Senior Security Engineer, Vulnerability Automation

Own and evolve the vulnerability engineering pipeline, from ingestion of threat intelligence and security findings through to automated remediation workflows and PR generation, defining scalable architecture and engineering standards.

• Build and improve automation that filters, validates, and contextualizes vulnerability data so only true positives reach development teams.
• Partner closely with engineering teams to integrate security into CI/CD pipelines and ensure security feedback is actionable, precise, and developer-friendly.
• Drive continuous improvement of security detection and remediation across SAST, DAST, SCA, secrets detection, and ASPM tooling.
• Coordinate vulnerability response across multiple teams, managing communication, tracking remediation progress, and ensuring SLA adherence.
• Contribute to on-call rotations, incident response, and post-incident reviews to improve operational maturity and system resilience.

Requirements:

8+ years of experience in security engineering, software engineering, or DevSecOps roles with strong exposure to security automation and scalable tooling.

• Strong hands-on experience with Python and CI/CD systems such as GitHub Actions, building secure and automated workflows.
• Deep understanding of web and API vulnerability classes, secure coding practices, and real-world remediation strategies.
• Familiarity with SAST, DAST, SCA, secrets detection, and ASPM platforms, with ability to interpret and operationalize findings.
• Proven ability to design and ship systems used across engineering teams in fast-paced environments.
• Strong cross-functional communication skills, with the ability to translate complex security issues into clear engineering actions.
• Demonstrated ability to influence without authority and act as a force multiplier through mentoring and knowledge sharing.
• AI-first mindset with active use of AI tools to enhance productivity, detection, and security workflows.

Benefits:

• Competitive compensation aligned with experience and impact
• Equity participation in a high-growth, mission-driven organization
• Fully remote work across Canada with flexible working arrangements
• Comprehensive health, dental, and vision coverage
• Generous paid time off and wellness-oriented policies
• Professional development support and learning opportunities
• Modern engineering environment with strong investment in AI tooling and automation
• Opportunity to work on meaningful security challenges at scale in a high-trust engineering culture

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

 

 

#LI-CL1