DevSecOps Technical Lead
Global Relay3 days ago
Vancouver, CanadaSenior / Staff+
H1B Sponsor
Responsibilities
- Lead application security and vulnerability scanning efforts.
- Integrate security practices into the software development lifecycle.
- Collaborate with engineering and product teams to align security with business objectives.
- Conduct security sessions for development teams focusing on risk and vulnerability mitigation.
- Develop and deploy an automated security framework.
- Review and analyze vulnerability data to identify security risks.
- Mentor less experienced team members and promote a strong security culture.
- Create security documentation and developer training materials.
- Select and manage security testing tools for CI/CD pipelines.
Requirements
- 8+ years of experience in application security and operations.
- Expert knowledge of secure software development practices.
- Experience with OWASP, Mitre, NIST SP800-115, SAST, DAST, and SCA.
- Proficiency in scripting languages such as Python, Java, Bash, and PowerShell.
- Familiarity with CI/CD technologies like Jenkins and Docker.
- Ability to work collaboratively in a dynamic environment.
- Strong communication skills with technical and non-technical teams.
- Methodical and creative problem-solving skills.
Benefits
- Comprehensive extended health benefits program including virtual healthcare.
- Annual vacation days that increase with tenure.
- Paid sick days and maternity/parental enhancement program.
- Bonus and RRSP contribution matching program.
- Subsidized meal program for Vancouver-based employees.