Job Summary
Job Description
What is the Opportunity?
The Director of Application Security (AppSec) Engineering will provide leadership and execution in the area of security design, build and deployment of innovative security capabilities to enable RBC developer community to build and maintain secure applications across RBC business and subsidiaries. The successful candidate will assume the ownership and accountability of the features & capabilities aligned to the AppSec Roadmap to ensure effective pragmatic capabilities are seamlessly integrated and adopted across the enterprise.
What will you do?
Strategic Leadership
Develop, evolve and oversee the execution of the RBC AppSec Engineering Roadmap aligned with the bank's overall security and business objectives
Lead the planning, execution, communication and reporting of AppSec Engineering initiatives in all of financial, resource, scope and schedule aspects
Collaboration and Communication:
Foster an application security-aware culture that highlights the value propositions of application development and partnership
Provide subject matter expert thought leadership and direction on application security design, build, deployment and enhancements
Contribute to design, implementation, and management of application security architectures, ensuring they are scalable and adaptable to evolving threats.
Risk Management and Compliance:
Improve Application Security by identifying & partnering with stakeholders to remediate gaps in security coverage for external/internal applications
Act as the trusted advisor on application security matters for executives, application development teams, cyber security and risk management groups
Resolve issues and conflicts in project executions and day to day operations
Team Leadership and Development:
Direct a team of AppSec professionals to introduce effective and pragmatic application security technologies and processes that align with RBC's application development methodologies
Identify and address skill gaps within the team, ensuring continuous professional development and upskilling.
Innovation and Technology
Stay abreast of industry-leading trends, best practices, technologies; and determine how they align with the strategy
Collaborate with stakeholders in the evaluation and implementation of security tools and technologies to protect applications effectively.
What do you need to succeed?
Must-have:
5+ year of proven track record building and delivering cross-functional technology solutions.
5+ year experience leading and growing highly skilled engineering teams.
7+ years of software engineering experience in all phases of the software development lifecycle.
Expert understanding of software development methodologies and concepts, such as Agile, CI/CD practices and infrastructure automation tools.
Working knowledge of enterprise level languages, e.g. Java, .NET, Javascript, Python, Go.
Excellent organizational, communication, interpersonal, motivational skills in achieving business objectives.
Nice-to-have:
Working knowledge of application security solutions: SAST, DAST, SCA, API Security and Software Supply Chain Security.
Undertanding of security community groups like OWASP and MITRE CWE, and their role in the application security domain.
Experience with cybersecurity frameworks: e.g. NIST, CIS Controls, ISO 27001.
RBC is committed to supporting flexible work arrangements when and where available. Details to be discussed with Hiring Manager.
What's in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference in our communities, and achieving success that is mutual.
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
Leaders who support your development through coaching and managing opportunities
Ability to make a difference and lasting impact
Work in a dynamic, collaborative, progressive, and high-performing team
A world-class training program in financial services
Flexible work/life balance options
Opportunities to do challenging work
#LI-Hybrid
#LI-POST
#TECHPJ
Job Skills
Application Development, Application Programming Interface (API) Security, Application Security, Application Security Reviews, Coaching Others, Communication, Cyber Security Management, Decision Making, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration, People Management, Security Architecture Design, Security Information and Event Management (SIEM), Security Technologies, Security Tools, Software Development Life Cycle (SDLC), Team LeadershipAdditional Job Details
Address:
City:
Country:
Work hours/week:
Employment Type:
Platform:
Job Type:
Pay Type:
Posted Date:
Application Deadline:
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.