This job board retrieves part of its jobs from: Human Resources Jobs | Toronto Jobs | Work From Home

The top job offers in Canada!

To post a job, login or create an account |  Post a Job   

A simple jobs board with daily updated offers from Canada

previous arrow
next arrow

EXFO: Application Security Specialist / Specialiste, Securite Des Applications


This is a Full-time position in Montreal, QC posted April 23, 2021.

Job SummaryWith over 20% of our revenues invested in R& D, EXFO is known for itsteam of experts who create many new products to meet current and future requirements of the largest operators of telecommunications networks in the world.

By joining EXFO as an Application Security Specialist, you will work with sophisticated technologies in a dynamic and innovative environment.The ideal candidate has experience with both application development as well as information security.This position will work closely with the IT Security Specialists to exchange ideas, collaborate on best-practice, coordinate approaches to common vulnerabilities and more.

What you’ll doMain ResponsibilitiesEvolve, drive and execute a comprehensive strategy for Application Security at EXFO.Develop and implement application security controls and formulate effective risk mitigations along with assisting in security awareness programs.Conduct risk and vulnerability assessment at the system and application level.Provide security subject matter expertise including product design/usability implications.Meet with application and product teams to discuss vulnerability remediation.Provide timely and detailed reports, with proofs of findings, analysis of risk, and remediation advice and instructions.

What we’re looking forTechnical Skills:Understanding of security and data protection regulations (GDPR, SOC, CCPA) and how these impact application design; Familiarity with Static and Dynamic Application Security Testing ; Knowledge of cryptography (PKI, digital signatures, SSL/TLS) ; Actively engaged with the wider security community, tracking latest threats, trends and technologies ; Knowledge of hacker attack methods ; Software development background considered an asset ; Knowledge of Infrastructure security and associated scanning tools considered a plus ; Knowledge of OWASP, SSDLC, DevSecOps considered an asset ; Security certifications such as (ISC)² CSSLP, CEH considered an asset ; Knowledge of security controls and measures to take within a Cloud Native environment (K8s, Docker, AWS, Azure)Knowledge of telecommunication technologies/industry considered an asset.

Required Aptitudes:Proven Leadership experience in Security functions ; Ability to formcomplex communications in a clear and concise manner to different levels of audience within the company ; Ability to deliver training for example on secure coding, security best practices or compliance to security requirements ; Ability to operate effectively in a complex matrix environment ; Excellent communication skills, written and verbal ; Ability to create a climate of trust ; Passion and curiosit ; Self-reliant and autonomous ; Ability to mobilize and develop team members .

Must havePertinent experience:Minimum 15 years’ experience, 10 years in software security.Language requirements:Bilingual in English and FrenchEducation:Bachelors degree in Computer Science or related field, or equivalent experience.