Senior Security Engineer managing security initiatives for R&D and production applications. Collaborating closely with teams to enhance security practices within a cloud environment.
Responsibilities
Evolve and expand our existing security activities – threat modeling, risk mitigation, observability, incident response. Manage and execute security projects based on internal and external inputs such as our bug bounty program, pentesting, or other gap analysis.
Implement security improvements as an individual contributor as well as in collaboration with our teams. Set the standard for how new code being shipped meets our security needs.
Advocate for security. Build a culture of security ownership rooted in shared values
Managing security roadmaps from a corporate-wide perspective to meet the needs of various stakeholders including enterprise sales enablement.
Work in a predominantly AWS cloud environment with some Google Cloud Platform services. Our services are built on Django and get continuously deployed.
Requirements
5+ years of experience in application security or related fields, with a strong ability to collaborate with application development teams.
Familiar with modern security practices and technologies
You understand security in a cloud provider context (we use primarily AWS with some GCP services as well) and can help move us toward a Zero Trust architecture.
Familiar with managing infrastructure as code with automation tools such as Terraform
Proficient in threat modelling, architecture design review processes, and familiar with common attack vectors and exploitation techniques.
Strong communication skills, capable of articulating security concerns and solutions to both technical and non-technical stakeholders.
Knowledge of development security best practices for mobile and web applications.
Bachelor’s degree in Computer Science, Engineering, or a related discipline, or an equivalent combination of education and experience.
Benefits
A noble mission that creates meaningful, fulfilling work
A team that cares deeply for customers and for each other
Flexible, remote first work environment
Professional learning and development for all role levels
An awesome and welcoming Toronto HQ
Competitive health benefits that start on day one
A management team focused on performance, growth, engagement and connection
Our winning strategy and market potential
Innovative PTO policy with lots of time and space for self-care
Passionate customers that believe in us—and what we do
A chance to work with new tech like generative AI—and see the customer impact
Intern in operational security at Investissement Québec, supporting security alert management and vulnerability tracking in a supervised learning environment.
IT Information Security Lead at Mirego, responsible for technology and information security management. Overseeing compliance and IT strategies while maintaining operational efficiency.
Cybersecurity Specialist focusing on offensive security for Exposant 3. Performing penetration testing, security audits, and team knowledge transfer in a hybrid work setup.
Financial security advisor in life and health insurance, developing and maintaining client relationships. Selling insurance products and assessing customer needs to provide personalized solutions.
Senior Security Engineer designing and maintaining Microsoft 365 security solutions at ResMed. Focusing on compliance, incident response, and collaboration with global teams.
Senior Infrastructure professional solving practical security challenges and improving enterprise systems security at Confluence. Focused on implementation, remediation, and secure operations across Windows and Linux environments.
Senior infrastructure professional responsible for vulnerability remediation and security improvements across enterprise systems at Confluence. Hands - on role involving Windows and Linux environments with strong collaboration with Cybersecurity team.
Enterprise Security Architect responsible for implementing information security best practices at SecureOps. Collaborating with clients to analyze networks and provide effective security solutions.
Health, safety, and environment advisor responsible for maintaining compliance and promoting safety practices. Supporting project teams and developing SSE programs to manage risks in the workplace.