Назад
Company hidden
обновлено 2 дня назад

Application Security Lead

120 000 - 140 000$
Формат работы
hybrid
Тип работы
fulltime
Грейд
lead
Английский
b2
Страна
Canada
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Application Security Lead (Cybersecurity): Leading the application security practice and collaborating with cross-functional teams to ensure products and applications are built securely with an accent on threat modeling and vulnerability mitigation. Focus on integrating security tools into DevSecOps practices, performing threat modeling, and improving application security technologies.

Location: Hybrid in Toronto, Canada

Salary: $120K-$140K

Company

Interac connects Canadians through secure digital payments, advanced identity verification and industry-leading fraud protection.

What you will do

  • Lead application security practice at Interac in alignment with product and business objectives.
  • Build and maintain a comprehensive application security strategy to identify and mitigate product vulnerabilities.
  • Integrate application security tools into DevSecOps practice, reducing development friction and vulnerabilities in production
  • Perform threat modelling on new systems, products, and features and facilitate secure architecture and design discussions.
  • Develop and implement code reviews and automated security testing processes to monitor compliance to secure coding standards.
  • Collaborate with other cybersecurity functions such as IR, VM, and Cloud Security as needed to mitigate application security risk.

Requirements

  • 5-7 years of experience in Application Security or related fields
  • Post-Secondary degree or diploma in Engineering, Programming/Systems, Computer Science, or other related discipline.
  • Eligibility to work for hirify.global in Canada in a Full Time Capacity.
  • Experience with threat modelling, design reviews, and risk analysis
  • In-depth knowledge of authentication, authorization, network security, vulnerability exploitation, and vulnerability remediation.
  • Experience with SAST/DAST/SCA tools such as Veracode, SonarQube, Snyk, or Burp Suite

Culture & Benefits

  • Generous vacation and wellness days
  • Comprehensive employer-paid benefits coverage
  • Flexible hybrid work model for better work-life balance
  • Access to a free and confidential 24/7 employee & family assistance program
  • Pregnancy and parental leave top-up
  • Charitable donation matching with United Way

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →

Текст вакансии взят без изменений

Источник - загрузка...