Application Security Specialist
3 months ago
As an Application Security Specialist, your primary focus will be on enhancing Secure Software Development Life Cycle (S-SDLC) practices and controls to ensure our software solutions are developed and deployed with the utmost security standards.
Role Overview
In this position, you will:
Ensure secure design, architecture, and implementation throughout all phases of our Secure Software Development Life Cycle (SDLC). Lead security initiatives, including conducting security assessments, developing tools, and establishing new security methodologies. Engage in Threat modeling sessions to facilitate secure design conversations and contribute to risk evaluations. Develop security guidelines and documentation, incorporating compliance as code. Collaborate closely with our Security Awareness team to deliver exceptional application security training tailored for our engineering teams. Uphold high standards for engineering excellence and execution, resulting in superior product security deliverables to safeguard our products' SDLCs.Candidate Profile
You are an ideal candidate for the Application Security Specialist role if you possess:
Developer Empathy: A deep understanding of developer workflows, enabling you to communicate security initiatives effectively to development teams. Expertise in Application Security: A strong passion for application security, including secure coding practices, supply chain security, and SecDevOps methodologies. Commitment to Continuous Improvement: The ability to assess existing processes and identify opportunities for enhancement and efficiency gains.Required Technical Skills:
Proven experience collaborating with product development teams to integrate security measures. Proficiency in building and evaluating threat models and recommending secure design patterns. In-depth technical knowledge and experience in identifying common security vulnerabilities and risks, along with advising on mitigations and compensating controls. Familiarity with SAST, DAST, and SCA scanning tools and the ability to analyze identified security findings. Experience with DevSecOps in a cloud-native environment and integrating security into CI/CD pipelines (preferably GitHub Actions, but other CI tools like GitLab CI are also acceptable). Automation skills, particularly in relation to security tools, with proficiency in Python or Golang being advantageous. Knowledge of various security frameworks such as OWASP's ASVS, CIS Benchmarks, and NIST CSF. Strong organizational skills to manage and prioritize multiple tasks and projects effectively.Additional Skills:
Excellent Communication Skills (both verbal and written, with the ability to influence others) A Learning Mindset (staying updated on emerging technical trends and continuous learning) Experience with Agile Methodologies Familiarity with Linux systems and containerization Experience with cloud platforms such as AWS or Azure Knowledge of Infrastructure as Code using Terraform Experience with Security tools (Web attack proxies, SAST, DAST, SCA)What We Offer
Joining our team means becoming part of a culture that values diversity and inclusion, where we are dedicated to your personal and professional development through:
Flexible Work Environment: We support a hybrid working model that balances in-office and remote work to ensure a seamless experience. Comprehensive Wellbeing Programs: We provide extensive benefits that promote work-life balance, including flexible vacation policies, mental health days, and resources for overall wellbeing. Inclusive Culture: We are recognized for our commitment to equality, diversity, and inclusion, fostering a supportive work environment. Learning & Development Opportunities: Access to LinkedIn Learning and internal talent marketplaces for cross-company project involvement. Social Responsibility: Participation in employee-driven resource groups and initiatives that contribute to local and global impact. Purpose-Driven Work: Our mission is to assist customers in pursuing justice, truth, and transparency, making a meaningful impact in the industries we serve.Are you ready to be part of a team that is redefining how knowledge professionals operate? At Thomson Reuters, we have been committed to this mission for nearly 160 years, providing industry-leading products and services that empower professionals across various sectors.
Accessibility Commitment
We believe in the importance of diversity in our workforce and are committed to providing equal employment opportunities to all qualified candidates, regardless of background or identity. We also ensure reasonable accommodations for individuals with disabilities and sincerely held religious beliefs in accordance with applicable laws.
For more information about Thomson Reuters, please visit our website.
-
Application Security Specialist
1 week ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob Title: Application Security SpecialistAt David Joseph & Company, we are seeking a highly skilled Application Security Specialist to join our team. As an Application Security Specialist, you will play a critical role in safeguarding our applications and services by implementing robust cyber security measures throughout the software development...
-
Application Security Specialist
2 weeks ago
Toronto, Ontario, Canada ipss inc. Full timeJob Title: Application Security SpecialistJob Type: Permanent Full TimeShift Information: Monday to Friday, 35 hours work weekWe are seeking a skilled Application Security Specialist with experience in secure coding practices, threat modelling, Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security...
-
Application Security Specialist
2 weeks ago
Toronto, Ontario, Canada First National Full timeJob Summary:We are seeking an experienced Application Security Specialist to join our team at First National. As an Application Security Specialist, you will be responsible for analyzing and documenting processes, policies, controls, and standards to comply with security frameworks and regulations.Key Responsibilities:Performing security reviews and...
-
Application Security Specialist
2 months ago
Toronto, Ontario, Canada First National Full timeJob Title: Application Security SpecialistWe are seeking an experienced Application Security Specialist to join our team at First National. As a key member of our Information Security team, you will play a critical role in ensuring the security and integrity of our applications and systems.Key Responsibilities:Analyze and document processes, policies,...
-
Application Security Specialist
2 months ago
Toronto, Ontario, Canada First National Full timeJob Title: Application Security SpecialistWe are seeking an experienced Application Security Specialist to join our team at First National. As a key member of our Information Security team, you will play a critical role in ensuring the security and integrity of our applications and systems.Key Responsibilities:Analyze and document processes, policies,...
-
Application Security Specialist
4 weeks ago
Toronto, Ontario, Canada ipss inc. Full timeJob Title: Application Security SpecialistJob Type: Permanent Full TimeShift Information: Monday to Friday, 35 hours work weekWe are seeking a skilled Application Security Specialist with experience in secure coding practices, threat modeling, Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security...
-
Application Security Specialist
4 weeks ago
Toronto, Ontario, Canada ipss inc. Full timeJob Title: Application Security SpecialistJob Type: Permanent Full TimeShift Information: Monday to Friday, 35 hours work weekWe are seeking a skilled Application Security Specialist with experience in secure coding practices, threat modeling, Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security...
-
Application Security Specialist
3 weeks ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a highly skilled Application Security Specialist to join our team at David Joseph & Company. As a key member of our cybersecurity team, you will play a critical role in safeguarding our applications and services by implementing robust security measures throughout the software development lifecycle.Key ResponsibilitiesConduct...
-
Application Security Specialist
3 weeks ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a highly skilled Application Security Specialist to join our team at David Joseph & Company. As a key member of our cybersecurity team, you will play a critical role in safeguarding our applications and services by implementing robust security measures throughout the software development lifecycle.Key ResponsibilitiesConduct...
-
Security Protection Specialist
7 days ago
Toronto, Ontario, Canada Paladin Security Full timeSecurity Protection SpecialistAt Paladin Security, we're dedicated to making the world a safer and friendlier place. As a Security Protection Specialist, you'll play a vital role in providing top-notch security services to our clients with complex security needs. **Job Highlights:*** Competitive hourly rate of $18.25* Opportunities for growth and advancement...
-
Application Security Specialist
1 month ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a highly skilled Application Security Specialist to join our team at David Joseph & Company. As a key member of our cybersecurity team, you will play a critical role in safeguarding our applications and services by implementing robust security measures throughout the software development lifecycle.Key ResponsibilitiesConduct...
-
Application Security Specialist
3 weeks ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a highly skilled Application Security Specialist to join our team at David Joseph & Company. As a key member of our cybersecurity team, you will play a critical role in safeguarding our applications and services by implementing robust security measures throughout the software development lifecycle.Key ResponsibilitiesConduct...
-
Application Security Specialist
1 month ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a highly skilled Application Security Specialist to join our team at David Joseph & Company. As a key member of our cybersecurity team, you will play a critical role in safeguarding our applications and services by implementing robust security measures throughout the software development lifecycle.Key ResponsibilitiesConduct...
-
Application Security Specialist
3 weeks ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a highly skilled Application Security Specialist to join our team at David Joseph & Company. As a key member of our cybersecurity team, you will play a critical role in safeguarding our applications and services by implementing robust security measures throughout the software development lifecycle.Key ResponsibilitiesConduct...
-
Application Security Specialist
2 weeks ago
Toronto, Ontario, Canada David Joseph & Company Full timeJob SummaryWe are seeking a skilled Application Security Specialist to join our team at David Joseph & Company. The ideal candidate will have experience in secure coding practices, threat modeling, Static Application Security Testing (SAST), Software Composition Analysis (SCA), Dynamic Application Security Testing (DAST), and container security.Key...
-
Security Specialist
4 weeks ago
Toronto, Ontario, Canada Communications Security Establishment Full timeGeneral Application OpportunityAre you interested in exploring employment opportunities with the Communications Security Establishment (CSE)? If you don't see a posted hiring process that aligns with your skills and aspirations, we encourage you to submit your application to our general inventory.Key InformationSalary Range: To learn more about our salary...
-
Security Specialist
4 weeks ago
Toronto, Ontario, Canada Communications Security Establishment Full timeGeneral Application OpportunityAre you interested in exploring employment opportunities with the Communications Security Establishment (CSE)? If you don't see a posted hiring process that aligns with your skills and aspirations, we encourage you to submit your application to our general inventory.Key InformationSalary Range: To learn more about our salary...
-
Application Security Specialist
4 weeks ago
Old Toronto, Ontario, Canada ipss inc. Full timeJob Title: Specialist Application SecurityDivision: Office of the Chief Information Security OfficerReports To: Manager Application SecuritySalary Range: $112,280 to $122,000Work Location: 55 John Street, TorontoJob Type: Permanent Full TimeShift Information: Monday to Friday, 35 hours work weekJob Summary:We are seeking a skilled Application Security...
-
Application Security Specialist
4 weeks ago
Old Toronto, Ontario, Canada ipss inc. Full timeJob Title: Specialist Application SecurityDivision: Office of the Chief Information Security OfficerReports To: Manager Application SecuritySalary Range: $112,280 to $122,000Work Location: 55 John Street, TorontoJob Type: Permanent Full TimeShift Information: Monday to Friday, 35 hours work weekJob Summary:We are seeking a skilled Application Security...
-
Application Security Specialist
4 weeks ago
Toronto, Ontario, Canada Xideral North America Inc Full timeJob Title: Application Security DeveloperThis is a remote position.We are looking for an Application Security Specialist for an exciting new role.Main Responsibilities:Conduct in-depth analysis of software components to detect security vulnerabilities.Assess third-party software libraries and recommend upgrades.Identify and resolve vulnerabilities in our...
