Job Summary
The Information Security Analyst will ensure the safety and soundness of sensitive RBC Bank data by creating DLP rules based on business processes, ensure security vulnerabilities are addressed timely, and staff is educated and trained to mitigate the risk of loss of sensitive, confidential, or internal data. The role is ensures data security controls are operating effectively and recommend new controls where required in alignment with RBC Bank’s policies and standards. Working closely with RBC Bank Technology Operations, RBC Bank Engineering, RBC Endpoint Security, and Identity Access Management teams, the Information Security Analyst will ensure application, server and endpoint security compliance throughout RBC Bank. Additionally, the Information Security Analyst will review and report on RBC Bank phishing metrics resulting from phishing simulation exercises and to senior leadership with training to staff as needed.
Job Description
Data Loss Prevention and Phishing (30%)
- Perform a DLP risk assessment to determine if any gaps in current DLP rules
- Design and implement DLP rules to reduce risk of unauthorized data exportation
- Create and update procedures for DLP rule review
- Ensure that TLS for email traffic is enforced for all third-party suppliers as required
- Educate and train staff about Data Loss and Phishing
- Support RBCB Senior Leadership awareness of phishing status for the organization
Vulnerability Management (30%)
- Monitor to ensure all endpoint machines are compliant with the latest security patches
- Monitor to ensure all servers/databases are compliant with the latest security patches
- Submit requests for vulnerability patching and remediation
- Monitor end of life technology compliance by ensuring that end of life upgrade strategies are in place
- Ensure that penetration tests are conducted in a timely manner
- Collaborate with technology and security teams to record penetration testing vulnerabilities with remediation/acceptance as required
Access Management (20%)
- Support application integration to Identity & Access Manager platform
- Support application access reviews including termination and annual access reviews
- Serve as back-up for user access provisioning and removals
Key Risk Reporting (15%)
- Evidence documentation used for Key Risk Indicators (KRIs), controls, and metrics
- Document and maintain procedures related to DLP, Endpoint Security, Phishing, IT Asset Management, Server Hygiene, etc.
- Report on self-identified issues and findings for deficiencies identified
- Report on Cyber metrics, KRIs and other relevant reporting for RBC Bank IT Risk & Data Committee
Audit Engagement (5%)
- Participate in internal & external audit exams in support of Cyber Security Risk and remediate issues as required
- Serve as point of contact for testing of data loss prevention, vulnerability management and penetration testing
Position Requirements:
- Bachelor’s Degree in Computer Engineering / Science / Information Security or equivalent experience required
- 5+ years’ experience working in large organizations with IT Risk/IT department required
Job Skills
Application Vulnerability Management, Critical Thinking, Cybersecurity, Data Loss Prevention (DLP), Decision Making, Long Term Planning, Problem Solving, Reconciliations, Security Compliance, Security Risk, Symantec Data Loss Prevention (DLP)Additional Job Details
Address:
City:
Country:
Work hours/week:
Employment Type:
Platform:
Job Type:
Pay Type:
Posted Date:
Application Deadline:
Inclusion and Equal Opportunity Employment
At RBC, we embrace diversity and inclusion for innovation and growth. We are committed to building inclusive teams and an equitable workplace for our employees to bring their true selves to work. We are taking actions to tackle issues of inequity and systemic bias to support our diverse talent, clients and communities.
We also strive to provide an accessible candidate experience for our prospective employees with different abilities. Please let us know if you need any accommodations during the recruitment process.
Join our Talent Community
Stay in-the-know about great career opportunities at RBC. Sign up and get customized info on our latest jobs, career tips and Recruitment events that matter to you.
Expand your limits and create a new future together at RBC. Find out how we use our passion and drive to enhance the well-being of our clients and communities at jobs.rbc.com.