Director, Threat Modelling - Global Security

December 12 2024
Industries Bank, Insurance, Financial services
Categories Security, Continuity, Risk,
Toronto, ON • Full time

Job Summary

Job Description

What is the opportunity?

Are you a cyber security professional with an interest in threat modelling? Would you like to work with application development teams to build a scalable threat modelling program? We've got the role for you!

We are looking for a Director to build out the Threat Modelling capability at our organization. We need you to help us design, deploy, and maintain a program that facilitates effective threat modelling across the entirety of RBC and our subsidiaries. In this role, you will have the opportunity to work with a broad variety of stakeholders to establish the threat modelling program and materially improve the cyber resilience of our organization. The program you deliver will support the entirety 90,000+ team members across the globe!

This is a unique opportunity for a driven professional that enjoys refining their skills, consistently learning, and overcoming complex problems in a global organization.

What will you do?

  • Lead the design and implementation of a scalable organization-wide and application threat modelling program

  • Establish standards, guidelines, and training material for identifying and mitigating application-focused threats

  • Work closely with Development, DevOps, and Application Security teams to integrate threat modelling into the software development lifecycle (SDLC)

  • Build and manage a team of threat modelling experts, providing mentorship and career development guidance and opportunities

  • Enable application owners and developers to understand threats and appropriately prioritize security issues and mitigations

  • Socialize aggregated threat modelling insights with executive team members

  • Develop OKRs, KPIs, and metrics to measure the effectiveness of the threat modelling initiatives.

What do you need to succeed?

Must Have's:

  • 8+ years of experience in application security, threat modelling, or related cyber security roles

  • Demonstrated experience in building broad-reaching programs in large organizations

  • Expertise in threat modelling methodologies (e.g. STRIDE, DREAD, PASTA, etc.) and relevant tools

  • Strong written and verbal communication skills with the ability to translate technical findings into business-oriented insights

  • Ability to analyze decompose and analyze complex application architectures

  • Strong understanding of networking and operating systems (Windows, MacOS, Linux, Unix)

  • Understanding of modern, cloud centric architectures and DevOps principles.

  • A strong understanding of offensive security tactics, techniques, and procedures

Nice-to-Have's:

  • Certifications in the Cyber Security domain

  • Above average performance. You are competitive and passionate. You thrive on challenge and have a proven ability to set ambitious but achievable goals and surpass them

  • A team player. At RBC we work together. You will be the type of person that brings that approach to your work. You will have a proven ability to build, grow, and maintain relationships both internally and externally.

What's in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

  • A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable

  • Leaders who support your development through coaching and managing opportunities

  • Ability to make a difference and lasting impact

  • Work in a dynamic, collaborative, progressive, and high-performing team

  • A world-class training program in financial services

  • Flexible work/life balance options

  • Opportunities to do challenging work

#LI-Post

#LI-Hybrid

#TechPJ

Job Skills

Critical Thinking, Cyber Security Management, Decision Making, Detail-Oriented, Information Security Management, Information Technology Security, Interpersonal Relationship Management, IT Security Architecture, Performance Management (PM)

Additional Job Details

Address:

330 FRONT ST W:TORONTO

City:

TORONTO

Country:

Canada

Work hours/week:

37.5

Employment Type:

Full time

Platform:

TECHNOLOGY AND OPERATIONS

Job Type:

Regular

Pay Type:

Salaried

Posted Date:

2024-10-09

Application Deadline:

2024-12-18

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above

Inclusion and Equal Opportunity Employment

At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
​​​​​​​
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.

Join our Talent Community

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.

Apply now!

Similar offers

Searching...
No similar offer found.
An error has occured, try again later.

Jobs.ca network