Director, Threat Modelling – GCS
City : TORONTO, Ontario, Canada
Category : Technology | Analytics | Research
Industry : Financial/Banking
Employer : RBC
Job Summary
Job Description
What is the opportunity?
Are you a cyber security professional with an interest in threat modelling? Would you like to work with application development teams to build a scalable threat modelling program? We’ve got the role for you!
We are looking for a Director to build out the Threat Modelling capability at our organization. We need you to help us design, deploy, and maintain a program that facilitates effective threat modelling across the entirety of RBC and our subsidiaries. In this role, you will have the opportunity to work with a broad variety of stakeholders to establish the threat modelling program and materially improve the cyber resilience of our organization. The program you deliver will support the entirety 90,000+ team members across the globe!
This is a unique opportunity for a driven professional that enjoys refining their skills, consistently learning, and overcoming complex problems in a global organization.
What will you do?
Lead the design and implementation of a scalable organization-wide and application threat modelling program
Establish standards, guidelines, and training material for identifying and mitigating application-focused threats
Work closely with Development, DevOps, and Application Security teams to integrate threat modelling into the software development lifecycle (SDLC)
Build and manage a team of threat modelling experts, providing mentorship and career development guidance and opportunities
Enable application owners and developers to understand threats and appropriately prioritize security issues and mitigations
Socialize aggregated threat modelling insights with executive team members
Develop OKRs, KPIs, and metrics to measure the effectiveness of the threat modelling initiatives.
What do you need to succeed?
Must Have’s:
8+ years of experience in application security, threat modelling, or related cyber security roles
Demonstrated experience in building broad-reaching programs in large organizations
Expertise in threat modelling methodologies (e.g. STRIDE, DREAD, PASTA, etc.) and relevant tools
Strong written and verbal communication skills with the ability to translate technical findings into business-oriented insights
Ability to analyze decompose and analyze complex application architectures
Strong understanding of networking and operating systems (Windows, MacOS, Linux, Unix)
Understanding of modern, cloud centric architectures and DevOps principles.
A strong understanding of offensive security tactics, techniques, and procedures
Nice-to-Have’s:
Certifications in the Cyber Security domain
Above average performance. You are competitive and passionate. You thrive on challenge and have a proven ability to set ambitious but achievable goals and surpass them
A team player. At RBC we work together. You will be the type of person that brings that approach to your work. You will have a proven ability to build, grow, and maintain relationships both internally and externally.
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
Leaders who support your development through coaching and managing opportunities
Ability to make a difference and lasting impact
Work in a dynamic, collaborative, progressive, and high-performing team
A world-class training program in financial services
Flexible work/life balance options
Opportunities to do challenging work
#LI-Post
#LI-Hybrid
#TechPJ
Job Skills
Critical Thinking, Cyber Security Management, Decision Making, Detail-Oriented, Information Security Management, Information Technology Security, Interpersonal Relationship Management, IT Security Architecture, Performance Management (PM)Additional Job Details
Address:
City:
Country:
Work hours/week:
Employment Type:
Platform:
Job Type:
Pay Type:
Posted Date:
Application Deadline:
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.