More jobs:
Job Description & How to Apply Below
What is the Opportunity?
The role of the Senior Security Detection Engineer is to provide specialized subject matter expertise for the Detection Engineering & Automation (DEA) team within RBC's Global Cyber Security. This key technical role supports mission‑critical enterprise network security operations and IT services protection, driving development using automation to improve detection and response times.
What will you do?
Provide global accountability and technical expertise supporting cyber use cases developed from security systems and infrastructure for security monitoring.
Work with RBC technology and/or application partners (Cybersecurity, Technology Infrastructure, SOC) to develop and strengthen use cases for continuous security monitoring.
Develop runbooks for those use cases that align with security operations processes and streamline the incident investigation and response tasks.
Work with Defensive Threat Operations Correlation Engineering to facilitate log ingestion and use case development in our SIEM platforms.
Periodically review the use case library, perform attestation on existing use cases, participate in tuning discussions and provide improvement recommendations.
Develop and maintain lines of communication with various security groups, Security Operations Centre leadership and technology stakeholders.
Develop processes to support a maturing program.
Provide operational metrics and reports as needed.
What do you need to succeed?
2 to 5 years of industry experience.
Experience in cloud environments (AWS, Azure, GCP, OCP).
Intermediate experience with Python.
Experience building detections in SIEM.
Experience with automation in SOAR.
Educational background in IT, Engineering, Cybersecurity and/or equivalent relevant experience.
Demonstrated technical leadership ability.
In‑depth understanding of Security Operations and Security Technologies, with previous experience working in a SOC environment.
Understanding of common exploitation techniques and awareness of new threats.
Strong analytical and complex problem‑solving skills.
Expert understanding of SIEM technology and operations.
Strong networking and enterprise IT infrastructure knowledge with TCP/IP packet‑level knowledge.
Certifications in information security (GCIH, GCSA, GPCS, GCTD, GCFR).
Certifications in cloud platforms (AWS, Azure, GCP, or OCP).
Experience working within a large, global financial services company.
Good understanding of modern, cloud‑centric architectures and Dev Ops principles.
What’s in it for you?
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable.
Leadership support through coaching and development opportunities.
Opportunity to make a difference and create lasting impact.
Work in a dynamic, collaborative, progressive, and high‑performing team.
A world‑class training program in financial services.
Flexible work/life balance options.
Opportunities to take on challenging work.
Location:
745 Thurlow St, Vancouver, Canada.
Working hours:
37.5 per week.
Employment type:
full time (salaried).
#J-18808-Ljbffr
Position Requirements
10+ Years
work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×