Lead defensive threat research on generative and agentic AI systems at RBC. Identify emerging threats and develop proof - of - concept exploits to enhance AI security.
About the role
- Senior Security Detection Engineer providing expertise for RBC's Global Cyber Security. Develops automation for security use cases to enhance detection and response capabilities.
Responsibilities
- Provide global accountability to provide technical and subject matter expertise supporting cyber uses cases developed from security systems and infrastructure for security monitoring
- Work with RBC technology and/or application partners (Cybersecurity, Technology Infrastructure, SOC) to develop and strengthen use cases for continuous security monitoring
- Develop runbooks for those use cases that align with security operations processes and streamline the incident investigation and response tasks
- Work with Defensive Threat Operations Correlation Engineering to facilitate log ingestion and use case development in our SIEM platforms
- Periodically review use case library, perform attestation on existing use cases, participate in tuning discussions/activities and provide improvement recommendations where necessary/possible
- Develop and maintain lines of communication with various security groups, Security Operations Centre leadership and technology stakeholders
- Develop processes to support a maturing program
- Provide operational metrics and reports as needed
Requirements
- 2 to 5 years of industry experience
- Experience in cloud environments (AWS, Azure, GCP, OCP)
- Intermediate experience with Python
- Experience with building detections in SIEM
- Experience with automation in SOAR
- Educational background in IT, Engineering, Cybersecurity and/or equivalent relevant experience
- Demonstrated technical leadership ability
- In-depth understanding of Security Operations and Security Technologies, with previous experience working in a SOC environment
- Understanding of common exploitation techniques and awareness of new threats
- Strong analytical and complex problem-solving skills
- Expert understanding of SIEM technology and operations
- Strong Networking and Enterprise IT Infrastructure knowledge with TCP/IP packet level knowledge
- Certifications in information security (GCIH, GCSA, GPCS, GCTD, GCFR)
- Certifications in cloud platforms (AWS, Azure, GCP, or OCP)
- Experience in working within a large, global financial services company
- A good understanding of modern, cloud centric architectures and DevOps principles.
Benefits
- A comprehensive Total Rewards Program including bonuses and flexible benefits
- Competitive compensation
- Leaders who support your development through coaching and managing opportunities
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- A world-class training program in financial services
- Flexible work/life balance options
- Opportunities to do challenging work
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
System Security Administrator managing and securing eStruxture's IT infrastructure. Collaborating on security projects and ensuring operational excellence in data centers.
Bug Bounty Security Researcher identifying and reporting vulnerabilities in software applications and systems for Inspectiv. Contributing to improving security and participating in bug bounty programs.
Information Security Engineer safeguarding digital infrastructure at Forward Financing. Building automation workflows and enhancing security measures through proactive solutions and incident response.
Software Engineer focusing on security features for AI systems at Cohere, contributing to production security and secure coding practices.
Senior Security Engineer supporting end - to - end security architecture and compliance for healthcare AI startup. Designing Azure security solutions and partnering with engineering teams for integrated security throughout SDLC.
Security Engineer at Asymmetric Research specializing in security for L1/L2 blockchains and DeFi protocols. Design controls, conduct audits, and analyze vulnerabilities in Rust - based platforms.
Coordonnatrice en santé et sécurité au travail chez EXP, contribuant à la prévention et à la formation. Collaborant avec les équipes pour maintenir un environnement de travail sûr.
Senior Manager, IAM Control Assurance supporting identity and access management compliance within a global financial organization. Collaborating with cross - functional teams for regulatory and audit compliance.
Information Security Engineer at Deel ensuring cybersecurity for global operations. Act as SME in implementing security tools and frameworks across remote endpoints and cloud assets.