Application Security Consultant - SCA - Global Security, Toronto
Application Security Consultant - SCA - Global Security, Toronto
-
Toronto C6A, Canada -
Last edited: yesterday
-
Save -
Share
Description
Opportunity We are seeking a talented Intermediate Developer to join our Application Security team and serve as a bridge between security and development. This role focuses on providing technical execution and expertise in application security, with a specialization in Software Composition Analysis (SCA) within open‑source security. Working across the enterprise, you will support application teams, drive security best practices, and improve our overall security posture through the design and implementation of application security initiatives. Your responsibilities will balance strategic security duties withhands‑on development work, leveraging strong development skills and security expertise to deliver impact across the organization.
What We’re Looking For
Someone curious about application security and open‑source vulnerabilities
A developer with solid fundamentals who is ready to grow into security
A collaborator who can bridge technical and security conversations
Someone comfortable learning new tools and frameworks on the job
What You’ll Do
Support end users of application security testing tools and manage tickets through a ticketing platform
Prioritize and triage SCA scan results, communicating needs and recommendations to application teams
Act as a primary point of contact for application teams, bridging security and development functions
Drive security practices and improve security posture across the enterprise by working with application development teams
Educate key organizational stakeholders (developers, security consultants) on application security matters and open‑source vulnerabilities
Assist in the integration of application security processes and tools into existing enterprise development processes and pipelines
Participate in and lead a range of application security assessment activities
Contribute to the design and implementation of application security testing workflows and troubleshoot tool configurations and resolve scanning issues
Design and develop RESTful APIs following best practices, security standards, and industry guidelines
Write clean, maintainable code for data processing, manipulation, and analysis
Leverage open‑source packages and libraries responsibly, understanding their security implications and vulnerabilities
Collaborate with senior developers, security consultants, and cross‑functional teams to deliver quality solutions and advance security initiatives
Participate in code reviews and contribute to continuous improvement of security and development practices
Debug and troubleshoot applications to resolve security and functional issues efficiently
Document code and maintain technical documentation including security considerations
Contribute to the full software development lifecycle from design through deployment, with security integration
Proactively solve problems to ensure application development teams can effectively use the latest application security testing tools
Research and keep up to date on emerging threats, techniques, tools, and trends in application security
Participate in system design discussions and architectural decisions with a security lens
Learn from and mentor with senior security and development team members to continuously improve security expertise
Work in a diverse environment leveraging team members’ experience and knowledge
How You’ll Succeed
Familiarity with or interest in application security best practices; exposure to secure coding principles
Experience supporting or working with SCA tools, or demonstrated interest in application security and dependency management
2+ years of professional experience developing and consuming REST APIs and applications
Basic understanding of open‑source security; experience managing or evaluating dependencies
Strong proficiency in at least one primary language: Python, Java, JavaScript, or .NET
Solid understanding of HTTP protocols, API design patterns, and RESTful principles
Experience working with relational databases and SQL
Hands‑on experience with CI/CD tools and pipelines (Jenkins, GitHub Actions, GitLab CI) and understanding of DevOps and DevSecOps approaches
Experience with Threat Modelling and Risk Assessment activities
Understanding of agile methodology (Scrum, Kanban)
Experience with data visualization or analytics tools
Knowledge of software design patterns and SOLID principles
Knowledge of OWASP, SANS, or other security‑related frameworks
Passion for or demonstrated interest in application security and secure coding practices
Willingness to learn and grow in application security specialization
Strong ability to manage client and stakeholder relations
Strong problem‑solving skills and attention to detail
Ability to work collaboratively in an agile, cross‑functional team environment
Excellent communication and documentation skills
Nice to Have
Understanding of testing frameworks and test‑driven development (TDD)
Experience with NoSQL databases (MongoDB, DynamoDB, etc.)
Familiarity with message queues or event‑driven architecture (Kafka, RabbitMQ)
SAST/DAST testing tools and techniques
Penetration testing experience
Cloud platforms (AWS, Azure, GCP)
Containerization and microservices (Docker, Kubernetes)
Code quality and security tools (SonarQube, static analysis, code coverage)
Monitoring and logging tools (ELK stack, Datadog, New Relic)
Caching technologies (Redis, Memcached)
Contributions to open source projects
Experience with system design and scalable architecture
Knowledge of distributed systems concepts
Demonstrated experience leveraging AI platforms (ChatGPT, OpenAI, Claude) to enhance productivity, automate workflows, and generate insights
Benefits
A comprehensive Total Rewards Program including bonuses and flexible benefits
Competitive compensation and stock opportunities
Leaders who support your development through coaching
Ability to make a lasting impact on security posture across the enterprise
Work in a dynamic, collaborative, high‑performing security and development team
World‑class training in financial services and application security
Flexible work/life balance options
Opportunities for challenging work in a hybrid environment
Job Skills Agile Methodology, Application Development, Application Security, Application Security Assessment, Application Security Testing, Critical Thinking, Cybersecurity, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration, Java, Process Development (PD), Python (Programming Language), Security Testing, Vulnerability Management
RBC is dedicated to fostering an inclusive workplace that welcomes diverse perspectives. We comply with all applicable employment‑related laws and regulations and are an equal opportunity employer.
#J-18808-Ljbffr
What We’re Looking For
Someone curious about application security and open‑source vulnerabilities
A developer with solid fundamentals who is ready to grow into security
A collaborator who can bridge technical and security conversations
Someone comfortable learning new tools and frameworks on the job
What You’ll Do
Support end users of application security testing tools and manage tickets through a ticketing platform
Prioritize and triage SCA scan results, communicating needs and recommendations to application teams
Act as a primary point of contact for application teams, bridging security and development functions
Drive security practices and improve security posture across the enterprise by working with application development teams
Educate key organizational stakeholders (developers, security consultants) on application security matters and open‑source vulnerabilities
Assist in the integration of application security processes and tools into existing enterprise development processes and pipelines
Participate in and lead a range of application security assessment activities
Contribute to the design and implementation of application security testing workflows and troubleshoot tool configurations and resolve scanning issues
Design and develop RESTful APIs following best practices, security standards, and industry guidelines
Write clean, maintainable code for data processing, manipulation, and analysis
Leverage open‑source packages and libraries responsibly, understanding their security implications and vulnerabilities
Collaborate with senior developers, security consultants, and cross‑functional teams to deliver quality solutions and advance security initiatives
Participate in code reviews and contribute to continuous improvement of security and development practices
Debug and troubleshoot applications to resolve security and functional issues efficiently
Document code and maintain technical documentation including security considerations
Contribute to the full software development lifecycle from design through deployment, with security integration
Proactively solve problems to ensure application development teams can effectively use the latest application security testing tools
Research and keep up to date on emerging threats, techniques, tools, and trends in application security
Participate in system design discussions and architectural decisions with a security lens
Learn from and mentor with senior security and development team members to continuously improve security expertise
Work in a diverse environment leveraging team members’ experience and knowledge
How You’ll Succeed
Familiarity with or interest in application security best practices; exposure to secure coding principles
Experience supporting or working with SCA tools, or demonstrated interest in application security and dependency management
2+ years of professional experience developing and consuming REST APIs and applications
Basic understanding of open‑source security; experience managing or evaluating dependencies
Strong proficiency in at least one primary language: Python, Java, JavaScript, or .NET
Solid understanding of HTTP protocols, API design patterns, and RESTful principles
Experience working with relational databases and SQL
Hands‑on experience with CI/CD tools and pipelines (Jenkins, GitHub Actions, GitLab CI) and understanding of DevOps and DevSecOps approaches
Experience with Threat Modelling and Risk Assessment activities
Understanding of agile methodology (Scrum, Kanban)
Experience with data visualization or analytics tools
Knowledge of software design patterns and SOLID principles
Knowledge of OWASP, SANS, or other security‑related frameworks
Passion for or demonstrated interest in application security and secure coding practices
Willingness to learn and grow in application security specialization
Strong ability to manage client and stakeholder relations
Strong problem‑solving skills and attention to detail
Ability to work collaboratively in an agile, cross‑functional team environment
Excellent communication and documentation skills
Nice to Have
Understanding of testing frameworks and test‑driven development (TDD)
Experience with NoSQL databases (MongoDB, DynamoDB, etc.)
Familiarity with message queues or event‑driven architecture (Kafka, RabbitMQ)
SAST/DAST testing tools and techniques
Penetration testing experience
Cloud platforms (AWS, Azure, GCP)
Containerization and microservices (Docker, Kubernetes)
Code quality and security tools (SonarQube, static analysis, code coverage)
Monitoring and logging tools (ELK stack, Datadog, New Relic)
Caching technologies (Redis, Memcached)
Contributions to open source projects
Experience with system design and scalable architecture
Knowledge of distributed systems concepts
Demonstrated experience leveraging AI platforms (ChatGPT, OpenAI, Claude) to enhance productivity, automate workflows, and generate insights
Benefits
A comprehensive Total Rewards Program including bonuses and flexible benefits
Competitive compensation and stock opportunities
Leaders who support your development through coaching
Ability to make a lasting impact on security posture across the enterprise
Work in a dynamic, collaborative, high‑performing security and development team
World‑class training in financial services and application security
Flexible work/life balance options
Opportunities for challenging work in a hybrid environment
Job Skills Agile Methodology, Application Development, Application Security, Application Security Assessment, Application Security Testing, Critical Thinking, Cybersecurity, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration, Java, Process Development (PD), Python (Programming Language), Security Testing, Vulnerability Management
RBC is dedicated to fostering an inclusive workplace that welcomes diverse perspectives. We comply with all applicable employment‑related laws and regulations and are an equal opportunity employer.
#J-18808-Ljbffr
Highlights
-
Company nameRBC -
Job positionApplication Security Consultant - SCA - Global Security
-
Flag -
Block ad
Safety Tips
Report any suspicious ads or messages.
Related searches
More info about this ad
Application Security Consultant - SCA - Global Security has been posted in the Barrie Government & Public Service category on Locanto.
For Barrie, there are no other ads posted in this category.
There are more ads within a 15 km radius for this category. If you want to view those ads, click here.
