Senior Threat Hunter (Global Security)
330 FRONT ST W:TORONTO, Canada
Job Summary
Provides technical expertise on the development and support of all activities, processes, and tools needed to protect information security. Applies extensive, in-depth knowledge, skills, and practices to perform complex assignments.Job Description
What is the opportunity?
Do you enjoy cyber security research and innovation, proactive thinking and problem solving, in a challenging and adaptive environment while constantly thinking outside of the box? If so, this opportunity is right for you!
RBC`s Cyber Threat Hunting team is responsible for the proactive identification and detection of sophisticated threat actors and insider threats that might pose a risk to the organization and employees. We are a team of experienced and enthusiastic security experts, researchers, and innovators that are passionate about solving complex cyber security problems, developing novel solutions, and building prototypes in areas where security vendors are one step behind. We engineer tailor-made detections that will reduce risk to our organization, employees, and clients.
We’re looking for an experienced Senior Cyber Threat Hunter who is constantly thinking outside the box, ready to dive deep into the smallest details, is passionate about cybersecurity and has a natural detective sense. The right candidate has experience in both offensive and defensive operations and enjoys innovation and security research.
What will you do?
Create detection engineering solutions to proactively identify and mitigate sophisticated threat actors (APTs/UNCs) and insider threats
Analyze, research and reverse engineer Tactics Techniques and Procedures (TTPs) and malware samples to create detections based on industry leading frameworks such as MITRE ATT&CK
Develop, plan, lead and participate in Purple Team Exercises focusing on and discovering and mitigating emerging threats
Innovate and create novel solutions including User Behavior Analytics (UBA) models by leveraging Data Science and Machine Learning (ML), bringing cybersecurity and data science closer
Collaborate and foster relationships with multiple teams including Adversary Emulation (Red Team), Data Science, Threat Intelligence, Security Operation Centre (SOC) and Digital Forensics and Incident Response (DFIR) to drive pragmatic cyber security improvement
Work closely with our dedicated Development team to create and enhance our threat hunting in-house developed products
Assist in developing, implementing, and refining our defensive tradecraft and tooling
Provide bespoke advisory and consultation services to senior executive management and perform as a cyber security SME for emerging threats and investigations
Work and utilize vast data sources, data lakes and security vendor solutions
In conjunction with other members of the Global Cyber Security group, you would ensure the ongoing enhancement of the threat hunting methodologies and overall strategy to detect and alert of cyber threats
What do you need to succeed?
Must have
5+ years of Cyber Security operations experience preferably comprised of both defensive and offensive roles
Strong Innovative and outside of the box thinking mindset
Strong communication and collaboration skills
Familiarization with the cyber security Kill Chain phases and MITRE ATT&CK framework TTPs
Knowledge of offensive security tools, techniques, and procedures
Solid grasp of cyber security controls/products including both endpoint, network, application, and infrastructure
Well-rounded knowledge of various cyber security domains, focusing on operational security
Knowledge of current regional and global threat landscape
Foundational knowledge of Python and SQL
Niceto have
Cloud knowledge and expertise of leading cloud providers (AWS, GCP, Azure)
Hands-on experience in malware analysis, reverse engineering, and security research
Financial industry experience or previous experience working for a cyber security team or security vendor
Prior experience conducting blue/purple team exercises or penetration testing
Strong understanding of computing architecture, OS Internals and CPU architectures
Programming languages such as C++/C#/JavaScript/Assembly
Digital Forensics skills including memory/network/OS/disk forensics
Defensive oriented certification such as GIAC GREM, GCFA or other reputable, technical, and defensive/offensive focused certification
What’s in it for you?
We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.
A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
Leaders who support your development through coaching and managing opportunities
Ability to make a difference and lasting impact
Work in a dynamic, collaborative, progressive, and high performing team
A world-class training program in financial services
Flexible work/life balance options
Opportunities to do challenging work
#LI-Hybrid
#LI-POST
Job Skills
Confidentiality, Cybersecurity, Cyber Security Management, Cyber Threat Hunting, Decision Making, Detail-Oriented, Encryption Software, Group Problem Solving, High Impact Communication, Incident Response, Information Security, Information Security Management, Information Technology Security, Security Research, Web Applications, Web ServicesAdditional Job Details
Address:
330 FRONT ST W:TORONTOCity:
TORONTOCountry:
CanadaWork hours/week:
37.5Employment Type:
Full timePlatform:
TECHNOLOGY AND OPERATIONSJob Type:
RegularPay Type:
SalariedPosted Date:
2024-10-22Application Deadline:
2025-01-11Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics AWS Azure C Cloud DFIR Encryption Forensics GCFA GCP GIAC GREM Incident response JavaScript Machine Learning Malware MITRE ATT&CK Offensive security Pentesting Python Red team Reverse engineering SOC SQL Strategy Threat intelligence TTPs
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.