Royal Bank of Canada
Job title:
Senior Threat Hunter (Global Security)
Company
Royal Bank of Canada
Job description
Job Summary Provides technical expertise on the development and support of all activities, processes, and tools needed to protect information security. Applies extensive, in-depth knowledge, skills, and practices to perform complex assignments.Job DescriptionWhat is the opportunity?Do you enjoy cyber security research and innovation, proactive thinking and problem solving, in a challenging and adaptive environment while constantly thinking outside of the box? If so, this opportunity is right for you!RBC`s Cyber Threat Hunting team is responsible for the proactive identification and detection of sophisticated threat actors and insider threats that might pose a risk to the organization and employees. We are a team of experienced and enthusiastic security experts, researchers, and innovators that are passionate about solving complex cyber security problems, developing novel solutions, and building prototypes in areas where security vendors are one step behind. We engineer tailor-made detections that will reduce risk to our organization, employees, and clients.We’re looking for an experienced Senior Cyber Threat Hunter who is constantly thinking outside the box, ready to dive deep into the smallest details, is passionate about cybersecurity and has a natural detective sense. The right candidate has experience in both offensive and defensive operations and enjoys innovation and security research.What will you do?Create detection engineering solutions to proactively identify and mitigate sophisticated threat actors (APTs/UNCs) and insider threatsAnalyze, research and reverse engineer Tactics Techniques and Procedures (TTPs) and malware samples to create detections based on industry leading frameworks such as MITRE ATT&CKDevelop, plan, lead and participate in Purple Team Exercises focusing on and discovering and mitigating emerging threatsInnovate and create novel solutions including User Behavior Analytics (UBA) models by leveraging Data Science and Machine Learning (ML), bringing cybersecurity and data science closerCollaborate and foster relationships with multiple teams including Adversary Emulation (Red Team), Data Science, Threat Intelligence, Security Operation Centre (SOC) and Digital Forensics and Incident Response (DFIR) to drive pragmatic cyber security improvementWork closely with our dedicated Development team to create and enhance our threat hunting in-house developed productsAssist in developing, implementing, and refining our defensive tradecraft and toolingProvide bespoke advisory and consultation services to senior executive management and perform as a cyber security SME for emerging threats and investigationsWork and utilize vast data sources, data lakes and security vendor solutionsIn conjunction with other members of the Global Cyber Security group, you would ensure the ongoing enhancement of the threat hunting methodologies and overall strategy to detect and alert of cyber threatsWhat do you need to succeed?Must have5+ years of Cyber Security operations experience preferably comprised of both defensive and offensive rolesStrong Innovative and outside of the box thinking mindsetStrong communication and collaboration skillsFamiliarization with the cyber security Kill Chain phases and MITRE ATT&CK framework TTPsKnowledge of offensive security tools, techniques, and proceduresSolid grasp of cyber security controls/products including both endpoint, network, application, and infrastructureWell-rounded knowledge of various cyber security domains, focusing on operational securityKnowledge of current regional and global threat landscapeFoundational knowledge of Python and SQLNiceto haveCloud knowledge and expertise of leading cloud providers (AWS, GCP, Azure)Hands-on experience in malware analysis, reverse engineering, and security researchFinancial industry experience or previous experience working for a cyber security team or security vendorPrior experience conducting blue/purple team exercises or penetration testingStrong understanding of computing architecture, OS Internals and CPU architecturesProgramming languages such as C++/C#/JavaScript/AssemblyDigital Forensics skills including memory/network/OS/disk forensicsDefensive oriented certification such as GIAC GREM, GCFA or other reputable, technical, and defensive/offensive focused certificationWhat’s in it for you?We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicableLeaders who support your development through coaching and managing opportunitiesAbility to make a difference and lasting impactWork in a dynamic, collaborative, progressive, and high performing teamA world-class training program in financial servicesFlexible work/life balance optionsOpportunities to do challenging work#LI-Hybrid
#LI-POSTJob Skills Confidentiality, Cybersecurity, Cyber Security Management, Cyber Threat Hunting, Decision Making, Detail-Oriented, Encryption Software, Group Problem Solving, High Impact Communication, Incident Response, Information Security, Information Security Management, Information Technology Security, Security Research, Web Applications, Web ServicesAdditional Job DetailsAddress: 330 FRONT ST W:TORONTOCity: TORONTOCountry: CanadaWork hours/week: 37.5Employment Type: Full timePlatform: TECHNOLOGY AND OPERATIONSJob Type: RegularPay Type: SalariedPosted Date: 2024-10-22Application Deadline: 2025-01-11Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date aboveInclusion and Equal Opportunity EmploymentAt RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.Join our Talent CommunityStay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at .
Expected salary
Location
Toronto, ON
Job date
Wed, 23 Oct 2024 22:16:47 GMT
To help us track our recruitment effort, please indicate in your email/cover letter where (un-jobs.net) you saw this job posting.