WHAT IS THE OPPORTUNITY?

The role of the Security Automation Engineer is to provide specialized subject matter expertise for the Detection Engineering & Automation (DEA) team. This is a key technical role supporting mission critical enterprise network security operations and IT services protection.

Drive development using automation to new or existing use cases to reduce the overall mean time to detect and respond to incidents. Be responsible to lead automation technology initiatives, deployments and global implementations of security monitoring. Provide advanced technical support and expertise supporting technology integration for RBC operational and organizational leadership, RBC infrastructure stakeholders and global operations.

WHAT WILL YOU DO?

• Global accountability to provide technical and subject matter expertise supporting cyber uses cases developed from security systems and infrastructure for security monitoring.

• Advise and/or execute on integration and configuration options via automation using the XSOAR (Security Orchestration Automation and Response) platform.

• Liaise with the appropriate DevOps groups to ensure automation delivery.

• Recommend or automate approaches to streamline and integrate technological processes and/or systems to improve operational efficiency and effectiveness.

• Ability to follow the CI/CD pipeline using tools to automate, build, test and deploy processes, ensuring smooth and efficient software delivery.

• Refine and translate complex business requirements and execute best practice solutions & document automations.

• Design solutions, write code, perform unit testing, develop appropriate artifacts /documentation, and facilitate final delivery.

• Collaborate with global security partners to facilitate potential automation requirements for use case development in our SIEM platforms.

• Periodically participate in tuning discussions/activities and provide improvement recommendations where necessary/possible.

• Support technology integration and other applicable security operations

• Develop and maintain lines of communication with various security groups, Security Operations Centre leadership and technology stakeholders

• Ensure timely communications are provided in accordance with DEA engagement procedures

• Develop processes to support a maturing program

• Provide operational metrics and reports as needed

• Work with various security groups and lines of business to identify, troubleshoot and resolve technical issues/problems

WHAT DO YOU NEED TO SUCCEED?

MUST HAVES:

• 3-5 years experience in scripting languages (e.g., Python, JavaScript).

• Experience with API integrations.

• Ability to design, develop and implement and debugging. automated workflows (playbooks).

• Experience of security information and event management (SIEM) systems.

• Knowledge / experience with common security threats, vulnerabilities, and attack vectors.

NICE TO HAVE:

• Understanding of XSOAR's job scheduling; be able to configure and manage XSOAR integrations.

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable

• Leaders who support your development through coaching and managing opportunities

• Ability to make a difference and lasting impact

• Work in a dynamic, collaborative, progressive, and high-performing team

• A world-class training program in financial services

• Flexible work/life balance options

• Opportunities to do challenging work

• Opportunities to take on progressively greater accountabilities

• Opportunities to building close relationships with clients

#LI-POST

#TECHPJ

Job Skills

Atlassian Confluence, Atlassian JIRA, Automation, Cloud Security, Confidentiality, Cyber Security Management, Decision Making, Detail-Oriented, Documentations, Encryption Software, Group Problem Solving, High Impact Communication, Information Security Management, Information Technology (IT) Orchestration, Information Technology Security, MITRE ATT&CK Framework, Python (Programming Language), Scripting, SIEM Tools, Strategic Thinking, Workflow Automation

Additional Job Details

16 YORK ST:TORONTOTorontoCanada37.5Full timeTECHNOLOGY AND OPERATIONSRegularSalaried2025-08-122025-09-04

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above

Inclusion and Equal Opportunity Employment

At RBC, we believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.