Director of Application Security, Runtime Protection (Global Security)
Top Benefits
About the role
What is the opportunity?
The Director of Application Security (AppSec) Runtime Protection will provide leadership and execution in the area of compliance to security standards & provide security protections for application security to all RBC business and application development teams. The successful candidate will assume the ownership and accountability of the features & capabilities aligned to the AppSec Roadmap to ensure effective pragmatic capabilities are seamlessly integrated and adopted across the enterprise.
What will you do?
- Strategic Leadership - Develop, evolve and oversee the execution of the RBC AppSec Runtime Protection Roadmap aligned with the bank's overall security and business objectives. Lead the planning, execution, communication and reporting of AppSec Runtime Protection initiatives in all of financial, resource, scope and schedule aspects
- Collaboration and Communication: - Foster an application security-aware culture that highlights the value propositions of application development and application security integration and partnership. Provide subject matter expert thought leadership and direction on application security policy, standard and governance models.
- Risk Management and Compliance: Improve Application and API Security by identifying & partnering with stakeholders to remediate gaps in security coverage for external/internal applications. Act as the trusted advisor on application security matters for executives, application development teams, cyber security and risk management groups
- Team Leadership and Development: Direct a team of AppSec professionals to introduce effective and pragmatic application security technologies and processes that align with RBC’s application development methodologies. Identify and address skill gaps within the team, ensuring continuous professional development and upskilling.
- Innovation and Technology - Stay abreast of industry-leading trends, best practices, technologies; and determine how they align with the strategy. Collaborate with stakeholders in the evaluate and implementation of security tools and technologies to protect applications and APIs effectively.
What do you need to succeed? Must-have:
- 10+ years of experience in software engineering, infrastructure, or security; with significant time spent in DevSecOps, App Security Engineering roles
- 7+ years experience in a leadership role building or managing DevSecOps/ SecOps/ SRE teams
- Working knowledge of enterprise level languages, e.g. Java, .NET, Javascript, PHP, node.JS
- Deep experience with security tools: SAST, DAST, SCA, container scanning
- Strong working knowledge of application security technologies such as Checkmarx, Sonatype, JFrog, WebInspect, AppScan, BurpSuite, Blackduck, Snyk
- Knowledge of application security frameworks, such as BSIMM, SAMM, ISO27034, BITS, SAFECode
- Excellent organizational, communication, interpersonal, motivational skills in achieving business objectives
Nice to have:
- Previous experience deploying security tools, or rolling out endpoint/ security agents
- Prior experience in banking or financial services/ regulated industries
What's in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
-
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
-
Leaders who support your development through coaching and managing opportunities
-
Work in a dynamic, collaborative, progressive, and high-performing team
-
Ability to make a difference and lasting impact
-
Opportunities to do challenging work
-
Opportunities to take on progressively greater accountabilities
#LI-POST
#TechPJ
About RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clients thrive and communities prosper. As Canada's biggest bank and one of the largest in the world, based on market capitalization, we have a diversified business model with a focus on innovation and providing exceptional experiences to our more than 17 million clients in Canada, the U.S. and 27 other countries. Learn more at rbc.com. We are proud to support a broad range of community initiatives through donations, community investments and employee volunteer activities. See how at www.rbc.com/community-social-impact.
La Banque Royale du Canada est une institution financière mondiale définie par sa raison d'être, guidée par des principes et orientée vers l'excellence en matière de rendement. Notre succès est attribuable aux quelque 94 000+ employés qui mettent à profit leur créativité et leur savoir faire pour concrétiser notre vision, nos valeurs et notre stratégie afin que nous puissions contribuer à la prospérité de nos clients et au dynamisme des collectivités. Selon la capitalisation boursière, nous sommes la plus importante banque du Canada et l'une des plus grandes banques du monde. Nous avons adopté un modèle d'affaires diversifié axé sur l'innovation et l'offre d'expériences exceptionnelles à nos plus de 17 millions de clients au Canada, aux États Unis et dans 27 autres pays. Pour en savoir plus, visitez le site rbc.com/francais
Nous sommes fiers d'appuyer une grande diversité d'initiatives communautaires par des dons, des investissements dans la collectivité et le travail bénévole de nos employés. Pour de plus amples renseignements, visitez le site www.rbc.com/collectivite-impact-social.
Director of Application Security, Runtime Protection (Global Security)
Top Benefits
About the role
What is the opportunity?
The Director of Application Security (AppSec) Runtime Protection will provide leadership and execution in the area of compliance to security standards & provide security protections for application security to all RBC business and application development teams. The successful candidate will assume the ownership and accountability of the features & capabilities aligned to the AppSec Roadmap to ensure effective pragmatic capabilities are seamlessly integrated and adopted across the enterprise.
What will you do?
- Strategic Leadership - Develop, evolve and oversee the execution of the RBC AppSec Runtime Protection Roadmap aligned with the bank's overall security and business objectives. Lead the planning, execution, communication and reporting of AppSec Runtime Protection initiatives in all of financial, resource, scope and schedule aspects
- Collaboration and Communication: - Foster an application security-aware culture that highlights the value propositions of application development and application security integration and partnership. Provide subject matter expert thought leadership and direction on application security policy, standard and governance models.
- Risk Management and Compliance: Improve Application and API Security by identifying & partnering with stakeholders to remediate gaps in security coverage for external/internal applications. Act as the trusted advisor on application security matters for executives, application development teams, cyber security and risk management groups
- Team Leadership and Development: Direct a team of AppSec professionals to introduce effective and pragmatic application security technologies and processes that align with RBC’s application development methodologies. Identify and address skill gaps within the team, ensuring continuous professional development and upskilling.
- Innovation and Technology - Stay abreast of industry-leading trends, best practices, technologies; and determine how they align with the strategy. Collaborate with stakeholders in the evaluate and implementation of security tools and technologies to protect applications and APIs effectively.
What do you need to succeed? Must-have:
- 10+ years of experience in software engineering, infrastructure, or security; with significant time spent in DevSecOps, App Security Engineering roles
- 7+ years experience in a leadership role building or managing DevSecOps/ SecOps/ SRE teams
- Working knowledge of enterprise level languages, e.g. Java, .NET, Javascript, PHP, node.JS
- Deep experience with security tools: SAST, DAST, SCA, container scanning
- Strong working knowledge of application security technologies such as Checkmarx, Sonatype, JFrog, WebInspect, AppScan, BurpSuite, Blackduck, Snyk
- Knowledge of application security frameworks, such as BSIMM, SAMM, ISO27034, BITS, SAFECode
- Excellent organizational, communication, interpersonal, motivational skills in achieving business objectives
Nice to have:
- Previous experience deploying security tools, or rolling out endpoint/ security agents
- Prior experience in banking or financial services/ regulated industries
What's in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
-
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
-
Leaders who support your development through coaching and managing opportunities
-
Work in a dynamic, collaborative, progressive, and high-performing team
-
Ability to make a difference and lasting impact
-
Opportunities to do challenging work
-
Opportunities to take on progressively greater accountabilities
#LI-POST
#TechPJ
About RBC
Royal Bank of Canada is a global financial institution with a purpose-driven, principles-led approach to delivering leading performance. Our success comes from the 94,000+ employees who leverage their imaginations and insights to bring our vision, values and strategy to life so we can help our clients thrive and communities prosper. As Canada's biggest bank and one of the largest in the world, based on market capitalization, we have a diversified business model with a focus on innovation and providing exceptional experiences to our more than 17 million clients in Canada, the U.S. and 27 other countries. Learn more at rbc.com. We are proud to support a broad range of community initiatives through donations, community investments and employee volunteer activities. See how at www.rbc.com/community-social-impact.
La Banque Royale du Canada est une institution financière mondiale définie par sa raison d'être, guidée par des principes et orientée vers l'excellence en matière de rendement. Notre succès est attribuable aux quelque 94 000+ employés qui mettent à profit leur créativité et leur savoir faire pour concrétiser notre vision, nos valeurs et notre stratégie afin que nous puissions contribuer à la prospérité de nos clients et au dynamisme des collectivités. Selon la capitalisation boursière, nous sommes la plus importante banque du Canada et l'une des plus grandes banques du monde. Nous avons adopté un modèle d'affaires diversifié axé sur l'innovation et l'offre d'expériences exceptionnelles à nos plus de 17 millions de clients au Canada, aux États Unis et dans 27 autres pays. Pour en savoir plus, visitez le site rbc.com/francais
Nous sommes fiers d'appuyer une grande diversité d'initiatives communautaires par des dons, des investissements dans la collectivité et le travail bénévole de nos employés. Pour de plus amples renseignements, visitez le site www.rbc.com/collectivite-impact-social.