Information Security Specialist (US) - AI Penetration Tester jobs in United States
cer-icon
Apply on Employer Site
company-logo

TD · 13 hours ago

Information Security Specialist (US) - AI Penetration Tester

positionCharlotte, North Carolina
timeFull-time
remoteHybrid
senioritySenior Level
money$98K/yr - $159K/yr
date7+ years exp

TD Bank is one of the world's leading global financial institutions, and they are seeking an Information Security Specialist – AI Penetration Tester to conduct advanced offensive security testing across AI/ML systems. The role involves identifying vulnerabilities, improving controls, and ensuring the safe deployment of AI capabilities across the enterprise.

BankingFinanceFinancial ServicesWealth Management
check
H1B Sponsor Likelynote

Responsibilities

Conduct Penetration Tests: Design and execute comprehensive penetration tests targeting AI/ML models, LLM applications, model pipelines, retrieval systems, data agents, and AI-enabled business workflows
AI/LLM Vulnerability Analysis: Identify vulnerabilities such as jailbreaking, prompt injection, model extraction, adversarial ML attacks, data poisoning, RAG bypasses, and safety guardrail circumvention
Tooling & Automation: Evaluate and develop tooling (including internal utilities and open‑source frameworks) to automate and scale AI/LLM security testing
Assess Security Posture: Analyze training data governance, guardrail design, inference endpoints, system prompts, agent autonomy, model monitoring, and model‑ops pipelines
Risk Assessments: Perform security and safety risk analyses on new and existing AI/ML deployments, including cloud‑based services, APIs, model marketplaces, and third‑party LLM integrations
Model Supply Chain Security: Assess AI supply chain risks, dependency integrity, and alignment with enterprise standards and regulatory obligations
Report Findings: Deliver clear, actionable findings to both technical and non‑technical stakeholders. Produce detailed reporting including: Executive summaries, Technical proof‑of‑concepts, Prioritized remediation recommendations
Stakeholder Engagement: Collaborate with Engineering, Data Science, Cloud, Cyber Defense, Architecture, and Risk to remediate findings and improve AI security posture
Develop Best Practices: Contribute to organization-wide AI security standards, policies, control objectives, and hardening practices
Regulatory Compliance: Ensure AI penetration testing aligns with regulatory, privacy, model safety, and internal policy requirements
Continuous Learning: Maintain deep expertise in emerging AI threats, industry frameworks, evaluation methodologies, and global safety standards
Participate in AI/ML–related security incident investigations, providing subject-matter expertise on root cause analysis and exploitation methods
Support audit preparation and assist in drafting management responses, remediation plans, and risk treatment documentation

Qualification

AI/ML security testingPenetration testing toolsAI/LLM vulnerabilitiesRisk assessmentsScriptingAutomationSecurity frameworksIncident responseCommunication skillsCollaboration skillsContinuous learning

Required

Bachelor's degree preferred
Information security certification / accreditation an asset
7+ years of relevant experience
Expert knowledge of IT security and risk disciplines and practices

Preferred

5+ years in application security or penetration testing, with hands-on experience in AI/ML environments preferred
7+ years of experience using penetration testing tools (Metasploit, Burp Suite, Nmap, Kali, etc.)
Strong knowledge of AI/LLM vulnerabilities including OWASP Top 10 for LLMs, adversarial attacks, prompt injection, and model safety testing frameworks
Familiarity with scripting and automation (Python preferred), model interrogation techniques, and cloud-native AI services (Azure, AWS, GCP)
Experience penetration testing AI/LLM platforms, cloud workloads, and PCI-scoped environments
Knowledge of security frameworks (NIST AI RMF, OWASP LLM/ML, ISO 42001, MITRE ATLAS)
Relevant certifications: OSCP, CEH, GPEN, CISSP, or AI/ML security certifications
Experience supporting audits, compliance reviews, and incident response activities

Benefits

Health and well-being benefits
Savings and retirement programs
Paid time off (including Vacation PTO, Flex PTO, and Holiday PTO)
Banking benefits and discounts
Career development
Reward and recognition

Company

TD

twittertwittertwitter
Glassdoor3.9
company-logo
The Toronto-Dominion Bank & its subsidiaries are collectively known as TD Bank Group (TD).
dateFounded in 1852
location
Wilmington, Delaware, USA
people-size10001+ employees
web-link
https://www.td.com

H1B Sponsorship

TD has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2022 (1)
2020 (6)

Funding

Current Stage
Late Stage
Total Funding
$65M
Key Investors
U.S. Department of the Treasury
2023-10-03Grant· $65M

Leadership Team

leader-logo
Brian Jacobson
Chief of Staff to the CEO, TD Bank, America's Most Convenient Bank
linkedin
F
Foster Glenn
Senior Vice President Technology and Data Risk Management
linkedin

Recent News

Bank Think
Ex-TD employee pleads guilty to helping move $26M to Colombia
2026-01-24
Njbiz
Ex-TD Bank employee admits role in $26M laundering scheme
2026-01-24
Investing.com
TD hires bankers from rivals including JPMorgan, Goldman to expand debt and equity capital market teams
2026-01-22
Company data provided by crunchbase