Clicking Apply Now takes you to AutoApply where you can tailor your resume and apply.
Experience Level
Manager
Qualifications
The ideal candidate will possess a strong background in application security, with experience in secure software development practices. You should have a deep understanding of security frameworks, risk management, and vulnerability assessment techniques. A relevant certification (e.g., CISSP, CEH, or equivalent) is highly desirable. Additionally, you should have excellent communication skills, the ability to work collaboratively in a remote environment, and a passion for staying updated on the latest security trends and technologies.
About the job
ShareGate is seeking an Application Security Manager to strengthen the security of its software applications. This position is fully remote and open to candidates based anywhere in Canada.
What you will do
Design and implement security strategies that protect applications from threats and vulnerabilities.
Collaborate with teams across the company to integrate security practices into every stage of the software development lifecycle.
Lead security-focused projects and encourage a strong culture of security awareness.
Support efforts to meet relevant industry compliance standards.
Requirements
Demonstrated experience in application security.
Strong leadership abilities and a proactive mindset when addressing security issues.
Skilled at working with both technical and non-technical teams.
About ShareGate
ShareGate is a leading company dedicated to providing innovative solutions for data management and application security. Our mission is to empower organizations to navigate the complexities of digital transformation with confidence. With a commitment to excellence and a focus on customer satisfaction, we strive to foster a dynamic and inclusive work environment that encourages professional growth and collaboration.
Join Homebase as a Staff Security Engineer specializing in Application Security in a hybrid work environment. In this pivotal role, you will be responsible for enhancing our security posture while ensuring that our applications remain safe and secure. You will collaborate with cross-functional teams to identify vulnerabilities, implement security controls, a…
Full-time|$192K/yr - $240K/yr|On-site|Vancouver, British Columbia, Canada
Why join usAt Brex, we are revolutionizing the way businesses manage their finances with our AI-powered spending platform. Our integrated corporate cards, banking services, and global payment solutions empower companies to spend confidently. From startups to multinational enterprises, including well-known names like DoorDash, Flexport, and Compass, our platform enables proactive spend management, cost reduction, and enhanced efficiency worldwide.Joining Brex means embracing challenges and pushing boundaries while collaborating with some of the most talented professionals in the field. We are dedicated to fostering a diverse and inclusive workplace, believing that your potential is limited only by your imagination. We provide the tools, resources, and support necessary for you to advance your career.Engineering at BrexEngineering at Brex focuses on scalability, speed, and purposeful development. Our teams, encompassing Software, Data, Security, and IT, operate with high levels of autonomy and collaboration. We tackle complex technical challenges, take ownership of our results, and strive for excellence at every stage—from architecture to deployment. This is where engineering is an art, and builders emerge as leaders.What you’ll doAs a Senior Application Security Engineer, your primary objective will be to identify and address security vulnerabilities across the Brex platform. You will conduct code reviews, design evaluations, penetration testing, and manage vulnerabilities. Additionally, you will create and enhance tools for both static and dynamic testing of the platform and support secure development workflows. Being part of the broader Financial Scale organization, you will collaborate closely with teams in Security Operations, GRC, Product Security, Front End Platform, and IT Infrastructure.We seek individuals with a robust background and passion for penetration testing. You should have a proven track record of discovering vulnerabilities in intricate systems and developing exploits to illustrate their potential impact on the business. This role is highly collaborative and cross-functional, offering opportunities to work with various engineering teams across Brex. You should be excited about engaging with diverse backgrounds and roles. Ensuring world-class security is imperative for delivering world-class financial services.Brex is at the forefront of integrating AI into financial services, catering to dynamic and high-impact organizations like Coinbase, Robinhood, and Anthropic. This role presents a unique opportunity to influence the future of our AI-driven product suite.
About SentryAt Sentry, we believe bad software should be a thing of the past. Our mission is to empower developers to create better software at an accelerated pace, allowing everyone to enjoy technology again.With over $217 million in funding and a community of more than 100,000 organizations including industry leaders like Disney, Microsoft, and Atlassian, we are on the forefront of building innovative performance and error monitoring solutions. Our tools enable teams to spend less time resolving bugs and more time enhancing their products.Sentry supports a hybrid work environment across our global offices, designating Mondays, Tuesdays, and Thursdays as in-office days to foster collaboration and creativity. If you are passionate about creating solutions that improve digital experiences, join us in developing next-generation software monitoring tools.About The RoleAs a pivotal member of our Security Team, you will play a key role in safeguarding all aspects of Sentry: our clients, our code, and the infrastructure that supports them. We are a tight-knit team that values autonomy, trust, and innovative thinking to address complex security challenges. Our strong developer culture enhances our ability to build a product that millions depend on.In your capacity as a Senior Security Engineer, you will oversee both application and platform security initiatives. Your responsibilities will include shaping security practices, conducting security reviews, threat modeling, and managing vulnerabilities while instilling secure coding practices within our engineering teams. You will collaborate closely with product and engineering teams to ensure security is embedded in the development lifecycle from inception. Your expertise will be crucial as we expand our product capabilities and navigate new security landscapes.In this role, you willLead and enhance Sentry's security review initiatives, including secure code reviews and architecture assessments, establishing a culture where security is integrated into our operational processes.Drive effective vulnerability management practices encompassing intake, triage, prioritization, and tracking of remediation efforts, alongside managing our bug bounty and responsible disclosure program.Advocate for secure-by-design principles by partnering with engineering and product teams to embed security measures early in the development process, integrating security tools into development and CI pipelines.
Job SummaryAs the Senior Application & Cloud Security Engineer, you will be a pivotal member of the Technology team at Create Music Group, directly reporting to the VP of Data Engineering. This position is instrumental in safeguarding our application portfolio and multi-cloud infrastructure (AWS & GCP). You will work hands-on to enhance the security of Label Engine (PHP/Laravel on AWS, processing over $1B in royalties), fortify the expanding GCP-based CreateOS data and AI platform, and implement the company's extensive security roadmap, which encompasses identity management, endpoint protection, vulnerability management, incident response, and compliance.
As a Senior Cloud Application Security Engineer at Trulioo, work at the intersection of digital identity and security. This role focuses on protecting a platform used by organizations worldwide, helping to safeguard sensitive data and maintain trust in online interactions. Role overview Contribute to the security of cloud-based applications that support global identity verification. The team values collaboration and open communication, and each member plays a part in strengthening the platform’s defenses. The work directly impacts how businesses onboard customers, control costs, and reduce fraud risk. Work environment Based in Vancouver, Trulioo operates on a hybrid model, typically bringing employees together at a hub location three days a week. The company has earned recognition as a BC Top Employer for two consecutive years, reflecting a commitment to an inclusive and collaborative culture. What you will do Shape the security of a platform trusted by organizations globally Work alongside professionals dedicated to building trust online Advance technology that enables secure digital identity verification
Workleap, a Montreal-based tech company, creates products that simplify work for HR and IT teams. Since 2006, the company has launched solutions such as the Workleap Platform, an AI-powered HR tool for team performance and engagement, and ShareGate, a Microsoft 365 migration and governance tool. Over 20,000 companies rely on Workleap’s products. Role overview The Application Security Manager joins the AI-SDLC team, which develops internal platforms and tools for supporting AI agents throughout the software development lifecycle. This is a remote position based in Canada. What you will do Embed security practices and features directly into Workleap’s products, development pipelines, and workflows Work hands-on with code and build security tools Collaborate closely with developers to ensure security is integrated at every stage of product development Focus areas Ensure security features are present from the start across all tools, pipelines, and agent workflows Promote secure-by-default product development at scale
ShareGate is seeking an Application Security Manager to strengthen the security of its software applications. This position is fully remote and open to candidates based anywhere in Canada. What you will do Design and implement security strategies that protect applications from threats and vulnerabilities. Collaborate with teams across the company to integrate security practices into every stage of the software development lifecycle. Lead security-focused projects and encourage a strong culture of security awareness. Support efforts to meet relevant industry compliance standards. Requirements Demonstrated experience in application security. Strong leadership abilities and a proactive mindset when addressing security issues. Skilled at working with both technical and non-technical teams.
About Pantheon Pantheon WebOps Platform empowers the open web, hosting over 300,000 sites in the cloud for esteemed clients like Google, Princeton, Salesloft, and Doctors Without Borders. Every day, countless developers and marketers design, iterate, and scale WordPress and Drupal websites, reaching billions of users worldwide. Pantheon’s multitenant, container-based platform allows organizations to manage all their websites seamlessly from a single dashboard. Renowned companies, including Clorox and the United Nations, achieve remarkable results through accelerated development and real-time publishing utilizing Pantheon’s collaborative workflows. The Role As part of Pantheon’s Security Engineering team, you will play a crucial role in protecting, auditing, and testing the security of our comprehensive platform. We are dedicated to implementing a robust and multi-faceted approach to application security, emphasizing Security by Design within agile software development and cloud-native environments. We are on the lookout for a motivated and experienced application security engineer to join our expanding team. The Staff Security Engineer will hold a pivotal strategic and technical position within the Application Security team. Our mission is to ensure the security, audit, and testing of the entire cloud hosting platform across several core areas: Security by Design: Integrate “Security by Design” principles into agile software development and cloud-native frameworks. Support and Mentorship: Serve as Subject Matter Experts (SMEs), providing mentorship and guidance to enhance all security engineering initiatives organization-wide. Standard Setting: Establish, organize, and implement application security policies, processes, standards, and guidelines. Application Security Performance: Assist engineering teams in designing and constructing high-performing, secure applications by addressing security issues through risk-based methodologies. What You Will Do Policy Definition: Develop, document, and advocate for processes and practices that ensure a secure Software Development Life Cycle (SDLC). Security Culture: Be a key player in fostering a robust security culture within platform engineering teams. Proactive Security: Lead Threat Modeling initiatives as a fundamental aspect of the Secure by Design strategy. Secure Design Reviews: Conduct thorough Secure Code and Architecture Design assessments.
Who are we?At Cohere, our mission is to harness the power of intelligence for the benefit of humanity. We specialize in training and deploying cutting-edge models for developers and enterprises, enabling them to create innovative AI systems that deliver extraordinary experiences in content generation, semantic search, retrieval-augmented generation (RAG), and intelligent agents. Our endeavors are pivotal in accelerating the global adoption of AI technologies.We are dedicated to excellence in our craft. Each team member plays an essential role in enhancing the capabilities of our models and the value they provide to our clients. Our culture is built on hard work, rapid iteration, and a relentless focus on what is best for our customers.Cohere is comprised of a diverse team of researchers, engineers, designers, and more—each a leader in their field. We believe that diverse perspectives are crucial for creating exceptional products.Join us in our quest to shape the future of AI!About the RoleAre you passionate about secure software engineering? Do you aspire to be at the forefront of AI innovation and security? Our North team at Cohere is on the lookout for a Senior Software Engineer focusing on security to join us in our mission and make a substantial impact. This is not merely an advisory position; you will take ownership of and deliver production-level security features that our clients rely upon daily.Your Role:As a Senior Software Engineer with a specialization in security, your contributions will be vital in architecting and securing North's infrastructure. Your responsibilities will encompass:Software Development: Actively participate in the core development of security features like OIDC/OAuth flows and session management, ensuring the security of North's AI agents.Secure Coding: Write robust code to manage OIDC tokens, user claims, and sensitive information, following best practices for JWT validation and encryption.Authentication and Data Protection: Implement authentication protocols, including user login, token management, and authorization checks to safeguard data integrity.Tool Integration: Integrate new security tools to enhance North's capabilities.DevSecOps: Design and execute secret management in Kubernetes clusters, focusing on encryption and role-based access control (RBAC).Cross-functional Collaboration: Utilize strong communication skills to convey security best practices to stakeholders clearly and effectively.You may be a great fit if:You have 5+ years of experience in building secure software applications.You possess a deep understanding of security protocols and practices.You are proficient in coding languages and frameworks relevant to security development.You have a track record of successful collaboration in cross-functional teams.
Join Vention as an Application Engineering Specialist in Montréal! In this pivotal role, you will leverage your technical expertise to assist clients in effectively utilizing our innovative engineering solutions. You'll be responsible for providing exceptional support, guiding users through complex applications, and enhancing their experience with our products.This position requires a passion for technology and a commitment to customer satisfaction. You will work closely with cross-functional teams to ensure seamless integration and implementation of our engineering tools.
Join Movable Ink as a Product Security Engineer and play a pivotal role in safeguarding our codebases, CI/CD pipelines, and overall development practices. In this hands-on position, you'll adopt a security-first mindset while collaborating with engineering teams to streamline software delivery while minimizing risk. Your expertise will be crucial in enhancing automation processes that protect our code and infrastructure, especially in the face of rising threats from AI coding tools and supply chain attacks. This role is vital for proactively identifying and mitigating vulnerabilities before they are deployed to production.
Full-time|CA$132.6K/yr - CA$171.6K/yr|Remote|Remote - Vancouver
Samsara builds Connected Operations Cloud technology that supports organizations in agriculture, construction, field services, transportation, and manufacturing. The platform uses IoT data to help these industries improve safety, efficiency, and sustainability. As a public company, Samsara empowers team members to influence the future of physical operations, offering both independence and support. Role overview The Senior Security Engineer - Enterprise Security focuses on building, operating, and maintaining security infrastructure for Samsara’s corporate environment. This position collaborates with a global engineering team to develop a security engineering program that follows current best practices. What you will do Work with stakeholders to design security solutions that balance protection with usability Develop automated alerting and response tools for security events Contribute insights on potential threats in production environments Mentor and support junior engineers within the security team Requirements Experience with a range of security technologies and practices Ability to collaborate with global engineering teams Strong communication skills for partnering with stakeholders Located in Canada within the Pacific Standard Time zone This is a fully remote position based in Canada, limited to candidates within the Pacific Standard Time zone.
Veolia Environment SA seeks a Senior Application Engineer based in Oakville. This position plays a key part in guiding application development, with an emphasis on solutions that advance sustainability and environmental protection. Role overview The Senior Application Engineer will help set the technical direction for projects, working to improve efficiency and optimize performance across several initiatives. The work directly supports Veolia’s commitment to environmentally responsible practices. Impact Shape application development to support sustainability goals Influence project outcomes by identifying ways to increase efficiency Optimize performance across multiple efforts This role focuses on both technical leadership and practical improvements that make a measurable difference in environmental initiatives.
Full-time|$103.6K/yr - $166.5K/yr|Remote|Remote, Canada; Remote, US
Location: Remote, Canada or US GitLab Inc. is hiring a Software Security Engineer to work remotely from Canada or the US. This role focuses on strengthening security across the GitLab product and developing tools that detect and prevent abuse on SaaS platforms. The position is part of the Trust and Safety team, which manages core abuse prevention systems and delivers features that help keep customers safe, such as Compromised Password Detection for GitLab.com. What you will do Implement security improvements directly within the GitLab product Develop and maintain tools to identify and prevent abuse on SaaS platforms Analyze abuse patterns and trends, designing systems to stop malicious user activity Support customer safety by building and maintaining prevention mechanisms Who this role suits This position is well suited to software engineers who want to move into security engineering. Experience working with large Ruby on Rails codebases is important. Formal security engineering experience is not required. Learn more Additional details about the Trust and Safety team and this role’s responsibilities can be found in the GitLab handbook and blog. For more on Compromised Password Detection, see this post.
Full-time|Remote|Canada - Remote (ON, AB, BC, or NS Only)
Join Instacart as a Senior Security Engineer II and become a vital part of our mission to transform the grocery shopping experience. As a key contributor to our security team, you will help protect sensitive data and ensure the security of our platform. You will collaborate with cross-functional teams to develop security protocols, conduct risk assessments, and implement security solutions.
At Warner Music Group, we bring together a vibrant community of music creators, technology innovators, and passionate professionals. We are dedicated to transforming aspirations into reality and fostering a deep connection between artists and their audiences. Our mission is guided by three fundamental principles that define our diverse operations: • Curiosity: We thrive when we explore new cultures and challenge boundaries. Curiosity drives our creativity and innovation, which are essential for our future success. • Collaboration: The art of music is amplified through teamwork. Great ideas, like unforgettable songs, have the power to resonate globally. We are passionate about building connections across our community of artists, songwriters, partners, and fans.• Commitment: We strive for excellence in our work and in the support we provide to our talent. Every journey in music begins with a leap into the unknown, and we are committed to integrity and delivering on our promises.Technology is integral to our operations, whether it's onboarding new artists, providing essential data to platforms like Spotify and YouTube, or guiding artists in leveraging the latest AI tools for informed decision-making. Our engineering team at Warner Music Group transforms these possibilities into reality.We pride ourselves on being home to a diverse array of artists and songwriters who contribute to our success. Thus, we are devoted to cultivating an inclusive work environment that values and respects all backgrounds and experiences. We actively encourage applications from individuals across the spectrum of diversity.Consider a career at WMG and experience the perfect blend of an innovative global music enterprise while retaining the creative essence of a nimble independent company.Position OverviewAs a Software Application Engineer, you will be instrumental in maintaining, upgrading, and supporting the technical systems that drive Warner Music Group's global operations. This hybrid role encompasses aspects of Software Engineering and Site Reliability Engineering (SRE), demanding adaptability, a broad technical skill set, and a strong commitment to customer satisfaction.
About RootlyAt Rootly, we are dedicated to transforming how organizations respond to incidents, striving to enhance reliability across all sectors. Our cutting-edge incident management platform empowers companies globally to address incidents swiftly and effectively. We're not just redefining an industry; we're pioneering a new multi-billion dollar segment and require exceptional talent to help us realize this ambitious vision.Our clients include some of the fastest-growing names in the world, such as NVIDIA, Figma, Canva, Tripadvisor, and Squarespace, who trust Rootly to streamline their critical incident management processes. They appreciate our robust, enterprise-ready platform and collaborative partnership model, consistently rating us 5 stars on G2.Our investors share our enthusiasm. Backed by prominent funds including Y Combinator, along with industry leaders from Dropbox and GitHub, we prioritize transparency in our culture. Monthly financial reviews keep our team informed about the business's health, and our weekly changelog keeps everyone updated on our developments.About the RoleAs a Senior Security Engineer, you will be instrumental in advancing our security initiatives, working closely with diverse teams to ensure the reliability and scalability of our products. You will design systems, tools, and solutions that secure our mission-critical applications while contributing to organization-wide efforts to automate, optimize, and enhance our security protocols.Develop security solutions that not only meet rigorous standards but also exceed the expectations of our developers and customers.Play a key role in vital security initiatives, including identity and access management, vulnerability management, incident response, security control implementation, and infrastructure security.Collaborate closely with engineering teams to deliver secure, reliable, and scalable solutions for our valued customers.With our expanding customer base, tackle intriguing technical challenges to scale our product effectively.Participate in the on-call rotation, swiftly addressing and resolving security incidents as they occur.
About League Established in 2014, League Inc. stands at the forefront of healthcare consumer experience (CX) platforms, leveraging cutting-edge artificial intelligence (AI) to connect with over 63 million individuals globally. Our platform enables payers, providers, and health partners to deliver engaging healthcare solutions that enhance health outcomes. With over $285 million in venture funding, League powers the digital experiences of some of healthcare's most reputable brands, including Highmark Health, Manulife, Medibank, and Shoppers Drug Mart.Position SummaryAs a Senior Staff Security Engineer, you will play a pivotal role in shaping the long-term security architecture and strategy for our platform and engineering organization. Our security engineering teams are vital in integrating security measures throughout the development lifecycle and managing vulnerabilities. We believe in a 'security by design' approach, creating or acquiring tools that seamlessly integrate into our platform, empowering engineers to consistently produce high-quality, secure code.Your responsibilities will extend beyond incremental improvements as you tackle significant and complex security challenges. You will design foundational security components, frameworks, and reference architectures, establishing a 'paved road' that minimizes the risk of insecure code deployment. This role is crucial in embedding security and compliance controls into the foundational fabric of League's technology.About the RoleArchitectural Leadership: Define and advocate for the long-term technical security roadmap, architectural patterns, and standards across League's applications, infrastructure, and multi-cloud environments.Cross-Functional Strategy: Serve as the primary security technical advisor to platform, product, and executive leadership, aligning on multi-quarter security initiatives.Security Design Governance: Lead high-stakes, complex security design initiatives to ensure best practices are followed.
About the RoleGreetings! I'm Dave Dowe, the Senior Manager of Security Engineering at Jane. Over the past two years, I've had the privilege of leading our dedicated team that safeguards our platform, focusing on incident response, cloud security, and essential operational functions.Our Security Operations team stands as the frontline of our security program. We are the initial point of contact for team inquiries, diligently monitoring alerts, triaging incidents, and being the go-to individuals when challenges arise. This role is crucial because true security is a collaborative effort; it thrives on trust and open communication between engineering and security teams. In this position, you will have the opportunity to explore AI and automation to streamline workflows, reduce repetitive tasks, and maximize your contributions.We're seeking a candidate who perceives security as a partnership rather than a barrier. You will manage a security service desk, respond to and act upon alerts across our tools, and participate in on-call rotations, all while genuinely supporting the teams you work with. Expect to work with clarity and empathy, build trust through consistent follow-through, and foster a security culture that teams are eager to engage with.This is an L2 position where you'll independently handle defined security operations tasks while closely collaborating with our Enterprise and Cloud Security engineers.Your ImpactReduce operational toil: Innovate security workflows using AI and automation, develop simple tools to ease team efforts, and share insights from your experiences, both successes and lessons learned.Build trust: Foster strong relationships with engineering and cloud teams by addressing security requests with genuine care, clear communication, and dependable follow-through, encouraging teams to seek your guidance early on.Own alert triage and incident response: Ensure prompt and thorough investigation of security findings, escalate issues appropriately, and maintain clear documentation for team learning.Maintain security tools: Keep our security tools well-configured and updated based on hands-on experience, proactively spotting issues to prevent alert fatigue and missed threats.Collaborate in incident response: Efficiently manage on-call shifts, independently resolve incidents where possible, thoughtfully escalate when needed, and view every incident as a learning opportunity.
Overall Purpose: The Network Security Engineer will be responsible for designing and implementing robust network security solutions across all phases of network security. This includes leveraging Managed Security Services encompassing Firewalls, IDS, Proxies, and Routers to safeguard Telecommunications and third-party client networks.Roles & Responsibilities:Deliver intricate network security solutions that support customer billable projects, ensuring timely delivery while meeting both business and technical requirements.Investigate attempts or successful breaches to systems security and devise effective countermeasures.Oversee the maintenance and management of hardware, software, network firewalls, and encryption protocols.Administer security policies to regulate both physical and virtual access to systems.Provide management with insights regarding the detrimental impacts on the business resulting from theft, destruction, alteration, or denial of access to information and systems.
