Full Stack Security Developer at RBC focused on embedding security into technology stack for financial transactions. Design, develop, and implement secure application systems while ensuring compliance with industry standards.
Responsibilities
Join our innovative PayEdge Technology team at RBC, where we're building the security foundation for accounts payable and accounts receivable solutions
Take ownership of designing, developing, and implementing secure application systems that protect critical financial transactions
Drive Security Excellence: Lead application security reviews, threat modeling, and code reviews to identify and mitigate vulnerabilities before they reach production
Own application security vulnerability management, from discovery through remediation and validation
Design and implement automated security testing frameworks to enforce secure coding practices across the development lifecycle
Ensure Compliance & Risk Management: Manage security release cycles and coordinate security patches across the organization
Support compliance and regulatory processes, including PCI certification, penetration testing, and annual security assessments
Identify and recommend security improvements to strengthen our overall application security posture
Foster a Security Culture: Mentor development and security teams through targeted training and knowledge-sharing initiatives
Collaborate across multiple departments and stakeholders to integrate security into agile project workflows
Champion security best practices as a trusted technical advisor
Requirements
Bachelor's degree in Computer Science, Engineering, or related field
5+ years of working experience with Laravel, PHP, and front-end technologies such as JavaScript, HTML, CSS and Angular framework
5+ years of hands-on experience with Java and SpringBoot
5+ years of experience working with RDBMS, e.g. MySQL, MSSQL, NoSQL, e.g. MongoDB, ELK and data streaming technologies (Kafka)
Expert in OWASP, static/dynamic analysis, and common security tools including Burp Suite and OWASP Zap
Strong skill in secure code review and remediation guidance
Knowledge of API security, authentication/authorization (OAuth2, JWT, OpenID Connect)
Understanding of secrets management and secure configuration practices
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.