88 Software Security jobs in Canada

MongoDB's mission is to empower innovators to create, transform, and disrupt industries by unleashing the power of software and data. We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash AI. Our industry-leading developer data platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available in more than 115 regions across AWS, Google Cloud, and Microsoft Azure. Atlas allows customers to build and run applications anywhere-on premises, or across cloud providers. With offices worldwide and over 175,000 new developers signing up to use MongoDB every month, it's no wonder that leading organizations, like Samsung and Toyota, trust MongoDB to build next-generation, AI-powered applications.
MongoDB is seeking highly technical candidates for a role on the Server Security team as a Staff Software Engineer. Server Security is a development focused group within the engineering organization. The Server Security team builds features in the core MongoDB Server that enable database users to secure their data, such as TLS and X.509 certificate management, at-rest data encryption, authentication and authorization systems, and the new Queryable Encryption ( offering. Our team operates close to the bottom of the stack, and has a lot of influence over the safety and robustness of our open source database and a growing ecosystem of cloud services and client applications.
In this role, you'll be a leader in continually improving our security posture by owning features and tools that support this mission. In addition, you'll have the opportunity to lead security investigations into some of the most challenging and complex areas of our codebase, collaborating with software engineers across the organization.
An ideal candidate has experience writing secure, high quality application code, can communicate complex technical concepts well, and has great diagnostic intuition as it applies to security in complex distributed architectures.
This role can be based out of the New York Office or remote, working East Coast hours.
**What you'll do**
+ Implement, test, and support new features related to cryptography, security engineering, and compliance assurance, in a large feature-rich C++ codebase
+ Assist fellow engineers in, and be an advocate for, writing secure, well-reasoned and high-quality features
+ Collaborate with other teams in engineering, cloud services, support, consulting, training, and marketing to coordinate feature rollouts and changes
+ Design and lead complex projects to improve our security postur
**Ideally, you will have**
+ 10+ years of experience in software development, with a focus on security
+ Ability to diagnose thorny technical issues central to databases: distributed systems, data replication, query optimization, data storage, OS internals, concurrency and scheduling, networking, etc
+ Expertise in common network security protocols, fundamental cryptographic principles, and related technologies: e.g., TLS, Private/Public Key Cryptography, PKI, Hashing, CRLs, token-based auth, etc
+ Experience supporting production environments, and/or working directly with end-users to investigate and diagnose highly technical security issues
+ Ability to:
+ Read and understand the intent of code and stack traces in many languages, especially C++ Stand for code quality and software design best practices
+ Quickly grok and clearly synthesize implications of system behavior
+ Excellent communication skills (both written and verbal) as you will be working with users from all over the world with very diverse backgrounds, as well as with a highly technical engineering team
**Success Measures**
**In 1 week:**
+ You have completed your first Pull Request
**In 3 Months:**
+ You demonstrate a thorough understanding of our existing architecture
+ You are a productive contributor to select components of the Server Security codebase
+ You are identifying opportunities for improvement of security and/or code quality within the codebase
+ You are providing security-focused reviews of pull requests and design proposals from other MongoDB server engineers
**In 6 Months:**
+ You have made a substantial new addition to the security codebase
+ You play an active role in defining and driving the short and long term roadmap of our product
+ You mentor other members of the team on secure concepts and code quality
+ You are acting as a representative of the team in inter-team discussions
+ You can speak to holistic strengths and weaknesses in product capabilities
+ You can lead the response to some escalations from our experienced Technical Services Team
**In 12 Months:**
+ You are running a large project to improve our security offerings
+ You demonstrate a deep understanding of one or more Server Security components
+ You are a deeply respected mentor for our team and all surrounding teams and advocate for and on behalf of the Server Security team
To drive the personal growth and business impact of our employees, we're committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees' wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it's like to work at MongoDB ( , and help us make an impact on the world!
MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.
MongoDB is an equal opportunities employer.
Req ID:
MongoDB's base salary range for this role is posted below. Compensation at the time of offer is unique to each candidate and based on a variety of factors such as skill set, experience, qualifications, and work location. Salary is one part of MongoDB's total compensation and benefits package. Other benefits for eligible employees may include: equity, participation in the employee stock purchase program, flexible paid time off, 20 weeks fully-paid gender-neutral parental leave, fertility and adoption assistance, Registered Retirement Savings Plan (RRSP) with employer match, mental health counseling, backup child and elder care, and health, dental, and vision benefits offerings. Please note, the base salary range listed below and the benefits in this paragraph are only applicable to candidates based in Canada.
MongoDB's base salary range for this role in Canada is:
$159,000-$221,000 CAD

Job Description

Job Description

Company Description

IFS is a billion-dollar revenue company with 7000+ employees on all continents. Our leading AI technology is the backbone of our award-winning enterprise software solutions, enabling our customers to be their best when it really matters–at the Moment of Service™. Our commitment to internal AI adoption has allowed us to stay at the forefront of technological advancements, ensuring our colleagues can unlock their creativity and productivity, and our solutions are always cutting-edge.

At IFS, we’re flexible, we’re innovative, and we’re focused not only on how we can engage with our customers but on how we can make a real change and have a worldwide impact. We help solve some of society’s greatest challenges, fostering a better future through our agility, collaboration, and trust.

We celebrate diversity and understand our responsibility to reflect the diverse world we work in. We are committed to promoting an inclusive workforce that fully represents the many different cultures, backgrounds, and viewpoints of our customers, our partners, and our communities. As a truly international company serving people from around the globe, we realize that our success is tantamount to the respect we have for those different points of view.

By joining our team, you will have the opportunity to be part of a global, diverse environment; you will be joining a winning team with a commitment to sustainability; and a company where we get things done so that you can make a positive impact on the world.

We’re looking for innovative and original thinkers to work in an environment where you can #MakeYourMoment so that we can help others make theirs. With the power of our AI-driven solutions, we empower our team to change the status quo and make a real difference.

If you want to change the status quo, we’ll help you make your moment. Join Team Purple. Join IFS.

Job Description

Company Overview 

IFS is a billion-dollar revenue company with 6,000+ employees on all continents. Our leading AI technology underpins award-winning enterprise software, empowering customers at every Moment of Service™. We champion internal AI adoption to keep our solutions cutting-edge and our teams highly productive. At IFS, we value flexibility, innovation, sustainability, and diversity—bringing together different cultures, backgrounds, and viewpoints to solve society’s greatest challenges and make a real-world impact. Join Team Purple to #MakeYourMoment and help others do the same. 

Job Description

Team & Role 

As a Software Developer in Test on our Quality team, you will play a crucial role in elevating our quality engineering strategy by focusing on performance and security testing. You will work alongside a cross-functional team of developers, QA engineers, and DevOps professionals to design robust quality guidelines and build scalable testing tools. 

This position blends QA engineering, infrastructure, and DevOps expertise, making it ideal for someone enthusiastic about driving quality through deep system understanding and tooling innovation. 

• Design and implement performance and security testing strategies and framework for complex, distributed systems. 

• Develop custom tools, frameworks, and pipelines to support non-functional testing and quality assurance across teams. 

• Collaborate with DevOps and infrastructure teams to ensure testability and observability of systems. 

• Integrate tests into CI/CD workflows, leveraging Azure DevOps pipelines and related automation tools. 

• Contribute to the creation of internal quality standards and guidelines, and advocate for best practices across R&D. 

• Support general QA activities as needed, including integration and regression testing. 

Qualifications

Qualifications

You have the following background, although we also recognize that talent comes in many forms:  

• Demonstrated expertise in software quality, testing automation, and tooling Proven experience in performance testing (e.g., JMeter, k6, Gatling) and security testing (e.g., OWASP ZAP, Burp Suite). 

• Strong DevOps background, including experience with infrastructure-as-code, containerization (e.g., Docker, Kubernetes), and cloud platforms. 

• Experience building and maintaining CI/CD pipelines (preferably in Azure DevOps). 

• Solid coding skills in C# or another backend language; scripting experience in Python, PowerShell, or similar is a plus. 

• Familiarity with monitoring, observability tools (e.g., Sumo Logic), and log aggregation. 

• Knowledge of QA methodologies, automated testing frameworks, and test lifecycle management. 

• Strong collaboration skills with the ability to work across development, QA, and infrastructure teams. 

• A mindset of curiosity, initiative, and a desire to drive continuous improvement. 

Additional Information

What We’re Offering

• Salary Range: $90k-$105k CAD, plus bonus
• Flexible paid time off, including sick and holiday
• Flexible spending accounts
• Life insurance and disability benefits
• Tuition assistance
• Community involvement and volunteering events

• We embrace flexibility and hybrid work opportunities to support diverse needs and lifestyles, while also valuing inclusive workplace experiences. By fostering a sense of community, we drive innovation, strengthen connections, and nurture belonging. Our commitment ensures you can work in a way that suits you best, while also engaging with colleagues to share ideas and build meaningful relationships.

  I'm interested

We embrace flexibility and hybrid work opportunities to support diverse needs and lifestyles, while also valuing inclusive workplace experiences. By fostering a sense of community, we drive innovation, strengthen connections, and nurture belonging. Our commitment ensures you can work in a way that suits you best, while also engaging with colleagues to share ideas and build meaningful relationships.

Application Security Engineer (DevSecOps & AI) This role is part of the Application Security team within the broader Cybersecurity function. The team is focused on embedding security into the software development lifecycle. The position will serve as a senior contributor, leading tool integration, automation, and AI initiatives, while also supporting repository management and triage efforts.What is in it for you:• Salaried: $74-84 per hour.• Incorporated Business Rate: $90-100 per hour.• 12-month job assignment• Full-time position: 37.50 hours per week.• Hybrid role: 3 days in the office• Join a passionate and inclusive team of professionals.Responsibilities:• Integrate and optimize application security tools within the DevSecOps pipeline.• Triage and manage application security findings from SAST, SCA, DAST, and secret monitoring.• Troubleshoot and enhance the performance of security tools.• Automate security processes to enhance operational efficiency.• Oversee and manage source code repositories.• Lead the design and management of AI initiatives in application security and quality assurance.• Stay updated on cybersecurity threats and trends through research and training.What you will need to succeed:• Bachelor’s degree in Information Systems, Computer Science, or related field (or equivalent experience).• Minimum of 5 years of experience in cybersecurity, information security, or vulnerability assessment.• Proficient in application security, particularly with open source vulnerabilities, SAST, and DAST tools.• Hands-on experience with security tools and DevSecOps processes.• Proficiency in scripting languages for automating vulnerability management (e.g., Python, Bash).• Experience with source code repository management.• Proven leadership in AI initiatives and strategic projects.• Experience with secret monitoring tools.• Familiarity with cloud-native security practices.• Preferred Certifications: CISSP – Certified Information Systems Security Professional and CISM – Certified Information Security ManagerWhy Recruit Action?Recruit Action (agency permit: AP- ) provides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted. # MFCJP

Job Description
We are seeking a skilled and proactive Security Engineer to join our growing Information Security team. This role is ideal for someone passionate about securing modern cloud environments and driving DevSecOps practices. You will be responsible for deploying and maintaining security technologies, ensuring solution availability, and aligning configurations with architectural and industry standards.
Responsibilities
 - Deploy and configure new security technologies across cloud and on-premise environments.
 - Manage upgrades, patches, and lifecycle maintenance for security tools and platforms.
 - Ensure high availability and performance of security solutions, including coordination with SaaS vendors.
 - Align security configurations with enterprise architecture and industry standards (e.g., NIST, CIS, ISO 27001).
 - Operationalize security gating and compliance checks within CI/CD pipelines to support DevSecOps.
 - Collaborate with engineering and application teams to enforce security controls across AWS, Azure, and hybrid environments.
 - Conduct security assessments and provide remediation guidance for vulnerabilities and misconfigurations.
 - Maintain documentation for security configurations, operational procedures, and incident response protocols.
Support incident response efforts with technical expertise and forensic analysis.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: and Requirements
- 5+ years of experience in security engineering, with a focus on cloud and DevSecOps environments
 - Strong knowledge of cloud platforms (AWS, Azure) and container security (e.g., Kubernetes, Docker)
 - Experience with security tools such as SIEM, EDR, vulnerability scanners, and cloud-native security services.
Familiarity with scripting and automation (e.g., Python, PowerShell, Terraform). Excellent communication and collaboration skills.
- Solution oriented, forward thinking - you will be joining a team that is growing and looking to you for best practices
- The successful candidate will be interested in building their cloud journey and DevsecOps journey from the beginning stages

Job Description

Job Description

Salary: $130,000 - $60,000 CAD

The Role

Were looking for a senior Security Developer (aka Security Engineer) to join our Platform team and help safeguard the integrity of our applications, infrastructure, and data. This role is central to designing and implementing technical solutions that proactively prevent, detect, and respond to security threats. The ideal candidate brings a strong technical foundation, a collaborative mindset, and a passion for making security an enabler of great software. Youll work closely with developers to identify risks, promote best practices, and implement secure solutions. Were looking for someone who believes in building strong, repeatable processesleveraging cloud-native security tools, partnering with external experts, and helping teams build secure systems by design.

Primary responsibilities:

• Lead the evaluation and mitigation of emerging security threats and news
• Proactively identify security weaknesses in our systems and seek improvements
• Promote security best practices
  

Additional responsibilities:

• Recommend effective strategies and provide guidance to developers on secure solutions
• Collaborate with developers to review designs and implementations for potential security issues
• When appropriate, implement solutions aligned with recommended strategies
• Write infrastructure-as-code (Terraform), with a focus on security-related solutions
• Configure and manage cloud security tools, including Datadogs security suite
• Oversee vulnerability scanning and assessment, including Dependabot and Amazon ECR
• Organize and evaluate penetration tests, including managing external assessments
• Lead or actively participate in security exercises and audits
• Support responses to compliance and security questionnaires
• Meet with vendors and partners on security-related matters
• Provide input on internal security guidance related to staff practices and device configuration

What we expect from you:

• 5+ years of professional experience in a security engineering, DevSecOps, or infrastructure security role
• Bachelors degree in Software Engineering, Computer Science or related field, or equivalent practical experience
• Proficiency in at least one programming language
• Experience in utilizing a variety of tools for vulnerability and penetration testing
• Experience writing clear, actionable security reports tailored for engineering, leadership and compliance teams
• Hands-on experience with secure software development lifecycle practices, including threat modeling, static/dynamic code analysis, and security-focused code reviews
• Demonstrated ability to build relationships across engineering teams, encouraging secure development practices through education, support, and partnership

Additional experience that would be beneficial:

• Experience provisioning and configuring AWS infrastructure using Terraform
• Experience integrating security checks into CI/CD pipelines using GitHub Actions
• Experience leading tabletop exercises to simulate incident response scenarios
• Experience working in regulated industries, such as finance or healthcare
• Familiarity with compliance frameworks such as SOC 2

About Lendesk

Were a financial technology company on a mission to make the mortgage experience easy, accessible, and transparent. Our flagship product is an advanced digital mortgage origination platform that connects borrowers, brokers, and lenders. Were a fast-growing team of 50+ employees, composed of innovative and engaged individuals working collaboratively to deliver a unique digital home buying experience.

What We Offer

In addition to the exciting work, great people and a fun and supportive culture, we offer an extensive benefits and perks package:

• Competitive salaries
• Comprehensive benefit plan including dental, medical and vision
• Remote first, work from where you are in Canada
• Budget to improve your home office set-up
• Flexible work hours
• The latest in hardware and software tools
• Budget for continuous development and training
• Stock purchase program in our parent company (NYSE:RKT)

You must be a current Canadian resident to be considered for this role. A candidate selected for this position must pass a criminal background check.

Lendesk is committed to offering competitive salaries to all our team members. This role has a salary range of 130,000 - 160,000 CAD which accounts for the skills youll bring to the team, the impact youll have on the business, and the growth youll experience in the role. Throughout your time at Lendesk well continue to have conversations about your career development and youll have the opportunity to build an amazing career with us.

Job Description

Job Description

Responsibilities:

• Conduct thorough investigations and offer guidance on the most current security-related risks, threats, and vulnerabilities. This will involve managing security incidents, overseeing external security reviews, and performing penetration tests to ensure the robustness of our infrastructure's security posture.
• Collaborate on the development of Information Security policies, standards, and baselines. Your input will contribute to assessing compliance efforts.
• Monitor, evaluate, and execute network penetration tests, vulnerability assessment scans, and risk evaluation reviews.
• Define and present key security metrics to influence trends in remediation strategies.
• Communicate findings and provide recommendations to stakeholders during remediation processes as necessary.
• Work closely with IT Operations, architecture, and project teams to design and implement security controls based on policies, standards, and industry best practices.
• Coordinate vulnerability assessments, review assessment results, guide patching, and lead or offer advice on remediation activities related to various IT infrastructure technologies such as BU OS, Middleware, Unix/Linux Servers, Storage, Databases, Appliances, Web Applications, Network Devices, malware tools, IDS/IPS, encryption, etc.
• Contribute to consistent governance reporting by providing results and metrics. You will also collaborate on and organize remediation plans and efforts.
• Engage in research to develop testing tools, techniques, and process enhancements.
• Effectively explain, demonstrate, and document the operational implications of specific security vulnerabilities or loopholes.
• Analyze vulnerability findings and suggest corrective actions and security strengthening measures.
• Manage and configure NGFW, WAF, and NSG.
• Implement Data Loss Prevention (DLP) solutions to enhance data security.
• Provide mentorship, guidance, and knowledge-sharing within the team.
• As needed, offer recommendations, explanations, and guidance on your area of expertise to other teams in the organization.
• Comprehend the Scope of Work for each engagement.
• Proactively recognize security risks and define security requirements and controls to mitigate these risks.
• Carry out your duties in a secure, organized, and professional manner.

Requirements:

• You hold a Bachelor's Degree in Science, Engineering, or an equivalent field.
• You possess certifications such as CISSP, GSEC, or other relevant credentials.
• You have over 5 years of progressive experience in IT security.
• Your track record demonstrates expertise in formulating, maintaining, and enforcing security best practices.
• You are proficient in industry-recognized tools, encompassing Middleware, Servers (Linux/Windows), Storage, Databases, Appliances, Web Applications, Network Security Devices, as well as technologies like Cisco ACI, Nutanix, Azure Cloud Platform, CyberArk, Intune, Microsoft Endpoint Management, SDWAN, Palo Alto, Fortinet, Cisco ASA, and Juniper firewalls.
• Your extensive knowledge covers the current cybersecurity landscape, with a focus on networks and server/system management. You possess a strong background in Cloud Security (Azure, OCI, Nutanix) and a deep understanding of Zero Trust and SASE security models.
• You possess a strong grasp of Authentication, End Point Security, Internet Policy Enforcement, Web Content Filtering, Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions, VMs, as well as common networking services and protocols (TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, etc.).
• Your familiarity extends to Information Security best practices, policies, standards, and baselines, including industry guidelines from ISO 27001/27002, NIST, CIS, and OWASP.
• You have notable experience in database security.
• System hardening for Networking Devices, Windows, and Linux is within your realm of expertise.
• You're a resourceful problem solver who thrives in collaborative settings.
• You exhibit the ability to systematically analyze intricate technical issues, identify solutions, and effectively communicate them to non-technical audiences.
• Your communication skills, both written and verbal, are strong, enabling you to generate concise reports, summaries, and formal presentations.
• You can adeptly explain, demonstrate (when applicable), and document the operational consequences of specific security vulnerabilities or loopholes.
• You're self-motivated and capable of working independently.
• You're a dedicated team player.