Senior Security Detection Engineer (GCS)

September 3 2024
Industries Bank, Insurance, Financial services
Categories Bank, Insurance, Financial services,
Vancouver, BC • Full time

Job Summary

Job Description

What is the Opportunity?

The role of the Senior Security Detection Engineer is to provide specialized subject matter expertise for the Detection Engineering & Onboarding (DEO) team, for RBC's Global Cyber Security. This is a key technical role supporting mission critical enterprise network security operations and IT services protection. This role will drive development using automation to new or existing use cases to reduce the overall mean time to detect and respond to incidents.

This role will be based in Vancouver to best support our US subsidiary, City National Bank (CNB).

With your proven experience, collaboratively lead our CNB/RBC technology and application partners to develop and implement mission critical cyber use cases for security monitoring supporting security operations and Security Operations Centre capabilities.

What will you do?

  • Provide global accountability to provide technical and subject matter expertise supporting cyber uses cases developed from security systems and infrastructure for security monitoring.

  • Work with CNB/RBC technology and/or application partners (Cybersecurity, Technology Infrastructure, SOC) to develop and strengthen use cases for continuous security monitoring.

  • Develop runbooks for those use cases that align with security operations processes and streamline the incident investigation and response tasks.

  • Work with Defensive Threat Operations Correlation Engineering to facilitate log ingestion and use case development in our SIEM platforms.

  • Periodically review use case library, perform attestation on existing use cases, participate in tuning discussions/activities and provide improvement recommendations where necessary/possible.

  • Develop and maintain lines of communication with various security groups, Security Operations Centre leadership and technology stakeholders

  • Develop processes to support a maturing program

  • Provide operational metrics and reports as needed

What do you need to succeed?

Must have:

  • Educational background in IT, Engineering, Cybersecurity and/or equivalent relevant experience

  • Demonstrated technical leadership ability

  • In-depth understanding of Security Operations and Security Technologies, with previous experience working in a SOC environment

  • Understanding of common exploitation techniques and awareness of new threats

  • Strong analytical and complex problem-solving skills

  • Expert understanding of SIEM technology and operations

  • Strong Networking and Enterprise IT Infrastructure knowledge with TCP/IP packet level knowledge

Nice-to-have:

  • Strong platform knowledge including Microsoft Windows and Unix/Linux Operating Systems

  • Strong knowledge of cloud platforms and cloud security

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

  • A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable

  • Leaders who support your development through coaching and managing opportunities

  • Ability to make a difference and lasting impact

  • Work in a dynamic, collaborative, progressive, and high-performing team

  • A world-class training program in financial services

  • Flexible work/life balance options

  • Opportunities to do challenging work

#techpj

#LI-hybrid

#LI-post

Job Skills

Cloud Software, Communication, Cross-Departmental Collaboration, Cyber Operations, Cyber Security Management, Decision Making, Detail-Oriented, Group Problem Solving, High Impact Communication, Information Security Management, Information Technology Security, Network Security Operations, Security Automation, Security Operations, SIEM Tools, Strategic Thinking, Threat Detection, Threat Monitoring, Use Case Documentation

Additional Job Details

Address:

VANCOUVER MAIN BRANCH, 1025 GEORGIA ST W:VANCOUVER

City:

VANCOUVER

Country:

Canada

Work hours/week:

37.5

Employment Type:

Full time

Platform:

TECHNOLOGY AND OPERATIONS

Job Type:

Regular

Pay Type:

Salaried

Posted Date:

2024-07-19

Application Deadline:

2024-11-01

Inclusion and Equal Opportunity Employment

At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
​​​​​​​
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.

Apply now!

Similar offers

Searching...
No similar offer found.
An error has occured, try again later.

Jobs.ca network