Application & API Security Consultant (Global Security) at RBC Global Asset Management

Vancouver, British Columbia, Canada -

Full Time

Start Date

Immediate

Expiry Date

26 Feb, 26

Salary

0.0

Posted On

28 Nov, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Application Security, API Security, DevSecOps, API Protocols, API Gateways, OWASP, Kubernetes, Docker, CI/CD, Cloud Environments, Scripting, Automation, Security Certifications, Compliance Frameworks, Critical Thinking, Information Security

Industry

Description

Job Description What is the opportunity? We are seeking a Application & API Security Consultant to join our dynamic API Security Runtime Protection team. You will play a key role in deploying and operationalizing API Runtime Protection solution, collaborating with cross-functional teams, and ensuring seamless integration across cloud and on-prem environments. What will you do? API Runtime Protection Platform Deployment: Collaborate with development, engineering, and security teams to deploy the API Runtime Protection solution within the bank's cloud and on-prem infrastructure. Process, Procedures, and Controls Deployment: Assist in the development of processes, procedures, and controls for the new API Runtime Protection capability. Automation: Collaborate with engineering teams to automate security processes and controls. Stakeholder Engagement and Documentation: Liaise with internal teams and vendors to drive implementation forward, document processes and configurations, and provide regular updates to senior leadership. What do you need to succeed? Must-have: 3+ years of experience in Application & API security or DevSecOPs Strong knowledge of API protocols/frameworks (e.g., REST, SOAP, GraphQL, gRPC) and API gateways (e.g., Apigee, Kong) Understanding of OWASP API Security Top 10 and secure coding practices Familiarity with Kubernetes, Docker, and CI/CD tools (e.g., Jenkins, GitHub Actions) Experience working in cloud environments such as AWS, Azure, or GCP Scripting skills (e.g., Python, Bash) for automation and monitoring tasks Nice to Have: Knowledge of API Runtime Protection Platforms such as SALT Security, Traceable.ai, Akamai API Security Experience with API Security frameworks (NIST 800-228) and API Security Testing tools (DAST, AST, etc.) Knowledge of data residency requirements and compliance frameworks (e.g., GDPR, PCI-DSS, NIST CSF) Security certifications such as CISSP, CSSLP, CASP, CEH, or Certified DevSecOps Engineer What's in it for you? We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual. A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable Leaders who support your development through coaching and managing opportunities Work in a dynamic, collaborative, progressive, and high-performing team Ability to make a difference and lasting impact Opportunities to do challenging work Opportunities to take on progressively greater accountabilities #LI-POST #TechPJ Job Skills Application Security, Critical Thinking, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration Additional Job Details Address: 16 YORK ST:TORONTO City: Toronto Country: Canada Work hours/week: 37.5 Employment Type: Full time Platform: TECHNOLOGY AND OPERATIONS Job Type: Regular Pay Type: Salaried Posted Date: 2025-11-21 Application Deadline: 2025-12-10 Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above Inclusion and Equal Opportunity Employment At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all. Join our Talent Community Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you. Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.

Responsibilities

The consultant will deploy and operationalize the API Runtime Protection solution, collaborating with various teams to ensure integration across environments. They will also assist in developing processes and controls for the new capability.