Work Location:

New York, New York, United States of America

Hours:

40

Line of Business:

Technology Solutions

Pay Detail:

$165,000 - $195,000 USD

TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. 

As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.

Job Description:

Preferred Qualifications:

Job Description:

TD Securities is a leading North American investment bank and financial services provider that offers advisory and capital market services to corporate, government, and institutional clients worldwide. We offer a range of services across corporate and investment banking, capital markets, global transaction services, research & strategy and ESG Solutions.

The TDS DevSecOps team manages many critical applications for our clients and ensures the builds are deployed successfully and work in partnership with the application teams in improving and securing their development cycle.  As part of a global team, you will help utilize, manage, develop and document DevSecOps processes and tools to support secure and stable systems.

KEY ACCOUNTABILITIES
 

The DevSecOps Engineer is an engineering role to help support, secure, manage and deploy solutions that support TD Bank's software delivery initiatives.

The role is highly technical, and candidates must possess a solid understanding of information security, cloud infrastructure, software, and various reference architectures. The role also requires an understanding of clients' business goals, product strategy and operational requirements in a highly secured/governed environment.

The DevSecOps engineer supports continuous integration and continuous deployment (CI/CD) initiatives and is an integrated team member working with software developers, product engineers, cybersecurity engineers and systems administrators. The DevSecOps engineer acts as a liaison with business stakeholders to understand the strategy and execution outlook.

The role is heavily security-focused and ingrained in the CI/CD pipeline automation to deliver security and privacy by design principles and validation throughout the software lifecycle.

DevSecOps engineers have a strong work ethic, perform analytical and critical thinking, and are masterful at meeting change requests on demand. They are expected to work well with business units and possess superior listening and communication skills, in addition to expected technical expertise.

DevSecOps engineers embody security-first principles, constantly assess the threat landscape, and adapt quickly to manage enterprise risk, as well as integration, configuration, and deployment requirements.

CUSTOMER

Leverage deep technology expertise for own area of specialization to deliver and ensure that all areas across the organization that provision, manage and support various technologies have the necessary tools, processes and documentation required to effectively execute  on their respective mandates  Execute on Engineering strategy as it relates to the introduction of tools and the automation of build, test, release and configure activities across Application, Platform and InfrastructurePartner with the Operations team to automatically integrate with appropriate tools and processes as part of automated/self-serve Application, Platform or Infrastructure releasesWork with partners across Technology and apply in-depth understanding of relevant business needs to identify and leverage synergies across the various areasAct as the expert or lead innovator and agent of change for the programs and services under managementWork with other teams to implement best practices for engineering and managementWork with vendor platform providers and engineering peers to keep abreast of trends, products, frameworks, and applicationsIdentify and effectively manage stakeholder engagement and impacts across the enterpriseInterpret client needs, assess engineering related requirements and identify solutions to non-standard requests

SHAREHOLDER

Apply best practices and knowledge of internal / external business issues to improve products or services in own disciplineMonitor and control costs within own workMay interact with governance and control groups, (e.g. regulatory / operational risk, compliance and audit) to provide subject matter expertise and consult on risk issues / items related to Engineering technology and toolsMay develop and/or contribute to negotiations of third party contracts/agreementsMaintain knowledge and understanding of external development, engineering and emerging solutions, market conditions and their impactProactively identify emerging technologies and innovative solutions for building more robust platform domains

EMPLOYEE / TEAM

Continuously enhance knowledge/expertise in own area and keep current with emerging industry trends, new technologies and best practices in the external market that can contribute to delivering effective client solutionsPrioritize and manage own workload in order to deliver quality results and meet timelinesSupport a positive work environment that promotes service to the business, quality, innovation and teamwork and ensure timely communication of issues/ points of interestParticipate in knowledge transfer with senior management, the team, other technical areas and business unitsWork effectively as a team, supporting other members of the team in achieving business objectives and providing client servicesIdentify and recommend opportunities to enhance productivity, effectiveness and operational efficiency of the business unit and/or team

BREADTH & DEPTH

Expert knowledge of specific domain or range of engineering frameworks, technology, tools, processes and procedures, as well as organization issuesExpert knowledge of TD applications, systems, networks, innovation, design activities, best practices, business / organization, Bank standards, and may fulfill a governance roleExpert knowledge and experience in own discipline; integrates knowledge of business and functional prioritiesActs as a key contributor in a complex and critical environmentBuild relationships with developers, stakeholders, and pod leaders to incorporate security principles into engineering design and deployments.Implementation, testing and validation of application security controls across projects through automation workflows in CI/CD.Implementation of defensive configurations and countermeasures across cloud infrastructure and applications.Recommend services and tools to enable developers and engineers to easily use security components produced by application security team members.Simplify automation that applies security inter-workings with CI/CD pipelines.Support the ability to “shift left” and incorporate security early on and throughout the development lifecycle including threat modeling and developer IDE security features.Assist prioritization of vulnerabilities identified in code through automated and manual assessments and promote quick remediation.Join forces and provision security principles in architecture, infrastructure, and code.Regularly research and learn new tactics, techniques and procedures in public and closed forums, and work with colleagues to assess risk and implement/validate controls as necessary through the CI/CD pipeline.Enrich DevOps architecture with security standards and best practices, promote baseline configuration and work to reduce drift.Partner with teams to define key performance indicators (KPIs), key risk indicators (KRIs) and distribute useful program metrics across business units.Perform other duties as assigned.

EXPERIENCE & EDUCATION

University or post-graduate degree (e.g., computer science, engineering)At least 7+ years experience in information technology, information security administration or security operations.Experience working with development and infrastructure teams in agile workflows, including Scrum and Kanban.Understanding of containerized compute (e.g., Docker) and container orchestration (e.g., Kubernetes)Experience with Nexus IQ, GitHub Advanced Security, SonarQube, Terraform, Jenkins, and Ansible.Experience with operations and security across Amazon Web Services (AWS), Microsoft Azure and Google Cloud Platform (GCP).Ability to obtain and maintain technical team and business support to influence a collaborative effort to reduce attack surface while performing rapid, continuous testing and implementation.Capable of scripting in Python, Bash and PowerShell.Understanding of the software development lifecycle (SLDC) and how to balance the recommendations of each against business priorities and security requirements.Knowledge of Supply-chain Levels for Software Artifacts (SLSA), Payment Card Industry (PCI), National Institute of Standards (NIST) or Center for Internet Security (CIS) control requirements a plus.

Inclusiveness

Our Commitment to Diversity, Equity, and Inclusion

At TD, we’re committed to fostering an environment where all colleagues are encouraged to bring their authentic selves to work, experience equitable opportunities, and feel respected and supported. We’re dedicated to building an inclusive workforce that reflects the diversity of the customers and the communities in which we live and serve.

How We're Helping Make an Impact in Communities
TD has a long-standing commitment to help drive progress towards a more inclusive and sustainable future. That’s why we launched the TD Ready Commitment in 2018, now a multi-year North American initiative. Under the TD Ready Commitment, we are targeting a total of $1 billion by 2030 in community giving across four key, interconnected drivers of change: Financial Security, Vibrant Planet, Connected Communities, and Better Health. It’s our goal to help support change, nurture progress, and contribute to making the world a better, more inclusive place for our customers, colleagues, and communities.

Accommodation
Your accessibility is important to us. Please let us know if you’d like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process.

The Engineer II develops and maintains technical solutions that adhere to engineering and architectural design principles while meeting business requirements. Provides technical expertise with a focus on efficiency, reliability, scalability, and security; includes planning, evaluating, recommending, designing, operationalizing, and supporting solutions in compliance with enterprise and industry standards.

Depth & Scope:

Expert knowledge of specific domain or range of engineering frameworks, technology, tools, processes and procedures, as well as organization issuesExpert knowledge of TD applications, systems, networks, innovation, design activities, best practices, business / organization, Bank standards, and may fulfill a governance roleExpert knowledge and experience in own discipline; integrates knowledge of business and functional prioritiesActs as a key contributor in a complex and critical environmentMay provide leadership to teams or projects; shares expertiseApplies in-depth skills and broad knowledge of the business to address complex problems and non-standard situations

Education & Experience:

Bachelor or Graduate degree Strong academic background (e.g., computer science, engineering)7 + years relevant experience

Customer Accountabilities:

Understands and supports the Bank's Customer Service StrategyConsiders the impact of decisions on the well-being of TD, its Customers and stakeholdersProvides the highest level of Customer service when dealing with internal partners, vendors or our Customers - WOW at every opportunityModel quality service delivery at every interactionLeads and contributes to the ongoing improvement of the partner / Customer experience

Employee and Team Accountabilities:

Be engaged in advancing and sustaining a unique, inclusive culture that reflects TD's diversity agenda, and create an extraordinary employee experienceParticipates fully as a member of the team and contribute to a positive work environmentMay provide leadership, training, and guidance to other team membersEnsures ongoing communication with the team on the status / progress of projects and issues / points of interestActively shares information and knowledge, and proactively learn from the expertise of others

Who We Are

TD Securities offers a wide range of capital markets products and services to corporate, government, and institutional clients who choose us for our innovation, execution, and experience. With more than 6,500 professionals operating out of 40 cities across the globe, we help clients meet their needs today and prepare for tomorrow. Our services include underwriting and distributing new issues, providing trusted advice and industry-leading insight, extending access to global markets, and delivering integrated transaction banking solutions. In 2023, we acquired Cowen Inc., offering our clients access to a premier U.S. equities business and highly-diverse equity research franchise, while growing our strong, diversified investment bank. We are growth-oriented, people-focused, and community-minded. As a team, we work to deliver value for our clients every day.

Our Total Rewards Package
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more
 

Additional Information:
We’re delighted that you’re considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we’re committed to providing the support our colleagues need to thrive both at work and at home.

Colleague Development
If you’re interested in a specific career path or are looking to build certain skills, we want to help you succeed. You’ll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD – and we’re committed to helping you identify opportunities that support your goals.

Training & Onboarding
We will provide training and onboarding sessions to ensure that you’ve got everything you need to succeed in your new role.

Interview Process
We’ll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.

Accommodation

If you are an applicant with a disability and need accommodations to complete the application process, email the TD Bank US Workplace Accommodations Program at USWAPTDO@td.com. Include your full name, best way to reach you, and the accommodation needed to assist you with the application process.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.