Information Security Specialist (US) - Red Team Operator

TD
Any Location, NJ
Job Description
Role Overview

The Information Security Specialist defines, develops and/or implements Technology Controls / Information Security related policies, programs, tools and provides specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect the Bank. Participates on projects of moderate to high complexity and provides complex reporting, analysis, and assessments at the functional, business line or enterprise level for own area.

What You Will Do

Participates on complex, comprehensive or large projects and initiatives, acts as a lead expert resource in technology controls / information security for project teams, the business / organization and/or outside vendors, has advanced knowledge of organization, technology controls / security/ risk issues.

Why It Might Be a Fit

Expert knowledge of IT security and risk disciplines and practices, familiarity with EDR, SIEM, and cloud security controls from an attacker’s perspective, experience developing custom tooling in languages such as C#, Python, and PowerShell, knowledge of red team infrastructure, domain management, and OPSEC best practices.

Requirements

  • Bachelor's degree preferred
  • Information security certification / accreditation an asset
  • 7+ years of relevant experience
  • Expert knowledge of IT security and risk disciplines and practices
  • Familiarity with EDR, SIEM, and cloud security controls from an attacker’s perspective
  • Experience developing custom tooling in languages such as C#, Python, and PowerShell
  • Knowledge of red team infrastructure, domain management, and OPSEC best practices
  • Relevant certifications (e.g., CRTO, OSCP, GXPN, Red Team Ops–focused certs)
  • Experience in financial services, large enterprises, or highly regulated environments
  • Experience in offensive security, red teaming, penetration testing, or equivalent hands-on security roles
  • Strong knowledge of Windows Active Directory environments, identity abuse, and enterprise authentication flows
  • Proven experience with common red team tooling (e.g., C2 frameworks, phishing platforms, custom payloads)
  • Solid understanding of network protocols, operating systems, and endpoint security controls
  • Ability to safely execute adversarial activities in regulated environments with strict scope and approval processes
  • Strong written and verbal communication skills, including report writing and technical walkthroughs
  • Demonstrated ability to work independently while collaborating effectively with cross-functional teams

Benefits

  • Base salary
  • Variable compensation/incentive awards
  • Health and well-being benefits
  • Savings and retirement programs
  • Paid time off (including Vacation PTO, Flex PTO, and Holiday PTO)
  • Banking benefits and discounts
  • Career development
  • Reward and recognition
]]>