Application & API Security Consultant (Global Security)

We are seeking a Application & API Security Consultant to join our dynamic API Security Runtime Protection team. You will play a key role in deploying and operationalizing API Runtime Protection solution, collaborating with cross-functional teams, and ensuring seamless integration across cloud and on-prem environments.

We are seeking a Application & API Security Consultant to join our dynamic API Security Runtime Protection team. You will play a key role in deploying and operationalizing API Runtime Protection solution, collaborating with cross-functional teams, and ensuring seamless integration across cloud and on-prem environments.

• API Runtime Protection Platform Deployment:Collaborate with development, engineering, and security teams to deploy the API Runtime Protection solution within the bank's cloud and on-prem infrastructure.
• Process, Procedures, and Controls Deployment:Assist in the development of processes, procedures, and controls for the new API Runtime Protection capability.
• Automation:Collaborate with engineering teams to automate security processes and controls.
• Stakeholder Engagement and Documentation:Liaise with internal teams and vendors to drive implementation forward, document processes and configurations, and provide regular updates to senior leadership.

• 3+ years of experience in Application & API security or DevSecOps
• Strong knowledge of API protocols/frameworks (e.g., REST, SOAP, GraphQL, gRPC) and API gateways (e.g., Apigee, Kong)
• Understanding of OWASP API Security Top 10 and secure coding practices
• Familiarity with Kubernetes, Docker, and CI/CD tools (e.g., Jenkins, GitHub Actions)
• Experience working in cloud environments such as AWS, Azure, or GCP
• Scripting skills (e.g., Python, Bash) for automation and monitoring tasks

• Knowledge of API Runtime Protection Platforms such as SALT Security, Traceable.ai, Akamai API Security
• Experience with API Security frameworks (NIST 800-228) and API Security Testing tools (DAST, AST, etc.)
• Knowledge of data residency requirements and compliance frameworks (e.g., GDPR, PCI-DSS, NIST CSF)
• Security certifications such as CISSP, CSSLP, CASP, CEH, or Certified DevSecOps Engineer

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
• Leaders who support your development through coaching and managing opportunities
• Work in a dynamic, collaborative, progressive, and high-performing team
• Ability to make a difference and lasting impact
• Opportunities to do challenging work
• Opportunities to take on progressively greater accountabilities

Application Security, Critical Thinking, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration

Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.

Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.

At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.

Address: 16 YORK ST:TORONTO

City: Toronto

Country: Canada

Work hours/week: 37.5

Employment Type: Full time

Platform: TECHNOLOGY AND OPERATIONS

Job Type: Regular

Pay Type: Salaried

Posted Date: 2025-11-21

Application Deadline: 2025-12-10

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above