Sr Network Security Engineer designing security architectures and leading security initiatives for RBC. Collaborating across teams to deliver multi - layered security solutions and mentoring team members in engineering best practices.
About the role
- Senior Threat Modeller enhancing cybersecurity threat modeling for RBC. Collaborating with diverse teams to improve and implement secure by design principles across the enterprise.
Responsibilities
- Design and implement threat modelling practices that are low-friction, high-value, and scalable across the organization
- Define and analyze potential threat scenarios to identify security gaps and assess associated risks
- Develop and provide recommendations on threat mitigation or remediation
- Deliver threat models for applications, systems, and architecture patterns
- Perform code and architectural design reviews for internal and external software products
- Conduct and facilitate threat modelling workshops with technical and business stakeholders
- Design, develop, and implement tooling and processes to support threat modeling activities
- Design, develop, and deliver security training and education programs for application developers, project managers, architects, and similar roles
- Prioritize and track application security issues across the organization
- Lead implementation efforts for security initiatives and resolutions resulting from internal and external assessments
- Ensure that issues identified are appropriately prioritized and addressed in future product releases
- Work with development teams to guarantee timely resolution of issues
- Identify and provide application security recommendations during requirement and design reviews
- Track open issues and follow up with different teams to address open issues
- Communicates technical information to a non-technical audience and non-technical information to a technical audience in a cross-site and cross-functional setting
- Enable application owners and developers to understand threats and appropriately prioritize security issues and mitigations.
Requirements
- Minimum of a B.S. in Computer Science, MIS or related degree and 5 years of related experience in information security, development, software engineering or a combination of education, training and experience.
- Expertise in threat modelling methodologies (e.g., STRIDE, DREAD, PASTA, etc.) and modern threat modelling tooling
- Strong written and verbal communication skills with the ability to translate technical findings into business-oriented insights
- Ability to analyze decompose and analyze complex application architectures
- Strong understanding of networking and operating systems (Windows, MacOS, Linux, Unix)
- Experience working with waterfall, agile, agile variants, and hybrid methodologies of software development
- Understanding of modern, cloud centric architectures and DevOps principles
- A strong understanding of offensive security tactics, techniques, and procedures.
- Certifications in the Cyber Security domain (Nice-to-Have’s)
- Experience with designing and delivering training programs for a technical audience (Nice-to-Have’s)
- Previous Big 4 consulting experience (Nice-to-Have’s)
- Prior experience in banking/ financial services industry (Nice-to-Have’s)
- Computer Information Systems Security Professional (CISSP) certification or the ability to obtain within six (6) months (Nice-to-Have’s)
Benefits
- A comprehensive Total Rewards Program including bonuses and flexible benefits
- Competitive compensation
- Commissions and stock where applicable
- Dedicated budget for annual training and conference attendance
- Leaders who support your development through coaching, training, and managing opportunities.
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- Opportunities to do challenging work.
- Opportunities to take on progressively greater accountabilities.
- Opportunities to build close relationships with various cyber security teams.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Security Engineer supporting security engineering and SIEM administration at Ardent. Focused on improving threat detection and response within vSOC environments in Washington, D.C.
SY
Mainframe Support Engineer ensuring stability and performance of enterprise mainframe systems. Troubleshooting complex issues and collaborating with development, operations, and security teams for optimal system management.
IAM / IGA Security Engineer designing and implementing identity governance solutions. Collaborating with Security, IT, HR, and business stakeholders to ensure secure access governance.
Senior Consultant helping the Ministry of Defence with large - scale ICT projects and innovations in technology and security. Lead developments in networks and applications in cooperation with Defence Architects.
Software Security Engineer at Spectro Cloud focusing on securing Kubernetes - based platforms for AI infrastructure. Responsible for implementing security controls and managing incident responses across the platform.
Lead Information Security initiatives at Starling, the UK's leading digital bank. Manage policy frameworks, team performance, and ensure compliance with security standards.
Technical Operator handling ticket resolution and IT troubleshooting in a structured team environment for Managed Security Services. Interfacing with varied technical tools to support international clients.
Support Health, Safety, and Security processes at East West Rail. Coordinate training, manage budgets, and ensure compliance with regulatory standards.
AI Security Engineer focusing on adversarial machine learning and enterprise security architecture. Leading red team engagements and translating technical risk into governance frameworks.