Application Security Analyst
-
Location: Toronto, ON - (Hybrid) - (Primarily remote; onsite 1–2 times per quarter (optional additional visits) )
-
Pay Rate: $36.86/hr - $43.51/hr
-
Contract Length: 8 Months with possibility for extension
We at Raise are hiring an Application Security Analyst for one of our top clients. After establishing themselves as an industry leader, they’re now expanding their team to meet rising demand. We’re hiring right now; if you’re interested, apply below for your chance to join a great place to work.
Responsibilities:
-
Day-to-day work includes supporting the Application Security team, reviewing security scan results, identifying vulnerabilities, and working with developers on remediation.
-
Looking for someone who is proactive, technical, and comfortable working directly with development teams.
-
Contract extension or full-time conversion is possible based on performance and business needs.
-
Assist with running and management of application security tools such as SAST, SCA, MAST, DAST, etc.
-
Review vulnerability results and provide remediation direction to delivery teams
-
Conduct reviews on tools and provide the relevant tuning and upgrades with respect to penetration test findings.
-
Create metrics (KPI and KRIs) for vulnerability management program and present to senior management.
-
Participate in crafting the Application Security and vulnerability management directives as required.
-
Educate development teams on OWASP top 10 vulnerabilities for Web, Mobile and APIs.
-
Automate redundant security tasks and bring in efficiencies within existing security processes.
-
Provide ongoing support of mobile and web application systems in production including responding to operational requests, problem analysis, resolution, escalation, and reporting as necessary
-
Create and maintain supporting documentation
Critical Skills / Must-Haves:
-
2–5 years of Application Security experience.
-
Hands-on experience with Checkmarx, Snyk, or similar application security scanning tools.
-
Experience reviewing vulnerability scan results and supporting remediation with development teams.
-
Understanding of end-to-end Application Security.
-
Basic coding knowledge (any programming language).
-
Basic scripting and automation experience.
-
ServiceNow experience (mandatory – basic knowledge is sufficient).
-
Must be based in Ontario or able to come to the Toronto office when required.
Nice-to-Have
-
Banking or Financial Services experience.
-
Knowledge of DevSecOps, OWASP Top 10, or CI/CD security practices.
-
Security certifications (CEH, Security+, etc.).
Looking for meaningful work? We can help!
Raise is an established hiring firm with over 65 years of experience. We believe strongly in making the world a better place through work, which is why we’re a certified B Corporation and donate 10% of our profits to charity.
We strive to build teams that reflect the diversity of the communities we work in. We encourage all qualified applicants to apply, including people from traditionally underrepresented groups such as women, visible minorities, Indigenous peoples, people identifying as LGBTQ2SI, veterans, and people with visible/nonvisible disabilities.
We have a dedicated webpage for accommodations where you can learn more about what we offer and request accommodation: https://raise.jobs/accommodations/
In order to submit candidates for roles, our clients will sometimes require personal information to confirm the identity of applicants and their legal status to work. Raise will never ask you for personal or banking information unless you have been selected for a job. If you are ever unsure about the legitimacy of this or another job posting by Raise (or have any other questions), please contact us at +1 800-567-9675 or [email protected]
#FIN24
#LI-VM1