Vulnerability Scanning Specialist - Container Security (Global Security)

As a Container Vulnerability Scanning Specialist, you will be responsible for configuring, implementing, and optimizing container vulnerability scanning solutions across RBC & its subsidiaries within the Scanning Operations team under the CTO Cyber Technology Office for Global Security. You will serve as a subject matter expert (SME) for containerized environments and advanced scanning platforms, with a focus on Aqua Security and related container security technologies.

Looking for a strong individual who will have the opportunity to expand the team's technical capabilities and establish scanning best practices across RBC's global container ecosystem by coordinating, developing, leading, communicating, and executing activities to ensure objectives are accomplished accordingly and on time.

What will you do?

• Deploy, and maintain container vulnerability scanning solutions using Aqua Security and complementary tools across RBC's container infrastructure following industry best practices
• Act as subject matter expert for container security scanning, including image analysis, runtime protection, and policy enforcement
• Develop and maintain security tools, scripts, and automation workflows to enhance container security operations, including on-call participation for production security incidents
• Establish and maintain vulnerability scanning policies, baselines, and scanning orchestration across containerized environments
• Create and maintain dashboards, knowledge bases, and runbooks for vulnerability management processes on an ongoing basis
• Support, maintain, and execute daily, weekly, and monthly reporting and compliance documentation processes, ensuring data accuracy and business service level agreements are met
• Analyze vulnerability trends, container image risks, and scanning metrics to optimize detection accuracy and operational efficiency
• Mentor junior security analysts and provide technical guidance on container security tools and scanning best practices
• Collaborate on cross-functional enterprise initiatives including CI/CD pipeline integration, Kubernetes security, and DevSecOps automation
• Establish strong working relationships within the scanning operations team and across DevSecOps, infrastructure, and application security teams

What do you need to succeed?

Must-have:

• 5+ years' experience in container security, vulnerability management, security operations, or application security roles with hands-on responsibility for scanning and remediation platforms
• Direct hands-on experience with Aqua Security (or equivalent commercial container scanning solutions) in production environments
• Strong knowledge of Cloud native (AWS/Azure) services, containers (Docker/K8s).
• Proven experience with container image scanning, vulnerability assessment, and container runtime security
• Strong knowledge of container vulnerability databases and threat intelligence sources (CVE, NVD, vendor advisories)
• Scripting or automation capability (Python) to streamline vulnerability scanning workflows and reporting
• Experience with CI/CD Pipelines using GitHub Actions/Workflows as well as version control.
• Strong technical writing aptitude with demonstrated ability in written and oral communication skills along with strong presentation skills
• Strong critical thinking, analytical, and problem-solving skills with attention to detail
• Experience working in ITIL processes—incident, problem, and change management processes
• Experience with security information and event management (SIEM) tools or security orchestration platforms

Nice-to-have:

• Certifications: CKA (Certified Kubernetes Administrator), CKSA (Certified Kubernetes Security Specialist), CISSP, CISM, or container/cloud security certifications
• Hands-on experience with container security tooling.
• Experience with Infrastructure-as-Code (IaC) security scanning and policy-as-code approaches
• Background in DevSecOps practices and shift-left security methodologies
• Experience with container threat modeling and attack surface analysis
• Knowledge of regulatory compliance requirements for containerized environments (PCI-DSS, HIPAA, SOC 2)
• Experience with Kubernetes security admission controllers and policy enforcement (OPA/Gatekeeper, Kyverno)

What’s in it for you?

We thrive on the challenge to be our best, progressive thinking to keep growing, and working together to deliver trusted advice to help our clients thrive and communities prosper. We care about each other, reaching our potential, making a difference to our communities, and achieving success that is mutual.

• A comprehensive Total Rewards Program including bonuses and flexible benefits, competitive compensation

• Leaders who support your development through coaching and managing opportunities 

• Work in a dynamic, collaborative, progressive, and high-performing team

• Opportunities to do challenging work

• Flexible work/life balance options

#LI-POST

#TECHPJ

Job Skills

Critical Thinking, Disruptive Innovations, Emerging Technologies, Group Problem Solving, IT Systems Integration, Operating Systems (OS), Product Development Design, Software Integration Engineering, System Applications, Teamwork

Additional Job Details

16 YORK ST:TORONTOTorontoCanada37.5Full timeTECHNOLOGY AND OPERATIONSRegularSalaried2026-03-122026-03-27

Note: Applications will be accepted until 11:59 PM on the day prior to the application deadline date above

Our Employment Opportunities

At RBC, we are guided by living shared values of Client First, Integrity, Collaboration, Respect and Excellence and winning together as One RBC. We believe an inclusive workplace that has diverse perspectives is core to our continued growth as one of the largest and most successful banks in the world. Maintaining a workplace where our employees feel supported to perform at their best, effectively collaborate, drive innovation, and grow professionally helps to bring our Purpose to life and create value for our clients and communities. RBC strives to deliver this through policies and programs intended to foster a workplace based on respect, belonging and opportunity for all.

RBC is presently inviting candidates to apply for this existing vacancy. Applying to this posting allows you to express your interest in this current career opportunity at RBC. Qualified applicants may be contacted to review their resume in more detail.