API Security Specialist Lead – GCS
1 month ago
Job Summary
Job Description
What is the opportunity?
The API Security Specialist Lead will play a pivotal role in the assessment and implementation of runtime API security solution(s), coordinating with cross-functional teams, and ensuring seamless integration across cloud and on-prem environments within the bank. Additionally, the specialist will be responsible for enhancing API security practices and contributing to the implementation of the API security roadmap.
What will you do?
API Security Runtime Platform Deployment:
Lead the end-to-end deployment of API security solution(s) within the bank.
Collaborate with development, operations, and security teams to ensure smooth integration within the bank’s cloud and on-prem infrastructure.
Monitor platform performance and ensure it aligns with the agreed KPIs and SLAs.
Optimize platform configurations to detect, block, and prevent API-related threats.
API Security Roadmap Implementation:
Contribute to the planning, execution, and delivery of API security initiatives as part of the broader security improvement roadmap.
Stay ahead of emerging threats and technologies, recommending improvements to the API security framework.
Automation & Pipeline Integration:
Collaborate with Application Security Engineering and DevOps teams to automate security processes, such as API vulnerability detection, policy enforcement, and compliance checks.
Help integrate API security solutions into CI/CD pipelines for continuous testing and monitoring.
Develop scripts and tools to streamline processes and conducting data analysis.
Stakeholder Engagement & Documentation:
Act as a technical lead, liaising with internal teams (including IT, Compliance, and Risk) and vendors to drive the implementation forward.
Document processes, configurations, and lessons learned to ensure knowledge transfer across the organization.
Provide regular updates to senior leadership on work initiatives, risks, and mitigation strategies.
What do you need to succeed?
Must-have:
5+ years of experience in Application & API security.
Strong knowledge of API protocols/frameworks (e.g., REST, SOAP, GraphQL, gRPC), API gateways (e.g., Apigee, Kong), Authentication and Authorization Protocols (OAuth2/OIDC/JWT etc.).
Strong Understanding of OWASP API Security Top 10 and secure coding practices.
Strong knowledge of Kubernetes, Docker, and CI/CD tools (e.g., Jenkins, GitHub Actions).
Experience working in cloud environments such as AWS, Azure, or GCP.
Strong scripting skills (e.g., Python, Bash) for automation and monitoring tasks.
Familiarity with runtime security, eBPF, and traffic monitoring for API discovery.
Familiarity with workflow management tools (e.g., Jira, GitHub Issues) for issue tracking and collaboration.
Nice-to-have:
Expertise in API Security frameworks and experience with API Security Testing tools (DAST, AST, etc.) and Runtime API protection platforms
Experience working within financial institutions or other highly regulated industries.
Security certifications such as CISSP, CSSLP, CASP, CEH or Certified DevSecOps Engineer.
Knowledge of data residency requirements and compliance frameworks (e.g., GDPR, PCI-DSS, NIST CSF).
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
Leaders who support your development through coaching and managing opportunities
Ability to make a difference and lasting impact
Work in a dynamic, collaborative, progressive, and high-performing team
A world-class training program in financial services
Flexible work/life balance options
Opportunities to do challenging work
#Ll-Hybrid
#Ll-POST
#TECHPJ
Job Skills
API Gateway, API Specifications, API Testing, Application Programming Interface (API) Security, Atlassian JIRA, CloudBees Jenkins, DevSecOps, Dynamic Application Security Testing (DAST), GitHub Actions, GitHub Issues, IT Security Architecture, IT Systems Integration, Kubernetes, OAuth, OWASP Top 10, Python (Programming Language), Secure Coding Practices, Security Engineering, Security Information and Event Management (SIEM), Web Application Penetration TestingAdditional Job Details
Address:
330 FRONT ST W:TORONTOCity:
TORONTOCountry:
CanadaWork hours/week:
37.5Employment Type:
Full timePlatform:
TECHNOLOGY AND OPERATIONSJob Type:
RegularPay Type:
SalariedPosted Date:
2024-11-05Application Deadline:
2024-11-29Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
-
API Security Specialist Lead – GCS
1 month ago
Old Toronto, Canada RBC Full timeJob SummaryJob DescriptionWhat is the opportunity?The API Security Specialist Lead will play a pivotal role in the assessment and implementation of runtime API security solution(s), coordinating with cross-functional teams, and ensuring seamless integration across cloud and on-prem environments within the bank. Additionally, the specialist will be...
-
API Security Specialist
1 week ago
Toronto, Ontario, Canada Precision Technologies Full timeJob Title: API Security SpecialistCompany Overview: Precision Technologies is a leading provider of innovative solutions, and we are seeking an experienced API Security Specialist to join our team.Estimated Salary: $120,000 - $180,000 per yearJob Description: As an API Security Specialist at Precision Technologies, you will be responsible for ensuring the...
-
Old Toronto, Canada RBC Full timeJob SummaryJob DescriptionKey ResponsibilitiesThe API Security Specialist Lead will play a pivotal role in assessing and implementing runtime API security solutions, coordinating with cross-functional teams to ensure seamless integration across cloud and on-prem environments within RBC. This specialist will be responsible for enhancing API security practices...
-
Lead Enterprise API Security Specialist
3 days ago
Toronto, Ontario, Canada S.i. Systèmes Full timeS.i. Systèmes is seeking a highly skilled Lead Enterprise API Security Specialist to design and implement APIs, API Gateways, or other API Security tools with one of our major banking clients.About the RoleThis is a 6-month contract (possibility of extension) role that requires working 9am-5pm Monday-Friday with at least 1/week in-office either in...
-
Toronto, Ontario, Canada Royal Bank of Canada Full timeJob OverviewWe are seeking an experienced API Security Specialist Lead to join our team in Toronto, Canada. This is a full-time position with a competitive salary and benefits package.About the RoleThe successful candidate will play a pivotal role in assessing and implementing runtime API security solutions, collaborating with cross-functional teams, and...
-
API Security Specialist Lead
8 hours ago
Toronto, Ontario, Canada Royal Bank of Canada Full timeCompany OverviewRoyal Bank of Canada is a leading financial institution with a strong commitment to innovation and growth. We are dedicated to building inclusive teams and an equitable workplace where employees can bring their true selves to work.About the RoleWe are seeking an experienced API Security Specialist Lead to play a pivotal role in assessing and...
-
Lead QA Engineer, API and UI Specialist
3 days ago
Toronto, Ontario, Canada CorGTA Full time $75Job Title: Lead QA Engineer, API and UI SpecialistAbout Us: CorGTA is a leading provider of software testing solutions to public sector clients. We are seeking an experienced QA engineer to join our team in a contract capacity.Estimated Salary Range: $120,000 - $150,000 per annum, depending on experience and qualifications.Job Description:We have an exciting...
-
Digital API Security Strategist
4 weeks ago
Toronto, Ontario, Canada Royal Bank of Canada> Full timeAbout the RoleAs a Digital API Security Strategist at Royal Bank of Canada, you will play a pivotal role in assessing and implementing runtime API security solutions. This involves collaborating with cross-functional teams to ensure seamless integration across cloud and on-prem environments.Key Responsibilities:API Security Runtime Platform Deployment: Lead...
-
Cyber Security Governance Specialist
1 week ago
Toronto, Ontario, Canada Royal Bank of Canada Full timeRoyal Bank of Canada is seeking a highly skilled Cyber Security Governance Specialist to join our team. The ideal candidate will have strong technical writing experience and expertise in process/procedure documentation, as well as excellent written and verbal communication skills.About the RoleAs a Cyber Security Governance Specialist, you will partner...
-
Senior API Infrastructure Specialist
4 weeks ago
Toronto, Ontario, Canada Quantum World Technologies Inc. Full timeAbout Quantum World Technologies Inc.We are a leading technology company seeking a highly skilled Senior API Infrastructure Specialist to join our team. As a key member of our infrastructure team, you will be responsible for designing, implementing, and maintaining our API infrastructure to ensure high availability and performance.
-
Director, Cyber Diligence
3 months ago
Toronto, Canada Royal Bank of Canada Full time**Job Summary** **WHAT IS THE OPPORTUNITY?** The Director of GCS Cyber Diligence & Integration is responsible to direct and manage cyber related activities for multiple M&A initiatives and other business programs from initiation to delivery, including research, due diligence, integration and the governance of implementation and support of the end-to-end...
-
Api Integration Specialist
6 months ago
Toronto, Canada OTT Financial Group Full timeOTT Pay is part of the OTT Financial Group. We are the leading Canadian company enabling businesses to accept QR code-based digital payment methods such as WeChat Pay, Alipay, and China UnionPay. We also help businesses take payments made with traditional methods such as Visa and Mastercard. In addition, we provide value-added services such as marketing and...
-
Api and Integration Tech Lead
2 months ago
Toronto, Canada Definity Financial Corporation Full timeDefinity is the parent company to some of Canada’s most long-standing and innovative insurance brands, including Economical Insurance, Sonnet Insurance, Family Insurance Solutions, and Petline Insurance. Our ambition is to be one of Canada’s leading and most innovative property and casualty insurers. We can’t do that without our people, so we embrace...
-
Api and Integration Tech Lead
1 day ago
Toronto, Canada Definity Financial Corporation Full timeDefinity is the parent company to some of Canada’s most long-standing and innovative insurance brands, including Economical Insurance, Sonnet Insurance, Family Insurance Solutions, and Petline Insurance. Our ambition is to be one of Canada’s leading and most innovative property and casualty insurers. We can’t do that without our people, so we embrace...
-
Manager, Gcs Property and Data Quality
1 month ago
Toronto, Canada Aviva Full timeIndividually we are people, but together we are Aviva. Individually these are just words, but together they are our Values - Care, Commitment, Community, and Confidence. An exciting opportunity exists for a Manager with our Commercial Lines, GCS Operations Team in our Toronto, or Montreal location. You will lead the day-to-day operations of the GCS...
-
Api Integration Specialist
6 months ago
Toronto, Canada OTT Financial Full timeOTT Pay Inc. "(OTT Pay)" is a fully funded established FINTECH focused on delivering simplified financial payment products. With a strategic emphasis on both Acquiring and Issuing businesses, we are developing a mobile-first platform that offers straightforward banking services, loyalty solutions, and innovative products including credit cards, accounts,...
-
Api Integration Specialist
6 months ago
Toronto, Canada OTT Financial Group Full timeOTT Pay Inc. "(OTT Pay)" is a fully funded established FINTECH focused on delivering simplified financial payment products. With a strategic emphasis on both Acquiring and Issuing businesses, we are developing a mobile-first platform that offers straightforward banking services, loyalty solutions, and innovative products including credit cards, accounts,...
-
API Platform Lead, Financial Infrastructure
4 weeks ago
Toronto, Ontario, Canada Stripe Full timeCompany OverviewStripe is a financial infrastructure platform that enables businesses to accept payments and grow their revenue. With millions of customers worldwide, Stripe aims to increase the GDP of the internet by providing a seamless and secure payment experience.Job DescriptionWe are seeking an experienced API Platform Lead to join our team. As a key...
-
Manager, Gcs Casualty and Nonstandard, Underwriting
2 months ago
Toronto, Canada Aviva Full timeIndividually we are people, but together we are Aviva. Individually these are just words, but together they are our Values - Care, Commitment, Community, and Confidence. An exciting opportunity exists for a Manager with our Commercial Lines, GCS Operations Team in our Toronto, or Montreal location. You will lead the day-to-day operations of the GCS Casualty...
-
Team Lead, Api
6 months ago
Toronto, Canada Genetec Full time**The team**: We are looking for a talented Senior Power Platform Developer with a strong focus on API integration to lead the development and deployment of Power Platform solutions that streamline our operations, automate workflows, and integrate seamlessly with our existing systems. As a Senior Power Platform Developer, you will play a critical role in...
