Software Security Engineer | Canada | Remote

Solid experience with at least one programming language (primarily Go, TypeScript, and Python). Knowledge of using and securing containerized, cloud-native applications, ideally with Kubernetes. Experience in automating security compliance processes using tools, scripts, and frameworks while enabling developer and employee workflows. Strong interpersonal skills and experience collaborating (and negotiating) with peers, stakeholders, auditors, and customers. Some understanding of industry-recognized security frameworks, standards, and certifications (e.g., ISO 27001, SOC 2, PCI DSS, NIST, or GDPR). A degree in Computer Science, Information Security, or related field (or equivalent experience).

Be a technical contributor on the assurance team covering certifications, application, build, cloud, and supply chain security, and internal security tooling development. Develop, implement, and maintain highly automated security assurance programs to ensure compliance with organizational and regulatory requirements. Develop systems, automations, and methods of security observability to push the GRC engineering organization beyond just meeting certification requirements. Deploy security and compliance checks in an employee-enabling way in their daily workflows and build pipelines. Collaborate with cross-functional teams to integrate security controls into the software development lifecycle and operational processes. Respond to customer security issues, security alerts, and potential incidents.