113 Application Security jobs in Canada

Date limite pour présenter sa candidature :
11/27/2025

Adresse :
250 Yonge Street

Groupe de famille d'emploi :
Technologie

Are you passionate about securing modern applications and staying ahead of emerging threats? As an Application Security Specialist , you’ll play a critical role in protecting our digital ecosystem while working in a dynamic, collaborative, and growth-focused environment.

What You’ll Love About This Role:
Constant Innovation : Work with evolving technologies, architectures, and applications in a fast-paced environment where change is the norm.

Collaborative Culture : Join a team that values open communication, shared learning, and cross-functional collaboration.

Growth & Development : We invest in your continuous skill development through hands-on experience, training, and mentorship.

Impactful Work : Help shape and expand our application security testing program, contributing to the safety and resilience of our platforms.

CORE Technical Skills:
5+ years of experience on manual testing of software applications preferably using Burp Suite (or similar tools).

Strong knowledge of OWASP TOP 10 Risks/Vulnerabilities - Strong understanding of the risks that the issues represent, how they can impact an organization, and what must be done to remediate them.

Expertise with understanding risks/vulnerabilities and creating Test reports to summarize your findings

Solid understanding of the low-level principles or mechanisms of how web applications function and APIs operate.

Soft Skills:
Clear Communication - the ability to translate security findings into a format that is of value to the intended audience. Providing context and clarifying why a finding is import.

Curiosity - keeping up with emerging technology, frameworks, and methods of attack.

Attention to detail

Additional Information: The Application Security Specialist role is responsible for designing, evaluating, and supporting application security and cloud security capabilities in support of the security and compliance programs at AIR MILES. Individuals in this role possess well developed technical skills, a strong familiarity with network, system, and application architecture, and an understanding of the technical security landscape. These strengths are applied to a variety of activities, such as application security reviews, consulting on system architecture, and securing cloud environments at scale. Individuals in this role perform a variety of activities, encompassing application, cloud, and infrastructure security including establishing standards, participating in investigations, and providing guidance on aligning to industry best practices.

Responsibilities:
Reviewing system and solution architecture
Consulting with software developers and supporting improvements to application security
Consult on risk assessments and work with stakeholders to implement measures to mitigate risk
Perform audit/testing on infrastructure and application controls and work with stakeholders on remediation activities
Actively work with third party service providers to lead and support any work performed
Contribute to monthly Information security metrics for reporting
Establish relationships with internal stakeholders, keep abreast of technology, bring emerging risks to management attention, and identify opportunities for improving existing security processes.
Consult on Internal Security Policy and Baseline Standards

Qualifications
Experience performing DAST testing on web applications, or experience with penetration testing of applications or network environments.
Experience creating security assessment reports and presenting them to clients.
Demonstrated competency in project participation in a cross-functional environment and experience in managing remediation activities across the enterprise.
Communication skills especially in areas where diplomacy is needed to help ensure that new policies and procedures gain the support they need to be adopted by the enterprise and management.
At least 6 years of full-time work experience in information security and/or related functions
Familiarity with Information security standards and IT frameworks
Knowledge of Security Governance, Risk & Compliance and security audit practices.
Experience in multiple security domains (e.g. Access control, application and system development, operations security, network, BCP/DR, etc.)
Sound knowledge of network security and network security components such as firewalls, routers, intrusion detection and other products such as SIEM and anti-malware products.
Strong knowledge of cloud architecture security and deployment of security controls in a cloud environment (e.g. MS Azure, AWS, etc.).
Hands-on experience building and operating in a cloud environment.
Thorough understanding of web application architecture, single sign on technologies, and the HTTP/HTTPS protocols.

Certifications

While not required, candidates with relevant certifications, such as OSCP, OSCE, GWAPT, or similar are encouraged to apply. We value hands-on experience and demonstrable skills equally.

Salaire :
$94,600.00 - $176,000.00
Type de rémunération :
Salaire
Ce qui précède représente la fourchette et le type de rémunération d’AIR MILES.

Les salaires varieront en fonction de facteurs comme l’emplacement, les compétences, l’expérience, les études et les qualifications pour le poste et pourront inclure une structure de commissions. Les salaires pour les postes à temps partiel seront calculés au prorata du nombre d’heures travaillées régulièrement. Pour les rôles à commission, le salaire susmentionné représente la cible d’AIR MILES pour la première année au poste.

La rémunération totale offerte par AIR MILES variera selon le type de rémunération associé au poste et peut comprendre des primes de rendement, des primes discrétionnaires ainsi que d’autres avantages et récompenses. AIR MILES offre également une assurance santé, le remboursement des frais de scolarité, une assurance accident et une assurance vie, ainsi que des régimes d’épargne-retraite. Pour en savoir plus sur nos avantages sociaux, consultez le site:

À propos de nous

Le Programme de récompense AIR MILES est l’un des programmes de fidélisation de la clientèle les plus reconnus au Canada. Il compte plus de 10 millions de comptes d’adhérents actifs, ce qui représente plus de la moitié de tous les ménages canadiens. Les adhérents AIR MILES obtiennent des milles auprès de plus de 300 grandes marques canadiennes, mondiales et en ligne et dans des milliers de points de vente au détail et de services à l’échelle du pays. AIR MILES est une filiale en propriété exclusive de la Banque de Montréal (BMO). BMO est la plus ancienne banque du Canada et la huitième banque en importance en Amérique du Nord, avec plus de 12 millions de clients à l’échelle mondiale.

En tant que membre de l'équipe d’AIR MILES, vous êtes valorisé, respecté et entendu, et vous avez plus de moyens pour progresser et obtenir des résultats. Nous nous efforçons de vous aider à obtenir des résultats dès le premier jour, pour vous-même et nos clients. Nous vous offrirons les outils et les ressources dont vous avez besoin pour franchir de nouvelles étapes, car vous aidez nos clients à franchir les leurs. Au moyen de formation et de coaching approfondis ainsi que de soutien de la direction et d'occasions de réseautage, nous vous aiderons à acquérir une expérience enrichissante et à élargir votre groupe de compétences.

Pour en savoir plus, visitez-nous à l'adresse

AIR MILES s'engage à offrir un milieu de travail inclusif, équitable et accessible. Nous apprenons de nos différences et tirons notre force des gens et de leurs différents points de vue. Des mesures d’adaptation sont disponibles sur demande pour les candidats qui participent à tous les aspects du processus de sélection. Pour demander des mesures d’adaptation, veuillez communiquer avec votre recruteur.

Remarque aux recruteurs : AIR MILES n’accepte pas les curriculum vitæ non sollicités provenant de toute source autre que le candidat directement. Tout curriculum vitæ non sollicité envoyé à AIR MILES, directement ou indirectement, sera considéré comme la propriété d’AIR MILES. AIR MILES ne paiera aucuns frais pour les placements découlant de la réception d’un curriculum vitæ non sollicité. Une agence de recrutement doit d’abord détenir une entente de service écrite valide et dûment signée avant d’envoyer des curriculum vitæ.

PAM Application Security Specialist

Montreal ( 2 days/ week onsite work)

12+ months contract job.

Language: Bilingual French/English

Technologies or skills required:

• The IAM/PAM Governance Specialist is responsible for monitoring access events in the CyberArk security tool, as well as aspects of identity and access management.

More specifically, they oversee daily activities, process improvements, and situation identification related to the security tools used in their work.

• At least 3 years of experience in information technology,
  • 5 to 10 years of knowledge of IAM and PAM tools
  • Solid knowledge of IAM and PAM best practices
  • Knowledge of CyberArk required

Job Types: Full-time, Permanent, Fixed term contract

Contract length: 6 months

Pay: $80.44-$85.30 per hour

Application question(s):

• Current Location & Visa Status:
• Français ?
• Are you Bilingual (French speaking)?

Experience:

• PAM: 4 years (required)

Senior Manager, Application Security Apply now » Apply now Start applying with LinkedIn
Apply Now
Start Please wait.

Apply now × Apply for Job × × × Enter your email to apply Date: Sep 18, 2025
Location: Toronto, ON, CA, M5C 3G7
Company: Deloitte
Job Type: Permanent
Work Model: Hybrid
Reference code:
Primary Location: Toronto, ON
All Available Locations: Toronto, ON

Our Purpose

At Deloitte, our Purpose is to make an impact that matters. We exist to inspire and help our people, organizations, communities, and countries to thrive by building a better future. Our work underpins a prosperous society where people can find meaning and opportunity. It builds consumer and business confidence, empowers organizations to find imaginative ways of deploying capital, enables fair, trusted, and functioning social and economic institutions, and allows our friends, families, and communities to enjoy the quality of life that comes with a sustainable future. And as the largest 100% Canadian-owned and operated professional services firm in our country, we are proud to work alongside our clients to make a positive impact for all Canadians.

By living our Purpose, we will make an impact that matters.
Have many careers in one Firm.
Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
Learn from deep subject matter experts through mentoring and on the job coaching
-- What will your typical day look like? Reporting to the executive leadership for the Application Security group in Deloitte's Technology and Transformation practice, the Senior Manager is self-motivated, energetic, driven for success, and results oriented. Senior Managers are expected to lead and drive new and existing projects with our clients, collaborate with other leads across a variety of Deloitte service offerings, and demonstrate leadership capabilities to deliver a superior client experience. As a leader in this team, you will provide and support eminence activities as well as business and practice development. You also provide application security program expertise and develop strong client relationships to instill confidence. Day to day, you will work out of their local Deloitte headquarters, however, occasional travel to clients may be required with potential opportunities for travel nationally and globally.
About the team ERP, HCM, CRM and SaaS application implementations need to address cyber, security and privacy risks and many business leaders recognize they can’t manage the challenge alone. That’s why Deloitte offers a global network of Cyber Application Security teams and services. Our Application Security specialists design and configure roles and user access within ERP, HCM, CRM and SaaS applications, address broader Cyber risks around cloud environments, help comply with privacy laws and regulations, and reduce risks associated with new business processes and unauthorized access.
Enough about us, let’s talk about you • A solid foundational experience working as a leader in a professional services firm, and able to bring those experiences to the forefront when advising clients, leading teams, and assisting with the expansion of the Application Security team

• Experienced providing application security advice and guidance with regard to the Oracle Cloud platform (role design, user lifecycle management, segregation of duties)
• Experienced and fully capable of steering and delivering large, complex Oracle Cloud solutions with multidisciplined and virtual resources
• Ability to foresee IT risks and implications on SAP programs, with the ability to identify weaknesses and recommend solutions to senior stakeholders

Additional preferred qualifications:

• Experience with business process controls
• Experience with cloud security, with certifications such as CCSP and CISSP
• Ability to obtain Government of Canada security clearance
• Fluently bilingual in both official languages

Total Rewards
The salary range for this position is $97,000 - $34,000 and individuals may be eligible to participate in our bonus program. Deloitte is fair and competitive when it comes to the salaries of our people. We regularly benchmark across a variety of positions, industries, sectors, targets, and levels. Our approach is grounded on recognizing people's unique strengths and contributions and rewarding the value that they deliver.

Our Total Rewards Package extends well beyond traditional compensation and benefit programs and is designed to recognize employee contributions, encourage personal wellness, and support firm growth. Â Along with a competitive base salary and variable pay opportunities, we offer a wide array of initiatives that differentiate us as a people-first organization. On top of our regular paid vacation days, some examples include: $ ,000 per year for mental health support benefits, a 1,300 flexible benefit spending account, firm-wide closures known as "Deloitte Days", dedicated days of for learning (known as Development and Innovation Days), flexible work arrangements and a hybrid work structure.

Our promise to our people: Deloitte is where potential comes to life.

Be yourself, and more.
We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.

You shape how we make impact.
Diverse perspectives and life experiences make us better. Whoever you are and wherever you’re from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute.

Be the leader you want to be
Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.

Have as many careers as you want.
We are uniquely able to offer you new challenges and roles - and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors.

The next step is yours

At Deloitte, we are all about doing business inclusively - that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan , Reconciliation Action Plan and the BlackNorth Initiative .

We encourage you to connect with us at if you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations) or for any questions relating to careers for Indigenous peoples at Deloitte (First Nations, Inuit, Métis).

By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.

Deloitte Canada has 20 offices with representation across most of the country. We acknowledge that Deloitte offices stand on traditional, treaty, and unceded territories in what is now known as Canada. We recognize that Indigenous Peoples have been the caretakers of this land since time immemorial, nurturing its resources and preserving its natural beauty. We acknowledge this land is still home to many First Nations, Inuit, and Métis Peoples, who continue to maintain their deep connection to the land and its sacred teachings. We humbly acknowledge that we are all Treaty people, and we commit to fostering a relationship of respect, collaboration, and stewardship with Indigenous communities in our shared goal of reconciliation and environmental sustainability.

Job Segment: Cyber Security, Database, Oracle, CRM, ERP, Security, Technology
Apply now » Apply now Start applying with LinkedIn
Apply Now
Start Please wait.

Apply now × Apply for Job × × × Enter your email to apply

Manager, Oracle Application Security Apply now » Apply now Start applying with LinkedIn
Apply Now
Start Please wait.

Apply now × Apply for Job × × × Enter your email to apply Date: Sep 17, 2025
Location: Toronto, ON, CA, M5C 3G7
Company: Deloitte
Job Type: Permanent
Work Model: Hybrid
Reference code:
Primary Location: Toronto, ON
All Available Locations: Toronto, ON; Calgary, AB; Edmonton, AB; Halifax, NS; Ottawa, ON; Vancouver, BC; Victoria, BC

Our Purpose

At Deloitte, our Purpose is to make an impact that matters. We exist to inspire and help our people, organizations, communities, and countries to thrive by building a better future. Our work underpins a prosperous society where people can find meaning and opportunity. It builds consumer and business confidence, empowers organizations to find imaginative ways of deploying capital, enables fair, trusted, and functioning social and economic institutions, and allows our friends, families, and communities to enjoy the quality of life that comes with a sustainable future. And as the largest 100% Canadian-owned and operated professional services firm in our country, we are proud to work alongside our clients to make a positive impact for all Canadians.

By living our Purpose, we will make an impact that matters.
Have many careers in one Firm.
Enjoy flexible, proactive, and practical benefits that foster a culture of well-being and connectedness.
Learn from deep subject matter experts through mentoring and on the job coaching
-- What will your typical day look like? As a Manager in the Cyber Risk practice, you will lead the delivery of Application Security projects and pursuits for Oracle Cloud ERP, HCM, SCM and business process controls assessments, and implementations, within Deloitte’s Cyber practice. Oracle Cloud Application Security Managers are expected to oversee project risk management tasks related to project delivery, including providing oversight for the work produced by junior team members. You’ll also produce high quality work products and collaborate with others to deliver a superior client experience.
Managers will take the lead in building knowledge transfer materials for eminence activities as well as business and security practice development. You will be part of a team that delivers and maintains new security technology solutions for our clients, including Governance, Risk and Compliance (GRC) problems with latest technology advances using automation. We count on you to help clients define their requirements and then design/develop/configure security solutions and controls. We count on you to produce high quality work products, collaborate with others, and demonstrate leadership capabilities to deliver a superior client experience.
Day to day, you will work out of the local Deloitte headquarters, however, occasional travel to clients may be required with potential opportunities for travel nationally and globally.

About the team ERP and SaaS application implementations need to address cyber, security and privacy risks and many business leaders recognize they can’t manage the challenge alone. That’s why Deloitte offers a global network of Cyber Application Security teams and services. Our Application Security specialists design and configure roles and user access within ERP and SaaS applications, address broader Cyber risks around cloud environments, help comply with privacy laws and regulations, and reduce risks associated with new business processes and unauthorized access.
Enough about us, let’s talk about you You are someone with:

• A Bachelor's Degree or Diploma in a relevant area of study with a preference for in Business Administration, Computer Science, Engineering, Accounting or Information Systems or at least 6-8 years of real-world experience of which 5 years should be focused on Application Security.
• Experience with Oracle Cloud security (role design/structure i.e. job role, abstract role, user lifecycle management, segregation of duties)
• Ability to understand IT risks and implications to the business, identify weaknesses and recommend solutions
• Ability to supervise work of junior team members, lead client discussions and overall, demonstrate strong accountability and ownership

Additional preferred qualifications:

• Project management experience
• Ability to drive action to achieve results with minimal direction
• Knowledge about cyber risks and how it applies to Oracle
• Experience implementing Oracle Risk Management - Advanced Access Controls, Advanced Financial Controls, Financial Reporting Compliance along with Advanced HR Controls
• Experience implementing security for Oracle PaaS and IaaS (such as Oracle Cloud Infrastructure or Oracle Integration Cloud)
• Experience with business process controls
• Experience with Oracle Cloud Infrastructure (OCI) security
• Experience with cloud security, with certifications such as CCSP and CISSP
• Ability to obtain Government of Canada security clearance

As a Manager working in Application Security you will:

• Lead Security activities for an end to end implementations including managing the client, project budgets, resourcing, workplan for the security stream.
• Lead Oracle Cloud pursuits for the security scope
• Lead initiatives including sales, marketplace eminence, developing market offerings
• Develop high performing teams
• Develop and support external eminence activities for Deloitte
• Build strong business relationships with existing and potential clients
• Promote and foster collaboration and knowledge sharing between practitioners within Deloitte

Bilingualism in French and English is required for this position due to the nature of the role having interactions with National & Global clients and project teams.
Total Rewards
The salary range for this position is $84,000 - $75,000 and individuals may be eligible to participate in our bonus program. Deloitte is fair and competitive when it comes to the salaries of our people. We regularly benchmark across a variety of positions, industries, sectors, targets, and levels. Our approach is grounded on recognizing people's unique strengths and contributions and rewarding the value that they deliver.

Our Total Rewards Package extends well beyond traditional compensation and benefit programs and is designed to recognize employee contributions, encourage personal wellness, and support firm growth. Â Along with a competitive base salary and variable pay opportunities, we offer a wide array of initiatives that differentiate us as a people-first organization. On top of our regular paid vacation days, some examples include: $ ,000 per year for mental health support benefits, a 1,300 flexible benefit spending account, firm-wide closures known as "Deloitte Days", dedicated days of for learning (known as Development and Innovation Days), flexible work arrangements and a hybrid work structure.

Our promise to our people: Deloitte is where potential comes to life.

Be yourself, and more.
We are a group of talented people who want to learn, gain experience, and develop skills. Wherever you are in your career, we want you to advance.

You shape how we make impact.
Diverse perspectives and life experiences make us better. Whoever you are and wherever you’re from, we want you to feel like you belong here. We provide flexible working options to support you and how you can contribute.

Be the leader you want to be
Some guide teams, some change culture, some build essential expertise. We offer opportunities and experiences that support your continuing growth as a leader.

Have as many careers as you want.
We are uniquely able to offer you new challenges and roles - and prepare you for them. We bring together people with unique experiences and talents, and we are the place to develop a lasting network of friends, peers, and mentors.

The next step is yours

At Deloitte, we are all about doing business inclusively - that starts with having diverse colleagues of all abilities. Deloitte encourages applications from all qualified candidates who represent the full diversity of communities across Canada. This includes, but is not limited to, people with disabilities, candidates from Indigenous communities, and candidates from the Black community in support of living our values, creating a culture of Diversity Equity and Inclusion and our commitment to our AccessAbility Action Plan , Reconciliation Action Plan and the BlackNorth Initiative .
We encourage you to connect with us at if you require an accommodation for the recruitment process (including alternate formats of materials, accessible meeting rooms or other accommodations) or for any questions relating to careers for Indigenous peoples at Deloitte (First Nations, Inuit, Métis).
By applying to this job you will be assessed against the Deloitte Global Talent Standards. We’ve designed these standards to provide our clients with a consistent and exceptional Deloitte experience globally.
Deloitte Canada has 20 offices with representation across most of the country. We acknowledge that Deloitte offices stand on traditional, treaty, and unceded territories in what is now known as Canada. We recognize that Indigenous Peoples have been the caretakers of this land since time immemorial, nurturing its resources and preserving its natural beauty. We acknowledge this land is still home to many First Nations, Inuit, and Métis Peoples, who continue to maintain their deep connection to the land and its sacred teachings. We humbly acknowledge that we are all Treaty people, and we commit to fostering a relationship of respect, collaboration, and stewardship with Indigenous communities in our shared goal of reconciliation and environmental sustainability.

Job Segment: ERP, Oracle, Database, Cyber Security, Computer Science, Technology, Security
Apply now » Apply now Start applying with LinkedIn
Apply Now
Start Please wait.

Apply now × Apply for Job × × × Enter your email to apply