Head - DevSecOps

Job Description

Work Location: Toronto, Ontario, Canada Hours: 37.5 Line of Business: Technology Solutions Pay Details: $160,000 - $200,000 CAD This role is eligible for a discretionary variable compensation award that considers business and individual performance. TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role. Job Description: Own the enterprise strategy, roadmap, and operating model for DevSecOps and CI/CD platforms—enabling secure, compliant, and reliable software delivery at scale. Responsibilities Own the DevSecOps and CI/CD platform strategy, multi-year roadmap, and investment priorities aligned to business outcomes, cloud strategy, and risk posture. Lead and develop engineering managers and senior technologists; establish clear ownership, operating rhythms, and an automation-first culture. Set enterprise reference architectures, standards, and guardrails for secure software delivery across on-prem, cloud, and hybrid environments. Govern tooling decisions and platform modernization (build vs. buy, rationalization, deprecation) to optimize cost, reduce risk, and manage technical debt. Define and operate enterprise CI/CD platform services (service catalog, onboarding/adoption, support model) and ensure high adoption and strong developer experience. Standardize golden paths, reusable pipeline capabilities, and self-service patterns that improve lead time, quality, and consistency. Embed security-by-design and an enterprise shift-left program (application, dependency, container, and IaC security) with measurable reduction in vulnerabilities. Partner with Security, Risk, Audit, and Compliance to define control requirements, manage exceptions, and support audits with automated evidence collection. Provide architectural oversight for cloud and platform foundations (networking, identity, compute, storage) and set standards for IaC/GitOps practices. Be accountable for platform reliability outcomes: SLOs/SLAs, observability, incident governance, DR/BCP readiness, and recovery objectives. Own vendor strategy and commercial execution (RFPs, contracts, renewals) and establish third-party risk governance, SLAs/KPIs, and spend optimization. Define the enterprise approach to AI-enabled developer tooling, including governance, security/privacy controls, and measured rollout to improve productivity. Qualifications Requ