Staff Security Engineer leading security efforts at AI SaaS company. Collaborating cross-functionally to protect sensitive customer data and products while mentoring engineering team members.
Responsibilities
Identify and address security risks through comprehensive assessments, mitigation strategies, and execution.
Ensure secure coding and implement systems to protect against unauthorized access and data breaches.
Develop and execute incident response plans, conduct forensic analysis, and take preventive measures.
Maintain compliance with regulations and industry standards, promote transparency, and address ethical concerns.
Establish real-time monitoring systems, conduct regular assessments, and proactively respond to threats.
Evaluate and secure third-party integrations to prevent vulnerabilities.
Educate and raise awareness for security best practices across the engineering team.
Maintain up-to-date documentation on protocols, incidents, and improvements; report regularly to stakeholders.
Mentor and guide team members to build security expertise across the engineering organization.
Requirements
8+ years in a security-focused engineering role, with hands-on technical architecture, implementation, and oversight experience
Expertise in SAST/DAST, application security, and CI/CD pipeline integration
Deep knowledge of AI-specific threats (prompt injection, model poisoning, membership inference, adversarial perturbation, output manipulation)
Experience implementing security principles, operating system and web application security, and familiarity with the OWASP Top 10 and common threat tactics
Knowledge of next-generation security technologies (SASE, CASB, RASP)
Hands-on experience with patch management, software supply chain security, and artifact repositories (e.g., JFrog, Snyk)
Strong programming or scripting skills in at least one language (e.g., Python, Ruby, Node.js)
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.