ASSIGNMENT DETAILS:Position Title US - IT - Info Security Analyst I - TDJP00057440# of positions: 1Start Date: Duration: 03/02/2026 to 06/01/2026 – 3 months from start date Extension possible: No Conversion Possible: No Billing Cost Center: 004-1252 - TD U.S.Schedule: Monday to Friday – 9-5OT: No Rotation: No Budget/TD Bill Rate: Market B67.72Market C64.98Work Location:-Remote, Onsite, or Hybrid: Hybrid – 2 days in office -Anchor Days (if applicable):-Address: Mt Laurel - Technology Center - 17000 Horizon Way, Mount Laurel, New Jersey (TDF0004)-Locations – Mount Laurel and open to Fort Lauderdale – as there are offices there to support the hybrid model Travel Required: NOPossibility of any Additional Upcoming Furlough: Standard STORY BEHIND THE NEED:Reason for request/why opened: Backfill – mat leave Scope of Project: day to day BAU support Team Size/Culture: 6 total Training Period: shadowing and direct training from manager. Selling Points of Position (CVP): diverse team from serval background from GRC, get to see different challenges across various segments, collaborative team, very supportiveCANDIDATE PROFILE DETAILS:Degree/Level of Education: University degree or relevant field / equivalent experienceCertifications Required: CRISC, CISM, CISA, CISSP asset Years of Overall Experience: 3-5 yearsHow will performance be measured: Deliverables, quality of work Preferred/Ideal Candidate Background: has some knowledge of technology controls, understands how it translates to risk, navigate processes. GRC and or prior tech experience. If they worked in Audit is an asset, worked as a technology control officer SUMMARY OF THE ROLE:-Typical Day-to-Day Responsibilities: forward-facing team, managing communication, making sure assessments are in hand, tracking progress of reviews, engaging in quality checks and quality assurance. -How much time is being spent in meetings: 10-15 hours per week-Who are they interacting with (internal/external) – yes to both -Will the contractor have access to any customer data? NO!MUST-HAVE Hard Skills:1.) Great communication skills 2.) Great ability to do write ups 3.) being able to communicate with stakeholders on various levels4.) Jira 5.) MS Suite – PowerPoint, teams6.) Audit background SOFT SKILLS:1.) Attention to detail NICE-TO-HAVE 1.) Service now DISQUALIFIERS – is there any information/experience on a candidate’s resume that would disqualify them from consideration for this position? 1.) someone has not worked in any of tech, GRC, audit roles TIMELINES/IMPORTANT DATES:Upcoming PTO: March 6, 9,10, and 18-20thSupplier Call: Yes, March 4th at 9:30Distribute Requisition: March 4th Halting: March 6thShortlist De-Brief: Target interview: oInterview process: Virtual – 1 round for sure and there may be second. Interview de-brief: yes, after interviews Department Overview Building a World-Class, Diverse and Inclusive Technology Team at TDWe can't afford to be boring. Neither can you. The scale and scope of what TD does may surprise you. The rapid pace of change makes it a business imperative for us to be smart and open-minded in the way we think about technology. TD's technology and business teams become more intertwined as new opportunities present themselves. This new era in banking does not equal boring. Not at TD, anyway.TD Global Security & Defense is home to a team of highly valued professionals, who support all Global Technology Solutions related Regulatory and support interactions, which includes business, 2nd, or 3rd LOD led exams. They provide oversight and governance, independently challenging High / Med severity issues tied to Regulatory, Audit and Operational Risk Management (ORM). Includes issue escalations tied to potential overdue and validation failures, issue support for insight, governance reporting and exams. Also, provides demand management support assurance functions.There's room to grow in all of it.Job Specific AccountabilitiesThe Senior Information Security Analyst role supports the execution of independent quality assurance and remediation reviews for audit and regulatory findings for TD's Global Technology Solutions (GTS) area. The role focuses on assessing the adequacy, completeness, and sustainability of management action plans, evaluating remediation evidence, and identifying residual risk to ensure alignment with regulatory expectations, internal standards, and information security frameworks.This position operates within a 1B / oversight / challenge function, partnering closely with technology teams, operational risk management, audit, and compliance stakeholders to promote strong control hygiene and timely risk reduction.We are looking for someone who is well-versed at providing governance, risk, compliance and issue remediation oversight and control best practices that meet TD’s overarching strategy and objectives. Here's some of what you may be asked to perform:Conduct quality assurance reviews and challenge of remediation action plans for internal audit and regulatory findings related to information security and technology controls, working with stakeholders across the three lines of defense to ensure effective risk mitigation and remediationAssess whether action plans sufficiently address root cause, risk drivers, and control design gapsAssess remediation evidence for accuracy, completeness, and sustainabilityApply established QA rubrics, control standards, and review methodologies consistentlyIdentify gaps, weaknesses, or misalignment with policy, standards, and regulatory expectationsDocument review results, conclusions, and rationale in a clear, defensible mannerEvaluate information security controls across areas such as access management, change management, vulnerability management, data protection, logging and monitoring, third party risk, etc.Assess residual risk and escalate concerns where remediation effectiveness is insufficientMaintain accurate records of review activities, decisions, and supporting evidenceSupport management reporting and metrics related to remediation quality and statusEngage with technology owners to clarify remediation approaches and evidenceProvide constructive challenge and guidance while maintaining independenceCollaborate with audit, operational risk management, and compliance partners to ensure alignment and consistencyContribute to continuous improvement projects, leveraging agile / lean continuous improvement practices/methods that demonstrate sustainable and leading-edge solutions (e.g. Artificial Intelligence (AI), Machine Learning (ML), Power BI/Apps, Python, etc.)Identify emerging themes, understand trends, and provide specialized business management advice to senior management and respective teams while raising industry, external and internal, enterprise and business awareness.Stay apprised on Industry Best Practices as well as the Technology and Information Security Audit and Regulatory environment.Job Requirements What can you bring to TD? Share your credentials and your relevant experience and knowledge. It helps if you have:Expert knowledge of IT Audit and Control methodology, IT Governance Controls and Standards, and associated tools to ascertain the quality and effectiveness of technology remediation plans.Competencies in technology controls, emerging threats, and technology risk disciplines and practices.IT governance experience in various information security methodologies/frameworks (e.g., COBIT 5, NIST, etc.)Knowledge of IT policies, standards, and technology risk disciplines and practicesKnowledge / Experience in core Agile frameworks such as, Scrum, Kanban, and Extreme Programming to execute Challenge functions as defined by the TD Agile methodology Sound understanding of data analytics (collection, analysis, distribution etc.) and complex business processesExperience with change management methods to evolve technology issue management framework (people/process/technology) specific to Challenge OperationExperience with Key Performance and Risk Indicators and Technology Risk analytics and reporting, managing and refining business rules and thresholds for Technology controls performance (KPIs) and aggregating risk (KRIs)Provide support to the development and testing teams to resolve data issuesExcellent verbal and written business communication skills; meticulous documentationAbility to manage multiple efforts simultaneously and strong organizational skillsAbility to effectively interact with individuals across the organization and at various levels (technical, business, Senior & Executive Management) Ability to educate colleagues and team members related to Challenge Operation processes/toolsAbility to contribute to / participate in complex technology projectsRequired Qualifications:5+ years of relevant experience in information security, technology risk, audit and regulatory remediation processesUnderstanding of information security control frameworks (e.g., NIST, ISO 27001, CIS)Experience reviewing control design, implementation, and operating effectivenessStrong analytical skills with attention to detail and sound professional judgmentExperience supporting 1B, 2LOD, or QA/challenge functionsExperience reviewing remediation evidence and validating control effectivenessExposure to GRC tools (e.g., Archer, ServiceNow or similar platforms)Expert knowledge various technology tools: including JIRA, Confluence, Sharepoint, MS Office, Excel, etc.Relevant certifications or progress towards or relevant equivalent experience (e.g., CRISC, CISM, CISA, CISSP)University degree or relevant field / equivalent experience Enable Skills-Based Hiring No $(function(){ $(".qualPlaceHolder").each(function(){ if($(this).parents('#jsLegend').length != 1 || $(this).find('ul').length == 0) { var requested = $(this).attr("requested"); var presented = $(this).attr("presented"); var dynamicId = $(this).attr("id"); var text = $(this).attr("text"); var readOnly = ($(this).attr("edit") === 'true'); var flexibleScaleLevels = $(this).attr("flexibleScaleLevels"); var flexibleScaleLevelNames = $(this).attr("flexibleScaleLevelNames"); new FG.Qual({ element: $(this), readOnly: readOnly, requested: requested, presented : presented, dynamicId : dynamicId, text : text, flexibleScaleLevels : flexibleScaleLevels, flexibleScaleLevelNames : flexibleScaleLevelNames, }).initialize(); } })});QualificationAssessmentMust HaveShort-listing QuestionsAudit background3 yearsBeing able to communicate with stakeholders on various levelsYesExpert with: Microsoft Office; Word, Excel and Outlook, strong PowerPointYesExp with Jira3 yearsGreat ability to do write upsYesGreat communication skillsYesHas this candidate worked as a former TD Contractor via SOW?NoHas this candidate worked at TD in any capacity?NoHas your candidate worked at TD as a Full Time employee?NoNice to HaveSkillsAttention to detail is crucialYesService Now3 years Contractor Engagement Type RecruitedWill this contractor be expected to work onsite, remote or hybrid? Hybrid 
 
At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position’s starting pay is: $ 7.25/hr.