Senior Vulnerability Management Analyst – Global Security
| Company | Royal Bank of Canada |
|---|---|
| Location | Vancouver, BC, Canada |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior |
Requirements
- Curiosity and passion for Vulnerability Management
- Demonstrated expertise in a broad range of Information Security, including strong knowledge and experience of security frameworks and governance practices.
- Demonstrates solid organizational skills and the ability to multi-task, prioritize workload.
- Experience with vulnerability assessment concepts, reporting and scanning tools (eg. Tenable, Qualys, Rapid7, Crowdstrike)
- Working knowledge of developer tools and environments
- Ability to partner effectively with diverse stakeholders, including technology teams and supplier, on complex projects with excellent consultancy/advisory, facilitation, communication, negotiation and presentation skills.
- Attention to details and ability to analyze and consolidate data from different sources.
Responsibilities
- As a subject matter expert, you will be continually researching and evaluating risk exposure, trends, solutions and strategies to ensure RBC’s vulnerability and compliance capabilities remain relevant and prepared for the changing threat landscape and emerging threats.
- Facilitate change management activities with cross-functional team members and stakeholders to understand and ensure adoption of vulnerability management enterprise initiatives.
- Work in collaboration as a trusted partner to ensure that projects are planned, managed and executed in alignment with the functional strategy and goals.
- Supports automation and orchestration to maximize team talent and reduce routine tasks.
- Support the integration and global expansion of vulnerability management across RBC and subsidiaries.
- Document, formulate and enforce security improvements that balance risk with business operations, and do not diminish efficiencies or innovation.
- Monitor plans of action and milestones for risk remediation requirements from internal and external security assessments, vulnerability reports, audit findings and security gaps.
Preferred Qualifications
- Bachelor degree in computer and/or IT related disciplines
- Cyber Security Certifications (eg. CISSP, CCSP, CISM, CRISC, GCIH, GEVA, GCSA)
- Hands-on experience with JIRA, Confluence, Mural and/or Lucidchart
- DevOps knowledge and working knowledge of CI/CD architectures, designs and implementation
- Experience with cloud security concepts/platforms (Azure, AWS, etc) & DevOps workflows