Senior Pentester

about 2 hours ago

Toronto, Canada

Senior / Mid Level

H1B Sponsor

Responsibilities

Perform application security assessments, including manual penetration testing, design reviews, and code reviews in Go and Python.
Conduct threat modeling for critical systems and explain risks in terms of business logic, fraud scenarios, and customer impact.
Review and triage bug bounty submissions, validating findings and prioritizing remediation.
Improve detection coverage by validating automated findings and developing scripts or configurations to enhance security tooling.
Work with engineering teams to remediate vulnerabilities, including suggesting fixes and contributing code changes when appropriate.

3–5+ years of experience in penetration testing, application security, or security engineering.
Ability to read and review Go and Python source code to identify security issues.
Understanding of web application security concepts, authentication and authorization models, and common vulnerability patterns.
Experience identifying business logic flaws and application-layer abuse scenarios.
Ability to clearly communicate technical risks to both technical and non-technical audiences.

Challenging, high-impact work to grow your career.
Performance driven compensation with multipliers for outsized impact, bonus programs, and equity ownership.
Top tier benefits including supplemental health insurance, ancillary insurance, and mental health support programs.
Lifestyle wallet for flexible employer-paid benefits spending on wellness, childcare, learning, and more.
Time off to recharge including company holidays, paid time off, sick time, paid volunteer time off, parental leave, and more.
Exceptional office experience with catered meals, events, and comfortable workspaces.
Monthly commuter stipend to help offset in-office commuting costs.

GoPython