Job DescriptionWhat is the opportunity?The Application Security team is undertaking multiple complex enterprise-wide initiatives to improve the security and quality of RBC applications. Reporting to the Senior Manager of Penetration Testing, you will provide application penetration testing services for the global RBC business and application development teams across all enterprise information technology groups. You will act as the subject matter expert in execution of penetration testing, in addition to participating in the development of application security best practices, tools, processes, and landscapes. You will also provide technical input on current, interim and target state penetration testing and security processes, and communicate the needs of development teams to strategic security leadership.
What will you do?- Perform penetration testing against application landscapes (Web, API, mobile, AI)
- Ensure applications & infrastructure are methodically and thoroughly tested using industry best practices prior to promotion to production
- Prepare and deliver clear, concise, and impactful reporting to stakeholders
- Educate stakeholders (e.g. developers, security consultants, executives) on application security matters and impacts on the organization
- Research and keep up to date on security emerging threats, techniques, tools, and trends
What do you need to succeed?Must-have- 4+ years of experience in executing application layer penetration testing exercises
- Possess strong understanding of web, mobile, and AI application architecture and development principles
- Strong knowledge of OWASP, SANS or other security-related frameworks
- Current experience with modern application layer penetration testing tooling and platforms
- Hands-on experience in software and/or script development
- Exemplary communication skills, both written and verbal
- Curious mindset
Nice-to-have- OSCP, OSCE, GWAPT, GMOB, GXPN certifications an asset
- Experience in testing network systems and cloud services (e.g. AWS, Azure)
- Experience providing pen testing services in a highly regulated environment (e.g. Financial Institutions, Insurance, Government, etc.)
What's in it for you?- A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation, commissions, and stock where applicable
- Leaders who support your development through coaching and managing opportunities
- Ability to make a difference and lasting impact
- Work in a dynamic, collaborative, progressive, and high-performing team
- A world-class training program in financial services
- Flexible work/life balance options
- Opportunities to do challenging work
- Opportunities to take on progressively greater accountabilities
- Opportunities to building close relationships with clients
- Access to a variety of job opportunities across business and geographies
Job SkillsApplication Security, Artificial Intelligence Software, Critical Thinking, Encryption Software, Group Problem Solving, Information Security, Information Security Management, Information Technology Security, Infrastructure Penetration Testing, IT Security Architecture, IT Systems Integration, Mobile Applications, Secure AI
Additional Job DetailsAddress:16 YORK ST:TORONTO
City:Toronto
Country:Canada
Work hours/week:37.5
Employment Type:Full time
Platform:TECHNOLOGY AND OPERATIONS
Job Type:Regular
Pay Type:Salaried
Posted Date:2026-06-19
Application Deadline:2026-07-17
Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above
RBC is presently inviting candidates to apply for this existing vacancy. Applying to this posting allows you to express your interest in this current career opportunity at RBC. Qualified applicants may be contacted to review their resume in more detail.
