Security Developer
- Pay rate: $80.00 – $86.00/hour, based on experience
- Contract Length: 4 months
- Location: Calgary or Edmonton; in office 1 day a week
Raise is currently hiring a Security Developer team member on behalf of our client, a leading financial institution. They’re expanding their team to meet growing needs, making this a unique opportunity to work with an industry leader.
Job Overview
The Security Developer will be responsible for Identifying security vulnerabilities, continuously attempting to “break” software & systems; proposes & helps code solutions to cybersecurity problems. Also strengthening applications vulnerability posture by supporting developers across CXT with remediation of critical vulnerabilities.
Responsibilities:
- Designs, develops, and integrates new security features and updates into existing products and ensures security is maintained throughout the product life-cycle
- Provides product security engineering recommendations and resolves integration and testing issues
- Performs security assessments of company products that may include vulnerability and risk assessments, threat analysis, and security code reviews to identify potential design and implementation vulnerabilities
- Promotes security and secure practices and consults non-security experts on all relevant security considerations
Role Deliverables:
- Engaging Teams: Providing support and insights on critical and high vulnerabilities through the Application Security Remediation (ASR) procedure. Serving as a subject matter expert for a security champions program and guiding team members through threat modelling processes
- Development of controls, governance, monitoring of Application Security Processes and defining/writing/implementing security standards for secure development practices across the organization
- Reporting & Data: Ensuring accurate ownership of GitLab projects and cleaning up attack surface data. We'll also document the vulnerability management procedure with clear governance and a RACI.
- Tooling & Coverage: Expanding vulnerability coverage with Jira integration, Sonatype scanning, mobile app scanning, and binary scanning. All findings will be visible in real-time dashboards.
- Upgrading Pipelines: Migrating from the existing compliance pipeline to a new, documented pipeline execution policy
Qualifications:
- 5+ years of relevant experience
- GitLab Vulnerability Management (Development of Pipelines, Integrations of Security Scanning Tools i.e. SAST, DAST, Mobile, Secret)
- Experience with GCP (Big Query, Cloud Run, GCS, Artifact Registry, Kubernetes)
- Ability to read and write code (i.e. Python, Node, SQL) to resolve and provide guidance on vulnerability remediation
- Strong communication (written and verbal) skills and the ability to explain technical concepts to non technical team members
- Familiarity with Security Governance and Policy Development
Looking for meaningful work? We can help
Raise is an established hiring firm with over 65 years of experience. We believe strongly in making the world a better place through work, which is why we’re a certified B Corporation and donate 10% of our profits to charity.
We strive to build teams that reflect the diversity of the communities we work in. We encourage all qualified applicants to apply, including people from traditionally underrepresented groups such as women, visible minorities, Indigenous peoples, people identifying as LGBTQ2SI, veterans, and people with visible/nonvisible disabilities.
We have a dedicated webpage for accommodations where you can learn more about what we offer, and request accommodation: https://raise.jobs/accommodations/
In order to submit candidates for roles, our clients will sometimes require personal information to confirm the identity of applicants and their legal status to work. Raise will never ask you for personal or banking information unless you have been selected for a job. If you are ever unsure about the legitimacy of this or another job posting by Raise (or have any other questions), please contact us at +1 800-567-9675 or hello@raiserecruiting.com
#WES
#LI-SC1