Application Security Developer

Our employees are at the heart of everything we do. Together, we help people, businesses, and society prosper in good times and be resilient in bad times.

Our employee promise represents Intact's commitment to you in exchange for living our Values, striving to do your best work, being open to change and investing in your career. In return, we promise to provide support, opportunities and performance-led financial rewards at a workplace where you can shape the future, win as a team and grow with us.

About the role

We are seeking an Application Security Developer focused on automation and enhancing AI driven self-service capabilities to strengthen the security posture of our organization's applications & infrastructure. In this role, you will be responsible for designing and implementing automated solutions that enable developers to seamlessly and effectively incorporate security measures into their workflows. This role sits as an intersection of AppSec, secure software engineering and AI/LLM development helping to automate/build intelligent tools for Intact's security team.

What you'll do here:

• Develop and maintain automation tools to integrate application security best practices into development processes.
• Build and maintain scripts that incorporate automated security testing in the pipeline.
• Design and implement self-service efficient security solutions for development teams to reduce friction in SSDLC and to improve secure development.
• Build AI driven secure code remediation guidelines, intelligent vulnerability tracking tools etc.
• Automate security reporting with AI driven capabilities, build executive level dashboards (PowerBi, Grafana etc) to assess security posture.
• Collaborate with software engineering teams to integrate security controls and gating into SSDLC.
• Monitor systems and automate the detection and response to security incidents.
• Train and educate development teams on using security tools and secure development practices.

What you bring to the table:

• Degree in Software engineering, Computer Science, Cybersecurity, or a related field.
• A minimum of seven (7) years of relevant professional experience.
• Strong experience in development, application security, focusing on automation and service integration.
• Proficiency in programming or scripting in at least one language (Java, Python, Java Script, Type script, Go etc.)
• Experienced working with or integrating SAST, DAST, CSPM and other security related tools into organizational processess.
• Familiarity working with CI/CD (Jenkins, GitHub Action, GitLab CI/CD, etc.) and integrating security tools into the pipelines.
• Exposure to AI frameworks and comfortable in AI/LLM concepts like promt engineering, model integration, validation.
• Knowledge of application security frameworks and standards (OWASP Top 10, etc.).
• Good knowledge of databases and web technologies (REST, SOAP, etc.).
• Excellent teamwork and communication skills with technical and non-technical audiences.
• Experience with cloud technologies (AWS, Azure, GCP) and their security.
• Knowledge of DevSecOps & SLSA practices.
• Good to have Service now AVR knowledge.
• Certification in information security (CISSP, CEH, etc.) is a nice to have.
• For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English-speaking colleagues across the country.
• No Canadian work experience required however must be eligible to work in Canada.

What we offer

Our hybrid work model provides the balance between working from home and enjoying meaningful in-person interactions.

Working here means you'll be empowered to be and do your best every day. Here is some of what you can expect as a permanent member of our team:

• A financial rewards program that recognizes your success
• An industry leading Employee Share Purchase Plan; we match 50% of net shares purchased
• An extensive flex pension and benefits package, with access to virtual healthcare
• Flexible work arrangements
• Possibility to purchase up to 5 extra days off per year
• An annual wellness account that promotes an active and healthy lifestyle
• Access to tools and resources to support physical and mental health, embracing change and connecting with colleagues
• A dynamic workplace learning ecosystem complete with learning journeys, interactive online content, and inspiring programs
• Inclusive employee-led networks to educate, inspire, amplify voices, build relationships and provide development opportunities
• Inspiring leaders and colleagues who will lift you up and help you grow
• A Community Impact program, because what you care about is a part of what makes you different. And how you contribute to your community should be just as unique.

We are an equal opportunity employer

At Intact, our Value of respect is founded on seeing diversity as a strength. We strive to create an accessible workplace where employees feel valued, included and encouraged to share their unique perspectives.

We encourage applications from individuals who are members of equity-deserving groups, including but not limited to women, Indigenous peoples, persons with disabilities, Black people, and members of the 2SLGBTQI+ community.

As part of Intact's commitment to reconciliation, we acknowledge that we work, meet and travel across the land currently called Canada, originally inhabited by First Nations, Metis and Inuit people. This history extends through many centuries and continues to evolve today.

We have policies to ensure equal access and participation for people with disabilities, including providing workplace adjustments (accommodations). A copy of applicable policies is available on request.

If we can provide a specific adjustment to make the recruitment process more accessible for you, please let us know when we reach out about a job opportunity. We'll work with you to meet your needs.

Learn more about our recruitment process and your candidate journey here.

If you are an employee of Intact or belairdirect, please apply for this role on Internal Career Site.