Senior Security Developer

TL;DR

Senior Security Developer (DevSecOps): Building and optimizing security tooling for continuous integration and deployment pipelines with an accent on access management, continuous compliance, and vulnerability management. Focus on automating security and infrastructure processes, designing robust security controls, and integrating security practices throughout the SDLC in a cloud environment.

Location: This role is hybrid and based in Montreal (Province of Quebec, Canada). It requires office attendance two times a week in our Quebec City, Montreal, London, or Weert offices. Must be legally allowed to work in Canada and potentially willing to relocate to Canada if not currently located in Quebec.

Company

hirify.global is a Quebec-based product company pioneering AI-powered search and recommendations to personalize digital experiences for customers, partners, dealers, and employees.

What you will do

• Own and evolve the security tools used in CI/CD pipelines.
• Design and support access management workflows to control and monitor access to infrastructure and applications.
• Participate in vulnerability management processes, including triaging findings and managing exceptions.
• Support compliance automation using tools to enforce standards across cloud infrastructure.
• Design, deploy, and maintain web application firewalls to protect from potential vulnerabilities.
• Partner with engineering, infrastructure, and business teams to design security controls aligned with real-world constraints.

Requirements

• Well-versed in producing reusable code in Python, building robust and scalable systems.
• In-depth knowledge of best security practices in software development.
• Hands-on Cloud service provider experience (ideally AWS), configuring and securing a variety of services (Compute, Storage, Networking, Kubernetes).
• Possess in-depth knowledge of DevOps tools and workflows.
• Track record of automating security and infrastructure processes to reduce complexity.
• Legally allowed to work in Canada.
• Willing to relocate to Canada if not currently located in Quebec.

Nice to have

• Proficient with Terraform for infrastructure-as-code, especially for security-related resources like IAM roles and secrets.
• Hands-on experience designing, operating, or integrating application security controls such as web application firewalls (WAF), application-layer threat detection, runtime protections, or security testing/monitoring tooling (e.g., SAST, DAST, IAST, RASP, API security tools).

Culture & Benefits

• Collaborative, diverse, and trusting work environment.
• Opportunity to continuously seek new challenges and test new roads.
• Hybrid work environment allowing flexibility, with two pillar days a week in the office to foster collaboration.
• Benefits enabling comfortable remote work from home, with potential travel for in-person team-building events.
• Encourages applications from all qualified candidates regardless of age, gender, disability, or background.

Hiring process

• Application submission and completion of a background check.