any activity that may potentially impact security of existing IT and information management

•

Ensure compliance with industry regulations (e.g. GDPR, ISO 27001) and company policies.

•

Assist in the development, implementation, and maintenance of security policies, standards, and guidelines.

•

Assist in training staff on security best practices, including phishing awareness and data protection.

•

Help develop educational materials and conduct periodic security awareness training.

•

Advise and consult internal/ external customers on risk assessment, threat modelling and vulnerability management. Perform risk assessments and recommend security measures to mitigate potential risks.

•

Document risks, vulnerabilities, and remediation strategies in a detailed risk management report.

•

Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes and development of new attacks and threat vectors

•

Manage and optimize security tools, such as firewalls, antivirus software, and intrusion detection/prevention systems (IDPS).

•

Perform 1st level troubleshooting on servers and network issues with regards to log collection/ security tools

•

Generate reports on security metrics, incidents, and remediation efforts for management.

•

Maintain accurate documentation of incidents, security changes, and system configurations.

•

Any other ad-hoc duties as required or assigned.

•

Strong knowledge of cybersecurity principles, practices, and technologies.

•

Expertise in SIEM tools and content management, including rule creation, alert tuning, and report customization.

•

Proficiency with security tools like firewalls, IDPS, antivirus, and vulnerability scanners.

•

Knowledge of scripting (Python, PowerShell) for automation within the SIEM environment is a plus.

•

Ability to analyze and interpret security data to identify vulnerabilities and potential threats.

•

Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders.

•

Strong analytical skills and attention to detail.

•

Ability to work on-call or off-hours as needed to respond to security incidents.

•

May require occasional travel for training or workshop.

•

Bachelor Degree or Advanced Diploma in Computer Science, Information Technology, Cybersecurity from a recognized university or related field (or equivalent experience)

•

At least 1-3 years in a cybersecurity role, with hands-on experience in SIEM content management, network security, threat monitoring, or incident response.

•

Experience in the application of threat modelling or other risk identification techniques

•

Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits

•

Breadth of knowledge in information security space with emphasis on TCP/IP network security, operating system security, common attack patterns and exploitation techniques

•

Relevant certifications (e.g., CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC)) are a plus

•

Effective leadership skills and a team player

•

Strong sense of ownership and drive

#J-18808-Ljbffr