Security Engineer II focusing on application security at NerdWallet, ensuring products safeguard user data. Collaborating with teams to improve security practices and develop tooling.
Responsibilities
Partner closely with engineering teams across the company to reduce security risk throughout the software development lifecycle
Contribute to initiatives that strengthen NerdWallet’s security posture by improving tooling, workflows, and standards
Help scale NerdWallet’s application security program through automation, tooling, and developer enablement
Build tools, processes, and automation that improve security posture visibility for engineers and leadership
Review pull requests and provide actionable guidance on secure coding practices
Support operational work during security investigations or incidents affecting applications
Help integrate security practices into the secure development lifecycle (SDLC) across teams
Requirements
2+ years of experience in application security, software engineering, or a related security role
Experience identifying, triaging, and remediating security vulnerabilities in applications
Experience working with software deployed in cloud environments, particularly AWS
Proficient in Python or another scripting language used for automation
Comfortable reading and reviewing JavaScript or similar application code
Experience or interest in building automation, tooling, or processes that improve application security workflows
Comfortable learning new programming languages, frameworks, or security tools as needed
Benefits
Monthly Healthcare Stipend
Rejuvenation Policy – Vacation Time Off + You will receive the official public holidays in your province
Paid sabbatical for Nerds to recharge, gain knowledge and pursue their interests
Monthly Wellness Stipend, Wifi Stipend, and Cell Phone Stipend
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.