Summary
Overview
Work History
Education
Skills
Certification
Hobbies and Interests
Volunteer Experience
Languages & Technologies
References
Timeline
Generic

John Kay

Burlington,Canada

Summary

Dynamic software and security professional with over 10 years of experience in cybersecurity, notably at TD Bank, where I led incident response teams, saving hundreds of thousands of dollars through effective fraud mitigation. Passionate about collaborative problem-solving, I excel in risk management and developing innovative security solutions that drive operational efficiency and effectiveness.

Overview

17
17
years of professional experience
1
1
Certification

Work History

Senior Manager/Technical Lead – Risk Advisory – Detect and Respond

Deloitte Canada Inc.
Toronto, ON
04.2022 - 07.2025
  • Responsible for delivering cyber/fraud automation, risk reporting, dashboarding (Power BI), and vulnerability management.
  • Performed cyber-fraud capability assessments and audits.
  • Developed security architecture to align with organizational goals and objectives.
  • Conducted stakeholder meetings to gather insights and align project expectations effectively.
  • Coordinated a cross-functional security and database team in developing solutions that would improve operational efficiency, reduce costs, and increase productivity.

Senior Manager and Senior Information Security Specialist

TD Bank
Toronto, ON
11.2020 - 04.2022
  • Managed three cyber-fraud teams - incident response, data and insights, and projects and initiatives
  • Led incident response for several large incidents involving account takeovers, credential stuffing, financial fraud (containing and remediating issues that saved TD hundreds of thousands of dollars)
  • Responsible for research and development of new Cyber-fraud threat modelling, cyber-fraud testing.
  • Acted as Cyber Security subject matter expert in a cross functional role – training cross team members and working on collaborative issues and incidents as part of TD’s Fusion Center.
  • Set up detection rules in Splunk – as well as Dashboards to monitor digital channel activity on TD’s flagship products (EasyWeb, TD Insurance, and other websites).

Senior IT Security Engineer

TD Bank
Mississauga, ON
10.2019 - 10.2020
  • Part of a multi-disciplined security research and development team, enabling SOAR integrations including SIEM (Splunk), TIP (ThreatConnect), EDR (Crowdstrike, Carbon Black, Microsoft Defender ATP).
  • Responsible for delivering a Security Orchestration, Automation and Response platform
  • Contributor to an Endpoint Detection and Response enhancement project using Journey mapping design principles and Agile (Scrum) delivery method.
  • Participates in “Purple Team” activities, including recommending and tuning detection use cases.
  • Extensive use of Crowdstrike, ThreatMetrix, CarbonBlack, RSA, Wireshark, Cortex XSOAR, Splunk, Akamai bot protection and WAF, Shape Bot protection
  • Technology proof of concept implementations of Maltego, Phantom (now Splunk SOAR), ServiceNow SecOps

Senior IT Security Analyst

TD Bank
Mississauga, ON
01.2016 - 10.2019
  • Lead Responder/coordinator on numerous incidents involving insider threats, DLP, Third Party Compromise, Critical Vulnerabilities, Denial of Service Attacks, credential stuffing and brute force attacks, MFA bypass, Account takeover, ATM tampering, unauthorized network activity, ransomware, malware outbreaks, command and control activity, phishing, active directory privilege escalation, process injection.
  • Incident case management application developer, involved in the design and implementation of end to end processes – from event to alert to investigation, incident, and long-term remediation
  • Helped build the red-team and help align purple team tests to the MITRE ATT&CK framework
  • Malware/forensic lab environment manager
  • CSIRT playbook and documentation editor as well as a trainer for new team members

Co-Founder

Solid Board Gamers (now LVUp Games)
Mississauga, ON
03.2013 - 07.2016
  • ECommerce platform admin/developer
  • Responsible for major business decisions, accounting, finances, and customer service.
  • Handling all vendor accounts, event planning, and volunteer coordinating.

IT Security Analyst (Intern/Co-op)

TD Bank
Mississauga, ON
05.2015 - 12.2015
  • Worked on both the Endpoint Governance and CSIRT teams.
  • Developed a custom Incident Response automation platform/ticketing system (in C#).
  • Researched security best practices and standards
  • Chaired the daily incident review meeting.
  • Conducted analysis on malware, malicious email, and phishing sites.
  • Wrote procedure documentation and trained teammates on how to leverage Crowdstrike, ThreatGrid, VirusTotal in incident response practices

Software Specialist

Zarpac Performance Index
Oakville, ON
04.2011 - 05.2015
  • Primarily responsible for applying code fixes across all ZPI software products (web, windows, and mobile platforms), as well as providing client support for all products.
  • Developing custom performance reports and software enhancements used to access and visualize data.
  • Leading several code projects including an Android app and new web dashboard modules
  • Working on a team to redesign and develop new major version of the ZPI flagship software
  • Handling performance testing and optimization for MS SQL server. Learning MS SQL DMV’s, and developing a strong understanding of Indexing best practices, and SQL bottleneck identification
  • Setting up and managing the virtual machine infrastructure for software testing.

Junior .NET Analyst

Zarpac Performance Index
Oakville, ON
06.2008 - 03.2009
  • Bug Tester, Automated bug test builder, primarily finding VB.net issues and writing fixes.
  • Handled client software upgrades, as well as software uplifts (designed a new UI for the flagship software, as well as numerous dashboard widgets)
  • System admin for client and in-house servers running our flagship performance reporting software

Education

Bachelor of Applied Information Sciences - Information Systems Security

Sheridan College
Oakville, ON, Canada

Computer Programmer Diploma -

Sheridan College
Oakville, ON, Canada

Skills

  • 10 years of security operations and advisory experience – as part of a CSIRT team (level 3 responders), part of a Security Engineering team, and a Cyber-Fraud team – all under the Cyber operations group in TD’s fusion centre, With Deloitte I advised clients on the Incident response subject matter – automated response, detection tuning, forensics, legal, privacy, and fraud
  • 15 Years developing software (inside and outside security operations
  • Worked in multiple industries: large retail, government, engineering, and financial clients
  • AI experience (ChatGPT)
  • Cloud security expertise (GCP, Azure, AWS)
  • Multi-cloud architecture
  • Risk assessment and management
  • Compliance and governance
  • CrowdStrike/EDR – I was an EDR administrator while at TD Bank, and I also wrote API integrations for various endpoint detection and response tools
  • Quality assurance techniques
  • Endpoint security solutions
  • Security information management
  • API integration strategies
  • Used to wearing multiple hats: web admin, shipping and receiving, sales, events, and accounting
  • Containerization (Docker for personal projects and on the XSOAR platform)
  • Experience at both TD and Deloitte supporting Splunk SIEM and Microsoft Sentinel setup, tuning, automation, and dashboarding
  • Dashboarding, testing, and automation/programming experience with ZPI – a performance reporting software company
  • Script writing (in XSOAR and projects at TD)
  • Team collaboration, collaborative improvement, collective success
  • Willingness to learn
  • Knowledge transfer and education
  • Storytelling
  • Python, VBnet, C#, Java, jQuery, Javascript, HTML5, XML, CSS3, SQL, ASPNet, Entity Framework, Telerik/Kendo, MVC architecture, MVVM architecture, GraphQL, Ruby, AJAX, JSON, Powershell, C, NET Core, REST APIs, Streaming APIs, Linux/Unix command line (usually C shell)
  • Hands-on with security and risk tech such as Crowdstrike, Cortex XSOAR, Virus Total, Maltego, Cisco Umbrella, Microsoft Sentinel, Splunk SIEM, WAF, MITRE ATT&CK, ThreatMetrix, BioCatch, Akamai, and Shape/F5 Bot protection, Endpoint forensics, Multi-factor Authentication, Enterprise EDR, Threat Intelligence Platforms, Malware Analysis tools, Malware sandboxing, Network Filters/firewalls, DNS Sinkholes
  • Azure, GCP, AWS, Windows 7/8/10/11, Windows Server, and Linux (Ubuntu, Kali, CentOS, RHEL), Android
  • Experienced with data management using MS SQL, MySQL, SQLite, Oracle, MS Access, Splunk, Markdown (Obsidian), Confluence, Jira, Neo4j – AuraDB, and Databricks
  • Web server and networking experience with IIS, Palo Alto firewalls, Nmap, Snort, tcpdump, and Wireshark
  • Virtualization/containers – Docker, Vbox, VMware ESXi, and VMware Workstation
  • Experienced with a variety of IDEs and text editors: Visual Studio, Eclipse, CodeBlocks, VS Code, Atom, Sublime, vi, and Notepad
  • Experienced with a variety of development stacks and architecture models

Certification

  • Studying and/or certified in various security related certifications: GCIH GCFA, CISSP, CCSP
  • SANS Training: SEC504 - Hacker Tools, Techniques, Exploits, and Incident Handling and FOR508 Advanced Threat Hunting and Incident Response

Hobbies and Interests

Philosophy of choice/agency, Board games, piano, audio recording, cryptography, raspberry pi, cyber capture the flag, Defcon 416, Plex, Impact and science of technology addiction and addiction in general, Cyber deception technology, Cryptocurrency, Ted Talks, Startups

Volunteer Experience

  • Board Game Event Organizer, Mississauga, ON, 2013-06, 2016-07
  • Full-Time Missionary, Fresno, California, USA, 2009-03, 2011-04
  • Scouts Canada Leader, Oakville, ON, 2006-01, 2009-03

Languages & Technologies

English
Native/ Bilingual

References

References available upon request.

Timeline

Senior Manager/Technical Lead – Risk Advisory – Detect and Respond

Deloitte Canada Inc.
04.2022 - 07.2025

Senior Manager and Senior Information Security Specialist

TD Bank
11.2020 - 04.2022

Senior IT Security Engineer

TD Bank
10.2019 - 10.2020

Senior IT Security Analyst

TD Bank
01.2016 - 10.2019

IT Security Analyst (Intern/Co-op)

TD Bank
05.2015 - 12.2015

Co-Founder

Solid Board Gamers (now LVUp Games)
03.2013 - 07.2016

Software Specialist

Zarpac Performance Index
04.2011 - 05.2015

Junior .NET Analyst

Zarpac Performance Index
06.2008 - 03.2009

Bachelor of Applied Information Sciences - Information Systems Security

Sheridan College

Computer Programmer Diploma -

Sheridan College

Similar Profiles

CREATE PROFILE
John Kay