Information Security Specialist (US) - AI Security Architect

The AI Security Architect defines, develops and/or implements Technology Controls / Information Security related policies, programs, tools and provides specialized expertise and guidance on assessing risks, identifying potential gaps and providing security solutions to mitigate risks and protect the Bank. Participates on projects of moderate to high complexity and provides complex reporting, analysis, and assessments at the functional, business line or enterprise level for own area.

This role is responsible for designing, implementing, and governing security architectures for enterprise AI platforms and services. This role serves as the subject matter expert for securing Microsoft's AI and Copilot ecosystem and for developing Security Technical Implementation Guides (STIGs) and hardening standards to ensure compliant, secure deployment of AI solutions across regulated environments. The Architect partners with security engineering, cloud platform teams, compliance, and legal stakeholders to enable the safe and responsible adoption of AI technologies while maintaining strong risk management and regulatory alignment.

Depth & Scope:

• Participates on complex, comprehensive or large projects and initiatives
• Acts as a lead expert resource in technology controls / information security for project teams, the business / organization and/or outside vendors
• Has advanced knowledge of organization, technology controls / security/ risk issues, * Lead the security architecture design for AI platforms and services across the Microsoft ecosystem.
• Develop, maintain, and publish STIGs and security baselines for AI services, including configuration standards, risk controls, validation steps, and continuous compliance guidance.
• Security controls defined should include:

• Model access controls
• Data ingestion and indexing security
• Prompt and content filtering
• Training dataset governance
• Logging and monitoring
• Model endpoint exposure
• API security
• Identity, authorization, and tenant isolation
• Supply chain and tool-assisted development workflows

• Author and manage security architecture frameworks for enterprise AI use cases as well as risk assessments for GenAI systems.
• Ensure control mapping aligned with NIST, CIS Benchmarks, and TD standards.
• Serve as the security authority on:

• Azure AI Search
• Azure OpenAI
• Azure Content Safety
• Azure Machine Learning
• Microsoft Foundry
• Microsoft 365 Copilot
• M365 Copilot Studio
• GitHub Copilot

• Build secure design patterns for AI workloads.
• Provide hands-on security guidance and architecture reviews for AI and GenAI pilots and production deployments.
• Partner with engineering teams to embed security by design into CI/CD pipelines.
• Review AI solutions for compliances with enterprise security policies, responsible AI principles and data protection and privacy requirements.
• Conduct security assessments of new AI services and releases prior to enterprise approval.

Physical Requirements:

Never: 0%; Occasional: 1-33%; Frequent: 34-66%; Continuous: 67-100%

• Domestic Travel - Occasional
• International Travel - Occasional
• Performing sedentary work - Continuous
• Performing multiple tasks - Continuous
• Operating standard office equipment - Continuous
• Responding quickly to sounds - Occasional
• Sitting - Continuous
• Standing - Occasional
• Walking - Occasional
• Moving safely in confined spaces - Occasional
• Lifting/Carrying (under 25 lbs.) - Occasional
• Lifting/Carrying (over 25 lbs.) - Never
• Squatting - Occasional
• Bending - Occasional
• Kneeling - Never
• Crawling - Never
• Climbing - Never
• Reaching overhead - Never
• Reaching forward - Occasional
• Pushing - Never
• Pulling - Never
• Twisting - Never
• Concentrating for long periods of time - Continuous
• Applying common sense to deal with problems involving standardized situations - Continuous
• Reading, writing and comprehending instructions - Continuous
• Adding, subtracting, multiplying and dividing - Continuous

The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required. The listed or specified responsibilities & duties are considered essential functions for ADA purposes.

• Bachelor's degree preferred
• Information security certification / accreditation an asset
• 7+ years of relevant experience
• Expert knowledge of IT security and risk disciplines and practices, * Cloud Security Certification (e.g., Azure Security Engineer, Microsoft Cybersecurity Architect, CISSP, CCSP, etc.).
• 3+ years focused on cloud security architecture.
• \Prior work with Responsible AI frameworks, AI safety governance models, or data ethics compliance programs.
• Demonstrated experience as a Cloud Security Architect or Security Engineer with direct ownership over platform hardening standards or STIG development.
• Extensive technical knowledge of Microsoft cloud and AI platforms.
• Familiarity with compliance frameworks impacting AI security (e.g., NIST, ISO, CIS Benchmarks, etc.).

Our Total Rewards Package

Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more, We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.

Colleague Development

If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities.

If you're passionate about helping clients and building deep, lasting relationships, TD offers diverse career paths where you can grow your expertise and make a meaningful impact.

We're committed to your success and foster a respectful workplace where diverse perspectives are valued, everyone has fair opportunities to grow, and you can unlock your full potential to achieve your career goals. Here at TD, we hire and develop the best.

Training & Onboarding We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.

TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we strive to make every interaction, product, and experience remarkably human and refreshingly simple for over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to foster deeper relationships, ensure disciplined execution, and build a simpler, faster banking experience. TD is deeply committed to being a leader in client experience, that is why we believe that all colleagues, no matter where they work, are client facing. Together, we are reimagining what banking can be for our clients, colleagues and communities.