Senior Security Researcher at Geotab ensuring secure development standards across hardware and embedded development. Collaborating with software developers and security teams on various projects.
Responsibilities
Utilizing programming tools to test devices, configuration, and code, providing risk assessments for vulnerabilities, and reporting on the overall quality of current security standards
Work closely with Geotab software developers, the broader Security team, and global strategic initiative stakeholders
Leverages security expertise in Hardware and Embedded Development
Conduct device, cloud infrastructure or web application and code testing for all systems and applications, open source dependencies, and provide analysis and risk assessments for vulnerabilities discovered
Conducts focused information security research and makes recommendations on changes within department and company
Utilize code analysis and fuzzing tools to assess the quality and security of source code
Provide recommendations on tools to address any gaps in coverage as well as defining and implementing security technical and process improvements
Contribute to secure device configuration, infrastructure design and coding standards (involves developing secure coding training for current and future developers)
Conduct manual code reviews for all systems and code changes for a given device, system or application release, providing both a detailed risk analysis of the security posture of the code and technical programming solutions (secure coding standards) to the developers to mitigate insecure code from being implemented
Provide reporting on overall quality of device, infrastructure configuration or source code from a security perspective by project/team (includes trend analysis, defects found, defects remediated, and time to remediate)
Triages and handles/escalates security issues within area of expertise
Support Geotab global strategic initiatives
Participate in candidate interviews during hiring process
Requirements
8+ years of experience with security evaluation/analysis within a technical organization, including security code reviews and risk assessments
8+ years of experience performing hardware, infrastructure, or embedded development (e.g., Network protocol analysis, debugging, virtualization)
Post-Secondary Diploma/Degree in Computer Science, Information Management, Engineering, or a related field
Technical proficiency with Linux, Windows, and languages such as C, Rust, and Python
Professional certification in Information Security (e.g., CISSP, CCSP, CSSLP, CEH, OSCP, OSWE) is highly valued
Excellent verbal and written communication skills, with comfort delivering technical training and presentations
Entrepreneurial mindset with the ability to stay organized and manage multiple priorities in a flat organization.
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.