Talent.com
Application Security Consultant - Global Security

Application Security Consultant - Global Security

Royal Bank of Canada>TORONTO, Canada
8 days ago
Job type
  • Full-time
Job description

Job Summary

Job Description

The Application Security team is undertaking multiple complex enterprise-wide initiatives to improve the security and quality of RBC applications. In this role, you will provide technical execution and expertise in the area of application security tools for the global RBC business and application development teams across all enterprise information technology groups. Primarily, you act as a primary point of contact for application teams, prioritizing and triaging SAST Security scan results, and communicating the needs of application teams to strategic security leadership. As the vital link between security and developer functions, your expertise will contribute to the development of application security best practices, tools, and processes within RBC. This role will require you to understand various application security testing techniques such as SAST, SCA, and DAST.

WHAT WILL YOU DO?

  • Support end users of application security testing tools, managing tickets through a ticketing platform
  • Proactively solve problems to ensure application development teams are able to best use the latest application security testing tools
  • Educate key organizational stakeholders (e.g. developers, security consultants, executives) on application security matters across the organization
  • Assist in the integration of application security processes and tools into existing enterprise development processes and pipelines
  • Participate in and lead a range of application security assessment activities
  • Assist in the development, evaluation, and implementation of application security testing processes and tools
  • Work in a diverse environment leveraging other team members’ experience and knowledge
  • Research and keep up to date on application security emerging threats, techniques, tools, and trends

WHAT DO YOU NEED TO SUCCEED?

Must have :

  • Exposure to application security best practices such as secure coding, security testing techniques and Secure Software Development Lifecycle
  • 3+ years of experience in supporting SAST / SCA / DAST tools, especially in a role responsible for triaging findings and refining scanning rules.
  • 3+ years of experience in code review
  • 2+ years of experience developing and testing apps in any of the following programming languages : Python, Java, Bash, Perl, JavaScript, C++, C#
  • Strong ability to manage client and stakeholder relations
  • Understanding of CI / CD, DevOps and DevSecOps approaches and experience working with DevOps tools
  • Knowledge of OWASP, SANS or other security-related frameworks
  • Nice-to-have :

  • Experience with Threat Modelling and Risk Assessment activities
  • Understanding and experience in agile methodology
  • What’s in it for you?

    We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

  • A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
  • Leaders who support your development through coaching and managing opportunities
  • Ability to make a difference and lasting impact
  • Work in a dynamic, collaborative, progressive, and high-performing team
  • A world-class training program in financial services
  • Flexible work / life balance options
  • Opportunities to do challenging work
  • LI-HYBRID

    LI-POST

    TechPJ

    Job Skills

    Application Security, Critical Thinking, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration

    Additional Job Details

    Address :

    330 FRONT ST W : TORONTO

    City : TORONTO

    Country : Canada

    Work hours / week : 37.5

    Employment Type : Full time

    Platform :

    TECHNOLOGY AND OPERATIONS

    Job Type : Regular

    Pay Type : Salaried

    Posted Date : 2024-11-29

    Application Deadline :

    2025-01-20

    Note : Applications will be accepted until 11 : 59 PM on the day prior to the application deadline date above

    I nclusion and Equal Opportunity Employment

    At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.

    We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.

    Join our Talent Community

    Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

    Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com .