Lead Security Engineer

1 week ago

Montreal, Quebec, Canada US Mobile Full time $150,000 - $200,000 per year
US Mobile is on a mission to revolutionize connectivity. Imagine a world where you can go into a single app and buy terabytes of data for every one of your devices: phone, smart devices, car, home broadband, and more. That's the future that US Mobile is building: a software platform built truly for the 21st century and the age of 5G and IoT, with world class engineering, best-in-class user experience, and features that will define the next generation of connectivity. 
At the core of it all, we have a team and culture that has been recognized by Forbes as one of the top 500 best startup employers in the US. Our team spans diverse backgrounds, cultures, and stories, with employees coming from 20+ countries.
We're a venture-backed company entering hypergrowth, having recently ranked 94th on Inc 5000's fastest-growing private companies in America, and we're looking for someone exceptional to join our team.
Job Description: Lead Security Engineer, you will:
As the Lead Security Engineer, you'll be both a hands-on technical contributor and a security leader. You will write and review code, design secure systems, and work closely with backend and platform engineers to ensure that our infrastructure, applications, and services are resilient against evolving threats.You'll lead a small, high-impact team responsible for embedding security into the entire SDLC — from code review and threat modeling to runtime monitoring and incident response. Your mission: make security an integral part of our engineering DNA. Responsibilities:
  • Write and review production code in Java, Kotlin, and Go, ensuring that security best practices are applied in APIs, backend services, and infrastructure automation.
  • Perform secure code reviews and guide developers on secure design patterns and coding standards.
  • Monitor and analyze application and network traffic using tools like Datadog, Cloudflare Web Application Firewall (WAF), and related observability platforms to identify anomalies, attacks, and emerging threats.
  • Build and automate security tooling that integrates into CI/CD pipelines for vulnerability scanning, dependency management, and code integrity checks.
  • Collaborate with DevOps and backend engineers to design secure architectures, enforce least privilege, and adopt zero-trust principles.
  • Lead threat modeling and risk assessments, translating findings into actionable improvements.
  • Develop and maintain incident response playbooks and coordinate responses to potential security events.
  • Drive security awareness and training within engineering teams to foster a security-first culture.
  • Use real-time threat intelligence and analytics to detect, analyze, and respond to evolving attacks across cloud and application environments.
  • Stay current with new exploits, research tools, and emerging best practices to proactively harden systems.
Required:
  • Bachelor's degree in Computer Science, Software Engineering, or a related field.
  • 7+ years of experience in cybersecurity, application security, or security engineering — ideally in developer-heavy environments.
  • Strong software engineering background with hands-on experience in Java, Kotlin, or Go (comfortable reading and writing production code).
  • Deep understanding of secure software development, API security, and microservices architectures.
  • Experience integrating security into CI/CD pipelines and cloud-native environments (AWS, GCP, or similar).Understanding of compliance frameworks such as PCI-DSS, SOC 2, or ISO 27001 is a strong plus.
  • Familiarity with observability and monitoring platforms such as Datadog, Cloudflare WAF, or similar tools for traffic analysis and anomaly detection.
  • Proficiency with security monitoring and automation tools (SIEM, EDR, IDS/IPS, etc.).
  • Excellent communication skills and the ability to collaborate with both engineers and leadership.
  • Certifications like CISSP, OSWE, GCSA, or CISM are a plus but not required — demonstrable coding and analytical ability matter most.
Benefits:
  • Competitive salary - 150k CAD - 200k CAD (based on experience)
  • Flexible working hours
  • Supplemental health insurance
  • Professional development stipend
  • $500 wfh tech set-up reimbursement
Think you'd be a great fit? Apply to learn more We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

  • Web Security Proxy Engineer

    11 hours ago

    Montreal, Quebec, Canada Saransh Inc Full time US$80,000 - US$140,000 per year

    Role Title: Web Security Proxy EngineerLocation: Hybrid Onsite – Montreal, Canada (3–4 days onsite expected) – Only local profilesResponsibilitiesLead web engineerWeb Security Proxy EngineerA skilled and proactive Web Security Proxy Engineer to design, implement, and maintain secure web access infrastructure across the enterprise. This role focuses on...

  • Security Engineer – Malware Architecture

    2 weeks ago

    Montreal, Quebec, Canada NOVIPRO Full time $120,000 - $180,000 per year

    NOVIPRO is acting as a recruitment partner for a leading financial-sector organization known for its advanced IT infrastructure and adherence to high regulatory standards. The position sought after is Security Engineer – Malware Architecture & Operations. Key Information & TermsJob Title: Security Engineer – Malware Architecture & OperationsContract...

  • Security Engineer – Malware Architecture

    2 weeks ago

    Montreal, Quebec, Canada NOVIPRO Full time $100,000 - $120,000 per year

    NOVIPRO is acting as a recruitment partner for a leading financial-sector organization known for its advanced IT infrastructure and adherence to high regulatory standards. The position sought after is Security Engineer – Malware Architecture & Operations. Key Information & Terms Job Title: Security Engineer – Malware Architecture & Operations ...

  • Security Research Engineer

    1 week ago

    Montreal, Quebec, Canada Boostsecurity Full time $80,000 - $120,000 per year

    About Us is a cybersecurity technology startup. Our mission is to enable software teams to easily ship secure software, and secure their software supply chains, through smart security automation that developers love. Founded by veteran industry experts in application security, cloud and OSS engineering, BoostSecurity is headquartered in Montreal, Canada,...

  • Security Engineer

    14 hours ago

    Montreal, Quebec, Canada CMA CGM Full time $80,000 - $120,000 per year

    Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly...

  • Cyber Security Engineer

    1 week ago

    Montreal, Quebec, Canada Vaspire Technologies Inc. Full time $85,000 - $115,000 per year

    Job Description Summary:We are looking 5-8 years experienced Cybersecurity Engineer who can work in project Cybersecurity Management Plan. He/She is able to analyze Project security needs (including laws and local regulations), determine security objectives and main security risks strategy. Also, can plan security activities within development life cycle and...

  • Lead, Engineering Operations

    1 week ago

    Montreal, Quebec, Canada L3Harris Technologies Full time $120,000 - $180,000 per year

    L3Harris is dedicated to recruiting and developing high-performing talent who are passionate about what they do. Our employees are unified in a shared dedication to our customers' mission and quest for professional growth. L3Harris provides an inclusive, engaging environment designed to empower employees and promote work-life success. Fundamental to our...

  • Data Engineering Lead

    1 week ago

    Montreal, Quebec, Canada TJ2H and Associates Limited Full time US$100,000 - US$180,000 per year

    DATA ENGINEER LEADMontreal, Hybrid ( 2 days at the office)We are seeking a Data Engineering Lead to head our Data Engineering practice within our growing and diverse team. You will act as the principal architect of solutions and guide a team of Data Engineers to design and deliver integrations, APIs, and cloud-based data infrastructure for both internal and...

  • Cloud Security Engineer

    3 days ago

    Montreal, Quebec, Canada Everflow - Partner Marketing Platform Full time US$100,000 - US$130,000 per year

    The CompanyEverflow is a SaaS Partner Marketing platform for managing and scaling revenue from affiliates, partnerships, and marketing channels. Founded in 2016 by industry veterans, we are based in Oakland, Montreal and Amsterdam with a distributed team across the NAM and EMEA regions.We're a bootstrapped company (over $30M ARR) that has grown through...

  • Cloud Security Engineer

    2 days ago

    Montreal, Quebec, Canada Everflow Full time $100,000 - $130,000

    About the roleWe are seeking a proactive and skilled Cloud Security Engineer to be our primary resource for security projects within our Google Cloud Platform (GCP) and to serve as the main systems administrator for our local office and core IT operations.This dual-focus role requires expertise in building and securing cloud environments while also...