Triage Security Analyst (Global Security)

Royal Bank of Canada

Job title:

Triage Security Analyst (Global Security)

Company

Royal Bank of Canada

Job description

Job SummaryJob DescriptionWHAT IS THE OPPORTUNITY?The role of the Security Analyst, Triage is to provide technical security expertise and support for the threat monitoring & triage team within the Cyber Security Operations Center (CSOC). This is an important role supporting mission critical enterprise networks and IT services protection for City National Bank (CNB), a subsidiary of RBC. This role will provide technical expertise and analysis to the proactive and reactive responses to information security threats against CNB’s global environment. The successful candidate will be performing first line investigation and response actions, including the triaging of security detections and escalation of security incidents. The Security Analyst, Triage will also maintain awareness of emerging/advanced threats and assist in driving efficient security solutions to address the evolving threat landscape. This role partners with CNB CSOC & RBC leadership to further the organization’s Intelligence-led Security and Resilient Services objectives.WHAT WILL YOU DO?Global accountability to respond to critical security incidents/events providing accurate and timely reporting to CSOC and Global Security leadershipProvide support for high risk security incidents escalated from Managed Security Services (MSS), CSOC peers, Global Security and other lines of businessPerform investigation and triage activities of security related events that are deemed high risk or pose a significant threat to the organizationDetailed technical research and analysis of relevant security events, often complex in design and their potential impact to the organizationEscalation of threats against the organization to management and Incident Response team as required based on severity level of threatsDevelop, distribute and present technical findings with regards to threats, attack vectors and mitigation techniques including the creation and tracking of security metricsProactive searching activities to look for unknown threats and suspicious behavior within the environmentCollaborate with partner groups for tuning of monitoring rules and automation of security tasks to keep CSOC’s monitoring capabilities relevant and up to date with a minimal level of false positivesWHAT DO YOU NEED TO SUCCEED?Must have:

  • Experience in performing investigation and triage activities of security related events
  • Experience in all aspects of Security Operations Center and how the organization supports/adds value to the rest of the organization
  • Strong platform knowledge including Microsoft Windows and Unix/Linux Operating Systems and scripting languages (bash, python, regex, PowerShell, etc..)
  • Thorough understanding of SIEM technology and security related controls(IDS/IPS, WAF, NDR/EDR, etc..)
  • Experience with SOAR product
  • Knowledge of cybersecurity frameworks (Cyber Kill Chain, NIST, MITRE ATT&CK, etc..)
  • Availability for rotating pager duty support for after hours, holidays

Nice-to-have:

  • Experience with malware analysis
  • Strong Networking knowledge with TCP/IP packet level knowledge
  • Bachelor’s degree in Computer Science or related field
  • Industry recognized certifications (ISC2, SANS, ISACA, etc..)

What’s in it for you?We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicableLeaders who support your development through coaching and managing opportunitiesAbility to make a difference and lasting impactWork in a dynamic, collaborative, progressive, and high-performing teamA world-class training program in financial servicesFlexible work/life balance optionsOpportunities to do challenging work#LI-HYBRID#LI-POSTJob Skills Confidentiality, Cyber Security Management, Decision Making, Detail-Oriented, Encryption Software, Group Problem Solving, High Impact Communication, Information Security Management, Information Technology SecurityAdditional Job DetailsAddress: VANCOUVER MAIN BRANCH (B), 1055 GEORGIA ST W:VANCOUVERCity: VANCOUVERCountry: CanadaWork hours/week: 37.5Employment Type: Full timePlatform: TECHNOLOGY AND OPERATIONSJob Type: RegularPay Type: SalariedPosted Date: 2024-11-14Application Deadline: 2025-01-31Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date aboveInclusion and Equal Opportunity EmploymentAt RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.Join our Talent CommunityStay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at .

Expected salary

Location

Vancouver, BC

Job date

Fri, 15 Nov 2024 23:27:32 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (un-jobs.net) you saw this job posting.

To apply for this job please visit jobviewtrack.com.

Job Location