This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

Part-time job opportunities in English for the people in Montreal

To post a job, login or create an account |  Post a Job

   montreal part-time jobs   

Bringing new part-time opportunities every day!

Slide 1
Slide 2
Slide 3
previous arrow
next arrow

Sr., Code Security Specialist

Aptos Canada inc.

This is a Contract position in Montreal, QC posted January 10, 2022.

A quick snapshot…

Aptos develops and maintains retail software for around 1000 global brands. To support growth in the
company, the Information security team now needs representation and specific governance work to
investigate, agree, implement and establish a fully operational code scanning process within the SDLC.
This is a newly created role and you will be relied upon to assist with remediation, operation as well as
administrative capabilities for the area. You will also be required to develop a training system to facilitate
a constant learning culture promoting secure coding with reference to security benchmarks (e.g. OWASP).

Here’s what you’ll do…

Implement and consolidate code scanning tools for SAST, DAST, and 3rd party library
Validate asset/code inventories
Work with development teams to ensure local scanning processes and arrangements are
established, implemented, reviewed and maintained
Work with professional services teams to ensure as above
Attend governance reviews with teams and senior managers to establish training needs,
priorities, address exceptions
Audit code to ensure compliance/effectiveness
Maintain a register/dashboard of as-is/to-be code defects across all code bases
Work with the IS team to respond to client’s queries (formal and informal)
The ability to conduct internal application penetration tests and/or management of
penetration testing across the scope and any subsequent remedial actions to completion
Demonstrate the leadership and maturity required to ensure only code free of security
defects is deployed
Familiarity with container based applications
Contribute to team’s ability to understand, quantify, prioritize and mitigate risk
Risk assessment of legacy code defects and management of remediation
Assistance with 3rd party vendor assessment
Build and implement a training program to embed a constant learning culture for secure
Assist with the wider security communications program and the development of training
and awareness programs
Assist with development and testing of BCP/DR plans

Here’s what will give you an edge…

Collaborative team
Self-starter, self organizer, we travel light and fight agile
Organized – no-one helps us do this, we have to be on the front foot and ready
Great interpersonal skills – a knowledge of NLP preferred
Ability to explain technical items in a non-technical way
Negotiating skills
Project management skills
A wider set of cyber security skills
Experience of working in an agile development organization