Application Security Consultant

Job DescriptionWHAT IS THE OPPORTUNITY? The Application Security team is undertaking multiple complex enterprise-wide initiatives to improve the security and quality of RBC applications. In this role, you will provide technical execution and expertise in the area of application security tools for the global RBC business and application development teams across all enterprise information technology groups. Primarily, you act as a primary point of contact for application teams, prioritizing and triaging SAST Security scan results, and communicating the needs of application teams to strategic security leadership. As the vital link between security and developer functions, your expertise will contribute to the development of application security best practices, tools, and processes within RBC. This role will require you to understand various application security testing techniques such as SAST, SCA and DAST.WHAT WILL YOU DO? Support end users of application security testing tools, managing tickets through a ticketing platformProactively solve problems to ensure application development teams are able to best use the latest application security testing toolsEducate key organizational stakeholders (e.g. developers, security consultants, executives) on application security matters across the organizationAssist in the integration of application security processes and tools into existing enterprise development processes and pipelinesParticipate in and lead a range of application security assessment activitiesAssist in the development, evaluation, and implementation of application security testing processes and toolsWork in a diverse environment leveraging other team members’ experience and knowledgeResearch and keep up to date on application security emerging threats, techniques, tools, and trendsWHAT DO YOU NEED TO SUCCEED?Must have:Exposure to application security best practices such as secure coding, security testing techniques and Secure Software Development LifecycleExperience supporting SAST tools, especially in a role responsible for triaging findings and refining scanning rules.2+ Experience developing and testing apps in any of the following programming languages: Python, Java, Bash, Perl, JavaScript, C++, C#Strong ability to manage client and stakeholder relationsUnderstanding of CI/CD, DevOps and DevSecOps approaches and experience working with DevOps toolsKnowledge of OWASP, SANS or other security-related frameworksKnowledge of SAST Security Scanning toolsNice-to-have: Familiarity with AI/ML systems security -such as securing machine learning models or evaluating LLM-based applications – would be highly valuableExperience supporting SCA/DAST tools, especially in a role responsible for triaging findings and refining scanning rules.Experience with Threat Modelling and Risk Assessment activitiesUnderstanding and experience in agile methodologyWhat’s in it for you?We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicableLeaders who support your development through coaching and managing opportunitiesAbility to make a difference and lasting impactWork in a dynamic, collaborative, progressive, and high-performing teamA world-class training program in financial servicesFlexible work/life balance optionsOpportunities to do challenging work#LI-POST#TECHCPJJob SkillsApplication Security, Critical Thinking, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems IntegrationAdditional Job DetailsAddress:16 YORK ST:TORONTOCity:TorontoCountry:CanadaWork hours/week:37.5Employment Type:Full timePlatform:TECHNOLOGY AND OPERATIONSJob Type:RegularPay Type:SalariedPosted Date:2025-11-14Application Deadline:2025-12-01Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date aboveInclusion and Equal Opportunity EmploymentAt RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.Join our Talent CommunityStay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.