IT consultant providing security assessments and IT infrastructure reviews. Focused on identifying risks and delivering recommendations for improvement across multiple domains.
About the role
- Lead Security Engineer at US Mobile building systems for the 21st century with a focus on fraud prevention and security integration across SDLC.
Responsibilities
- Write and review production code in Java, Kotlin, and Go, ensuring security best practices are applied across APIs, backend services, and infrastructure automation — with particular attention to payment processing flows and data integrity.
- Perform secure code reviews and guide developers on secure design patterns, embedding fraud-aware coding standards into engineering workflows from the ground up.
- Monitor and analyze application and network traffic using tools like Datadog and Cloudflare WAF to identify anomalies, payment abuse patterns, account takeover attempts, and emerging threats across cloud and application environments.
- Build and automate security tooling that integrates into CI/CD pipelines for vulnerability scanning, dependency management, and code integrity checks — including controls specific to payment and billing service deployments.
- Collaborate with DevOps and backend engineers to design secure architectures, enforce least privilege, and adopt zero-trust principles across subscriber lifecycle flows including onboarding, SIM activation, number porting, and payment processing.
- Lead threat modeling, risk assessments, and incident response for fraud and security events — maintaining playbooks, coordinating responses, and translating findings into actionable hardening improvements across Telecom-specific attack surfaces.
- Stay current with evolving fraud techniques, exploits, and threat intelligence, proactively applying new research to harden payment systems, detection models, and security tooling against emerging attack vectors.
Requirements
- Bachelor’s degree in Computer Science, Software Engineering, or a related field.
- 7+ years of experience in fraud, cybersecurity, application security, or security engineering — ideally in developer-heavy environments.
- Strong software engineering background with hands-on experience in Java, Kotlin, or Go (comfortable reading and writing production code).
- Deep understanding of secure software development, API security, and microservices architectures.
- Experience integrating security into CI/CD pipelines and cloud-native environments (AWS, GCP, or similar). Understanding of compliance frameworks such as PCI-DSS, SOC 2, or ISO 27001 is a strong plus.
- Familiarity with observability and monitoring platforms such as Datadog, Cloudflare WAF, or similar tools for traffic analysis and anomaly detection.
- Proficiency with security monitoring and automation tools (SIEM, EDR, IDS/IPS, etc.).
- Excellent communication skills and the ability to collaborate with both engineers and leadership.
- Certifications like CISSP, OSWE, GCSA, or CISM are a plus but not required — demonstrable coding and analytical ability matter most.
Benefits
- Competitive salary - 150k CAD - 220k CAD (based on experience/location)
- Flexible working hours
- Supplemental health insurance
- Professional development stipend
- $500 wfh tech set-up reimbursement
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Manager, Cybersecurity & IT Risk ensuring audits and risk management practices at CNB. Collaborating with teams to address cybersecurity and IT controls issues effectively.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
Technical Leader overseeing security for Product and Cloud at Tempo. Leading team, engaging with partners, ensuring compliance, fostering innovations in security practices.
Senior Cybersecurity Advisor providing support to threat and vulnerability analysts at Exposant 3 in a hybrid work model. Collaborating on incident responses and vulnerability management in a dynamic team.
Financial Security Advisor at RBC Insurance connecting clients with comprehensive insurance solutions. Building client relationships and leveraging RBC’s brand to grow the market.
Senior IAM Systems Support Analyst responsible for deploying and improving IAM services at RBC. Supporting MFA systems and ensuring platform reliability while collaborating with various teams.
Senior Manager overseeing IAM initiatives and strategic roadmap execution at RBC. Partnering with stakeholders to enhance organizational capabilities in Identity and Access Management.
Senior Internal Controller in information security defining security strategies and conducting risk analysis. Participating in audits and controls for a multidisciplinary firm in Canada.
Senior Security Consultant specializing in penetration testing at TEHORA. Defining security strategies and conducting risk analyses and audits.