×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity AI Engineer (Applied/Software)

Security Engineer, Application Security

Job in Toronto, Ontario, C6A, Canada
Listing for: Homebase
Full Time position
Listed on 2026-06-17
Job specializations:
  • IT/Tech
    Cybersecurity, AI Engineer (Applied/Software)
Salary/Wage Range or Industry Benchmark: 80000 - 100000 CAD Yearly CAD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Staff Security Engineer, Application Security

These are the key ways you’ll contribute and create impact in this role:

Security Strategy & Architecture
  • Define and execute Homebase’s multi-quarter Application Security roadmap, aligning security initiatives with business objectives and company OKRs.
  • Architect secure-by-default patterns, frameworks, and paved roads that developers adopt naturally, removing entire classes of vulnerabilities before they reach production.
  • Evaluate emerging security technologies and make build-versus-buy decisions that shape the security platform.
  • Drive security and product trade‑off decisions at the architectural level, balancing protection with velocity.
  • Influence company-wide engineering practices and security investments through data‑driven recommendations.
AI Security
  • Lead threat modeling and security architecture reviews for AI‑powered features, model training pipelines, and LLM integrations.
  • Design and implement security controls specific to AI/ML systems, including prompt injection defenses, model input validation, output filtering, and data pipeline integrity.
  • Create AI‑powered vulnerability detection and security automation that multiplies the team’s effectiveness.
  • Partner with AI engineering teams to establish secure development patterns for model deployment and inference infrastructure.
  • Stay ahead of the evolving AI threat landscape and translate emerging risks into practical engineering guidance.
Secure Development & Tooling
  • Build and maintain security tooling and automation that integrates seamlessly into CI/CD pipelines, enabling continuous security validation at scale.
  • Own the vulnerability management program: design modern systems for detection, prioritization, tracking, and remediation of security debt across the product portfolio.
  • Own the bug bounty and responsible disclosure program, turning external researcher findings into systemic improvements.
  • Embed security into the full software development lifecycle through scalable guardrails, automated testing frameworks, and developer‑facing documentation.
Cross‑Functional Impact & Culture
  • Partner with senior leaders across Engineering, Product, and Infrastructure to improve Homebase’s overall security posture.
  • Pioneer a security partnership program, mentoring engineers across the organization, and driving a culture of shared security ownership.
  • Provide expert guidance during security incidents and lead post‑incident analysis to drive systemic improvements.
  • Curate and author security guidance, patterns, and training content that raises the security bar organization‑wide.
  • Influence security decisions at the department and company level; shape how Homebase invests in security capabilities.
Foundation for Success
  • 10+ years of progressive experience in Application Security or Security Engineering, with demonstrated impact at the Staff or Principal level.
  • Deep software engineering experience in production environments, you write code, build tools, and think like an engineer first.
  • A proven track record of leading architectural changes and complex cross‑team initiatives that reduced security risk at scale.
  • Hands‑on experience securing AI‑native applications, including LLM integrations, model pipelines, or ML infrastructure.
  • Strong expertise in web application security, cloud‑native security (AWS), and modern Dev Sec Ops  practices.
  • Proficiency in languages and frameworks relevant to our stack:
    Ruby, Python, React, and Rails.
  • Experience designing and implementing modern vulnerability management systems and embedding security tooling within CI/CD pipelines.
  • Exceptional ability to evaluate security trade‑offs, make pragmatic risk‑informed decisions, and communicate them clearly to technical and non‑technical stakeholders.
  • Demonstrated curiosity about emerging AI capabilities, with a track record of leveraging new tools to enhance security operations and productivity.
Bonus Points
  • Experience defining application security strategy and maturity roadmaps for a high‑growth, product‑driven company.
  • A background in building AI‑powered security tools or detection systems.
  • Speaking experience at security conferences, meetups, or community events.
  • Experience with threat modeling frameworks adapted…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search