×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Network Security

Sr. Application Security Engineer

Job in Victoria, British Columbia, Canada
Listing for: Integro Softwares Inc
Full Time position
Listed on 2025-12-31
Job specializations:
  • IT/Tech
    Cybersecurity, Network Security
Job Description & How to Apply Below
Location: Victoria

POSITION ROLE

Contract

POSITION DESCRIPTION

We are seeking an experienced Sr. Application Security Engineer who interfaces with technical and non-technical teams to identity product security risks and develop solutions to eliminate or minimize them. The candidate should have a deep understanding of application security vulnerabilities and mitigation strategies. He or she will drive the creation and maintenance of applications / products security standards, guidelines and procedures along with conducting application penetration testing, performing architecture/design and code reviews, and vulnerability assessments.

Analyze software designs and implementations from a security perspective, and identify and resolve security issues. You will include the appropriate security analysis, defences and countermeasures at each phase of the software development lifecycle, to result in robust and reliable software.

The position is based in Victoria (Client Location).

QUALIFICATIONS

  • A minimum of 5 years’ experience leading application security functions in a fast-paced, multi-project and multi-customer IT environment.
  • Bachelor’s degree in Computer Science, IT, Information Security or in a related field.
  • Minimum 5+ years of experience in the field of security in the following areas: security engineering, incident response, system, application and network security, vulnerability management, threat modelling, penetration testing, intrusion detection, firewalls and encryption technologies.
  • Minimum 5+ years of experience in the information security field with exposure to audit, risk management, data privacy, and regulatory and compliance practices.
  • Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation.
  • Software development experience in one of the following core languages:
    Ruby on Rails, SQL, HTML, Java, Javascript and .NET
  • Experience with modern Web Application Frameworks e.g. J2EE/Rails/.Net, Spring Boot, Web Services (SOAP/WSDL or REST/WADL), WCF, Service Oriented Architectures) and of network/web related protocols.
  • Preferred certifications: CISSP, CISM, SANS GIAC.
  • Knowledge and experience of cloud infrastructure security;
    Azure, AWS, Google Cloud.
  • Knowledge and experience working with various security frameworks (e.g., ISO/IEC 2700x, NIST CSF, COBIT, OWASP) and audit frameworks (SOC
    2).
  • Knowledge of Security Information and Event Management (SIEM) tools, network and operating system security features (e.g., Windows, Linux, Ubuntu) and network security technologies (e.g. firewalls, filtering routers, authentication mechanisms, IPSEC VPN, server hardening).
  • Knowledge and experience with microservices and containerization technologies (e.g. Docker, Kubernetes, Rancher).
  • Scripting languages such as Python, Ruby, Perl, Bash and/or Power Shell.
  • Have hands-on experience with tools and technologies used throughout secure SDLC (e.g., Veracode, Blackduck) and in Agile development preferred.
  • Hands on experience with managing security awareness and training such as online training modules, lunch and learns, periodic security communication, and simulated phishing campaigns.
  • Knowledge of security flaws and its resolution as listed in sites like OWASP, SANS, etc.
  • Knowledge of authentication mechanisms like SAML, OAuth, etc.
  • Experience in secure application programming, performing code reviews, and penetration testing, web-based security testing of mobile applications preferred
  • Familiarity with attack vectors and its customer impact.
  • Ability to work in both a collaborative team environment as well as independently when required.
  • Security knowledge on current threats, trends and mitigations.
  • Strong time management and prioritization skills and ability to multi-task across various projects in a high-paced work environment to meet deadlines and manage stakeholder expectations.
  • Knowledge of software design, network architecture, protocols, and standards preferred.
  • Interest in all aspects of security research and development.

    • PRIMARY RESPONSIBILITIES

  • Implement, test and operate advanced software security techniques in…
    • Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
    To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search