Senior Full Stack Security Developer

Job Description

Job Description Senior Full Stack Security Developer What is the Opportunity? Join our innovative PayEdge Technology team at RBC, where we're building the security foundation for accounts payable and accounts receivable solutions. As a Full Stack Security Developer, you will take ownership of designing, developing, and implementing secure application systems that protect critical financial transactions. Your expertise will be essential in embedding security at every layer of our technology stack—from architecture and code review to deployment and ongoing threat mitigation. You'll apply advanced security knowledge, best practices, and risk assessment methodologies to every assignment, ensuring compliance with industry standards and regulatory requirements. If you're a security-minded developer with a strong technical foundation, proven expertise in secure coding practices, and proficiency in languages like Java and PHP with frameworks such as Spring Boot and Laravel, we invite you to help build the future of secure payments. What Will You Do? Drive Security Excellence: Lead application security reviews, threat modeling, and code reviews to identify and mitigate vulnerabilities before they reach production Own application security vulnerability management, from discovery through remediation and validation Design and implement automated security testing frameworks to enforce secure coding practices across the development lifecycle Ensure Compliance & Risk Management: Manage security release cycles and coordinate security patches across the organization Support compliance and regulatory processes, including PCI certification, penetration testing, and annual security assessments Identify and recommend security improvements to strengthen our overall application security posture Foster a Security Culture: Mentor development and security teams through targeted training and knowledge-sharing initiatives Collaborate across multiple departments and stakeholders to integrate security into agile project workflows Champion security best practices as a trusted technical advisor What Do You Need to Succeed? Must-Have Bachelor's degree in Computer Science, Engineering, or related field 5 years of working experience with Laravel, PHP, and front-end technologies such as JavaScript, HTML, CSS and Angular framework 5 years of hands-on experience with Java and SpringBoot 5 years of experience working with RDBMS, e.g. MySQL, MSSQL, NoSQL, e.g. MongoDB, ELK and data streaming technologies (Kafka) Expert in OWASP, static/dynamic analysis, and common security tools including Burp Suite and OWASP Zap Strong skill in secure code review and remediation guidance Knowledge of API security, authentication/authorization (OAuth2, JWT, OpenID Connect) Understanding of secrets management and secure configuration practices Experience with CI/CD pipelines (Jenkins, GitHub, Vault, Security scanning tools, etc.) Familiarity with thread modeling methodologies (e.g. Stride, Pasta) Abilit

Required Skills