Information Security Specialist – Red Team Operator

🔥 0 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of TD

TD

10,000+ employees

Founded 1855

🏦 Banking

💸 Finance

💰 Grant on 2023-10

Banking • Finance • Insurance

TD is one of North America's biggest banks offering a wide range of banking services including personal and business banking, insurance, wealth management, and securities. TD is committed to sustainability, diversity, equity, and inclusion, ensuring a supportive and inclusive workplace where employees are empowered to grow. The bank provides various roles and career opportunities across different regions with a focus on community impact and professional development. TD's culture is defined by care and respect, aimed at benefiting their business performance, customers, and communities.

📋 Description

• Plan and execute full‑scope red team engagements, including reconnaissance, initial access, lateral movement, privilege escalation, command-and-control, and objective completion • Emulate real-world threat actors using established TTPs (e.g., MITRE ATT&CK) • Conduct phishing and social engineering campaigns within defined legal and ethical constraints • Develop and maintain custom tooling, payloads, and infrastructure to support operations • Collaborate closely with Blue Team, Purple Team, Threat Intelligence, and Incident Response partners • Produce clear, technically accurate engagement reports and executive-ready summaries • Contribute to detection engineering by identifying gaps in controls, telemetry, and response processes • Support continuous improvement of red team methodologies, playbooks, and governance processes • Mentor junior operators and contribute to team knowledge sharing

🎯 Requirements

• University degree • 7+ years of experience in offensive security, red teaming, penetration testing, or equivalent hands-on security roles • Strong knowledge of Windows Active Directory environments, identity abuse, and enterprise authentication flows • Proven experience with common red team tooling (e.g., C2 frameworks, phishing platforms, custom payloads) • Solid understanding of network protocols, operating systems, and endpoint security controls • Ability to safely execute adversarial activities in regulated environments with strict scope and approval processes • Strong written and verbal communication skills, including report writing and technical walkthroughs • Demonstrated ability to work independently while collaborating effectively with cross‑functional teams

🏖️ Benefits

• Health and well-being benefits • Savings and retirement programs • Paid time off • Banking benefits and discounts • Career development • Reward and recognition programs

Apply Now

Similar Jobs

🔥 45 minutes ago

Thomson Reuters

10,000+ employees

💸 Finance

📱 Media

☁️ SaaS

Senior Specialist Legal Editor creating high-quality legal content for Practical Law in data privacy & cybersecurity. Collaborating with teams and leveraging AI technologies for legal solutions while based in Canada.

🕒 4 days ago

Twilio

5001 - 10000

Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.

🕒 4 days ago

Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.

🕒 6 days ago

Guidewire Software

1001 - 5000

Technical Program Manager managing security programs aligned with security strategy at Guidewire. Collaborating with various stakeholders to enhance security maturity and efficiency.

🇨🇦 Canada – Remote

💵 $120k - $150k / year

💰 $750k Series C on 2008-03

⏰ Full Time

🟡 Mid-level

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

🕒 June 30

Directive

11 - 50

🔒 Cybersecurity

🛍️ eCommerce

Director of IT Security leading the cybersecurity strategy for a remote workforce at Directive Consulting. Responsible for risk management, incident response, and compliance initiatives.