Senior Security Engineer, Pen Tester at Menlo Security Inc. | Canadian Tech Jobs

Check how well your resume matches this job before you apply.

Sign in to check score

About the role

Senior Security Engineer focusing on offensive and defensive security at Menlo Security. Conducting penetration testing and ensuring cloud architecture security in multi-cloud environments.

Responsibilities

Collaborative Penetration Testing (AWS & GCP): Work in tandem with a peer pentester to conduct deep-dive penetration tests of our products across our multi-cloud environment.
Control Plane: Review IAM policies, service configurations, and cloud-native permission structures.
Data Plane & Web UI: Execute dynamic testing against web interfaces and API endpoints.
Infrastructure Review: Assess the security posture of a hybrid infrastructure that mixes containers and Virtual Machines (VMs) infrastructures.
Vulnerability Reporting & Advisory: Triaging findings and creating clear, reproducible proofs-of-concept (PoCs).
AI-Augmented Security Assessments: Actively utilize AI and Large Language Models (LLMs) to automate reconnaissance, generate attack vectors, analyze configurations, and draft vulnerability reports.
Pipeline Management: Monitor bug bounty pipelines and external reports, validating findings and managing researcher communication.

Requirements

Multi-Cloud Fluency: Demonstrate a deep architectural understanding of GCP and AWS.
Container Security: Proven experience auditing and hardening managed container services (GKE Autopilot/Standard, EKS, ECS) and self-hosted/unmanaged workloads (K8s, k3s, OCI-runc).
AI Tooling: Demonstrated ability to integrate AI/LLM tools (e.g., Gemini, Claude) into the pentesting lifecycle to increase speed and coverage.
Web Application Security: Expert-level knowledge of web application security principles and offensive testing methodologies, with deep proficiency in OWASP Top 10 vulnerabilities, modern web framework exploitation, and API security (REST, WebSockets). Extensive hands-on experience conducting manual security assessments using Burp Suite Professional, OWASP ZAP, or similar tooling.
Security Automation: Proficiency in Python, Go, or Bash to eliminate "toil."
Infrastructure as Code: Solid grasp of Terraform and cloud-native deployment patterns.

Benefits

All employees may be eligible to become Menlo Security shareholders through eligibility for stock-based compensation grants, which are awarded to employees based on company and individual performance.

Similar roles

Browse all Qa Engineer jobs

15 hours ago

CE

Quality Engineer, Associate

Celestica

Entry - level Quality Engineer at Celestica, responsible for quality standards in manufacturing processes. Engaging in ISO compliance, supply chain management, and process documentation.

Onsite Role

Ontario

CA$60,000 - CA$67,000 per year

16 hours ago

TR

Senior Quality Assurance, Database

Trupropel

Senior Quality Assurance role leading and mentoring the QA team while ensuring software reliability. Join a remote - first consultancy aiming to challenge software industry norms.

Remote Role

17 hours ago

TE

Freelance Software Tester – Foreign Currencies

Testlio

Freelance software tester in Canada for a globally known e - commerce website. Focused on identifying issues with the checkout flow and payment process.

Remote Role

$18 per hour

21 hours ago

RC

Software QA Analyst

Reliable Controls

Software QA Analyst ensuring quality, reliability, and usability in building automation software products. Collaborating with teams to shape testing strategies and improve QA practices.

Hybrid Role

British Columbia

CA$66,637 - CA$72,747 per year

yesterday

JC

QA Analyst

JANA Corporation

QA Analyst I testing software products at JANA, responsible for executing manual tests and collaborating with development teams. Engages in test automation and quality assurance processes.

Hybrid Role

Aurora Qa Engineer

CA$70,000 - CA$85,000 per year

yesterday

JS

Quality Assurance Lead

Jonas Software

QA Lead responsible for writing automation and improving QA practices at InnoSoft Canada. Collaborating closely with engineering and product teams to enhance overall quality processes.

Remote Role

CA$80,000 - CA$110,000 per year

yesterday

QS

Quality Assurance Lead Consultant – GMP Consulting

Q&C Services

Quality Assurance Consultant applying GMP knowledge to pharmaceutical consulting projects. Managing compliance, quality systems, and audits while working within a collaborative team environment in Canada.

Hybrid Role

Ontario

CA$70,000 - CA$85,000 per year

yesterday

QS

Quality Assurance Lead – Importing

Q&C Services

Quality Assurance Lead/Senior Consultant applying GMP knowledge in pharmaceutical consulting projects. Involves project management, compliance assessment, and client collaboration.

Hybrid Role

Ontario

CA$70,000 - CA$85,000 per year

yesterday

FU

Quality Assurance Lead

Fusion

QA Lead at InnoSoft Canada developing test automation across Fusion product suite. Leading QA practices and assessing test coverage for quality improvements.

Remote Role

CA$80,000 - CA$110,000 per year

2 days ago

RA

Senior Mobile Quality Engineer – Multiplatform, PSI, English Services

Radio-Canada

Senior Mobile Quality Engineer at CBC focusing on quality across mobile platforms. Collaborating with teams to enhance mobile app testing and architecture development.

Hybrid Role

Ontario