Information Security Specialist - Red Team Operator

Information Security Specialist - Red Team Operator

This role is based in Toronto, Ontario, Canada, requiring 37.5 hours per week.

The salary range for this position is $96,900 - $136,800 CAD. TD is committed to fair and equitable compensation, offering growth opportunities, skill development, and a comprehensive Total Rewards package including base salary, variable compensation, health benefits, savings programs, paid time off, banking benefits, and career development resources.

Job Summary

As an Information Security Specialist - Red Team Operator at TD Securities, you will join our offensive security program to enhance defensive posture through realistic adversary emulation. This mid-to-senior level role involves executing end-to-end red team engagements, validating security controls, and providing actionable insights to detection and response teams. The ideal candidate possesses hands-on technical expertise, strong tradecraft, and the ability to operate safely in a highly governed enterprise environment.

Key Responsibilities

• Plan and execute full-scope red team engagements: reconnaissance, initial access, lateral movement, privilege escalation, command-and-control, objective completion.
• Emulate real-world threat actors using established TTPs (e.g., MITRE ATT&CK).
• Conduct phishing and social engineering campaigns within defined legal and ethical constraints.
• Develop and maintain custom tooling, payloads, and infrastructure to support operations.
• Collaborate closely with Blue Team, Purple Team, Threat Intelligence, and Incident Response partners.
• Produce clear, technically accurate engagement reports and executive-ready summaries.
• Contribute to detection engineering by identifying gaps in controls, telemetry, and response processes.
• Support continuous improvement of red team methodologies, playbooks, and governance processes.
• Mentor junior operators and contribute to team knowledge sharing.

Required Qualifications

• 5–8+ years of experience in offensive security, red teaming, penetration testing, or equivalent hands-on security roles.
• Strong knowledge of Windows Active Directory environments, identity abuse, and enterprise authentication flows.
• Proven experience with common red team tooling (e.g., C2 frameworks, phishing platforms, custom payloads).
• Solid understanding of network protocols, operating systems, and endpoint security controls.
• Ability to safely execute adversarial activities in regulated environments with strict scope and approval processes.
• Strong written and verbal communication skills, including report writing and technical walkthroughs.
• Demonstrated ability to work independently while collaborating effectively with cross-functional teams.

Preferred Qualifications

• Familiarity with EDR, SIEM, and cloud security controls from an attacker’s perspective.
• Experience developing custom tooling in languages such as C#, Python, and PowerShell.
• Knowledge of red team infrastructure, domain management, and OPSEC best practices.
• Relevant certifications (e.g., CRTO, OSCP, GXPN, Red Team Ops–focused certs).
• Experience in financial services, large enterprises, or highly regulated environments.

About TD Securities

TD Securities is a leading global financial institution, one of North America's largest banks, serving over 27 million households and businesses worldwide. With more than 95,000 colleagues, TD is dedicated to client experience, fostering deep relationships, disciplined execution, and a simpler, faster banking experience. We are committed to a respectful workplace, valuing diverse perspectives and supporting colleague growth.

Career Growth & Culture at TD

TD is committed to colleague success through regular development conversations, training programs, and a competitive benefits plan. You'll have access to an online learning platform and mentoring programs. We provide training and onboarding, and our interview process aims for clear communication and offers accommodations for accessibility. We value diversity and strive for an inclusive environment where everyone can thrive.

Key skills/competency

• Offensive Security
• Red Teaming
• Penetration Testing
• Adversary Emulation
• MITRE ATT&CK
• Active Directory
• C2 Frameworks
• Phishing
• Social Engineering
• Custom Tooling Development
• Security Controls Validation