We are trusted partners in the
development of secure software.

Behind the Scenes

Learning, Growth, and Passion

The culture of Security Compass is derived from one founding principle: to improve the state of software security. We offer challenging work and cutting edge research in an openly collaborative environment. We encourage you to explore ideas and test new theories.

Every member of our team is passionate about their work and provides clients with best-in-industry expertise and customer service. We believe that engaged and motivated employees lead to consistent satisfaction.

Benefits and Perks

  • Iconic representation of Flexible Schedule

    Flexible Schedule

    We support a healthy work/life balance. You have unlimited personal days to help manage your schedule.

  • Iconic representation of Learning and Growth

    Learning and Growth

    We provide a budget and environment dedicated to help you attain new skills and monthly sessions are entertained to showcase what you’ve learned.

  • Iconic representation of Hack Days

    Hack Days

    Developers are able to allocate 10% of their time to work on side projects of their choosing.

  • Iconic representation of Progressive Research

    Progressive Research

    Contribute to our research team in the fields that interest you! NFC, Drones and DDos are examples of what our team members are currently getting into.

  • Iconic representation of Friendly Events

    Friendly Events

    We have fun! Whether it’s movie night or playing paintball, dodgeball, or board games, it’s regular around here!

  • Iconic representation of Leadership

    Leadership

    Are you interested in being a team leader? We can help you prosper with our merit-based leadership program.

  • Iconic representation of Universal Acceptance

    Universal Acceptance

    Whatever your race, gender identity or sexual orientation, we welcome you to be a great part of our diverse culture!

  • Iconic representation of Workplace Democracy

    Workplace Democracy

    Our flat organization structure allows you to comfortably provide us with feedback through open doors and allows for greater innovation and communication.

Join the Team

Check out our list of available positions

+

Associate Application Security Consultant

Greater Toronto Area

As an Associate Application Security Consultant, you will be expected to assist with, and ultimately perform, various application-security-specific testing activities. You will participate in application security penetration testing, source code reviews, and threat modeling. You will also contribute content to draft reports based on the assessment results and gathered evidence. You will be expected to stay up-to-date with the latest developments in information security in order to contribute to talks, blogs, articles, and whitepapers.

We're looking for new graduates who are up for the challenge. Candidates must be based out of the Greater Toronto Area.

Education

Bachelor degree or minimum 3-year college diploma in:

  • Software engineering
  • Computer science/electrical engineering
  • IT/system and network administration OR
  • Other applicable engineering disciplines

Soft Skills

  • Self-directed learner and willing to experiment with new things
  • Excellent oral and written communication skills
  • Creative thinking ability and good analytical skills
  • Outstanding problem solving ability
  • Enthusiasm and positive attitude
  • Active listening and attention to detail
  • Professional and a team player
  • Passion for customer service is an asset

Technical Skills

  • Hands-on experience in software development, either through co-op/internship programs or personal projects
  • OR System administration (e.g. maintenance of various operating systems, networking devices and customer support), either through co-op/internship programs or personal projects
  • A general understanding of the OWASP Top 10

Tinkerer:

  • You like to pull things apart and figure out how they work
  • You like to see what can be tampered with
  • You like to see what the maker of a product didn’t think about from not only a security perspective but all perspectives
  • You like to see the big picture around a product and see how your tinkering can help the product improve as a whole

Nice to Have

  • A basic understanding of application and network security assessment techniques
  • Participation in a bug bounty (i.e., recognition for responsibly reporting an issue)
  • Participation in Hackathons/Capture-the-Flags
  • Participation in open source software projects
  • OSCP, CISSP, CSSLP, GIAC certifications

What We Offer

  • Free snacks and refreshments
  • Regular participation in CTF events
  • Engagement with the security community by hosting events such as OWASP chapter meetings
Click Here for even more perks! Apply Now
+

Consultant with Software Development Background

Greater Toronto Area

We’re looking for software developers who are itching to make an impact in the application security space. As an Associate Security Consultant, you will be expected to assist with, and ultimately perform, various application-security-specific testing activities. You will participate in application security penetration testing, source code reviews, and threat modeling. You will also contribute content to draft reports based on the assessment results and gathered evidence. You will be expected to learn and stay up-to-date with the latest developments in information security in order to contribute to talks, blogs, articles, and whitepapers.

Candidates must be based out of the Greater Toronto Area.

Education

Bachelor degree or minimum 3-year college diploma in:

  • Software Engineering or Computer Science

Soft Skills

  • Self-directed learner and willing to experiment with new things; high level of contextual and technological adaptability (i.e., tool- and industry-agnostic)
  • Excellent oral and written communication skills
  • Creative thinking ability and good analytical skills
  • Outstanding problem solving ability
  • Enthusiasm and positive attitude
  • Active listening and attention to detail
  • Professional and a team player
  • Good decision-making skills
  • Experience working both as part of a team and independently
  • Passion for customer service is an asset
  • Experience working as a consultant is an asset

Technical Skills

  • 2-3 years of Software Development experience
  • Java EE and/or .NET
  • Agile development or CI
  • Good understanding of relational databases (MSSQL, Oracle, DB2)
  • Familiarity with one or more IDEs
  • Familiarity with two or more MVC frameworks
  • Understanding of JavaScript-based frameworks such as Node, Angular, etc., is an asset
  • Enterprise web application development is an asset
  • Familiarity with debugging, QA, deployment tools is an asset
  • Experience with one or more static code analyzers is an asset
  • Enterprise Front-end and/or Back-end web, mobile, or desktop application development is an asset

Tinkerer:

  • You like to pull things apart and figure out how they work
  • You like to see what can be tampered with
  • You like to see what the maker of a product didn’t think about from not only a security perspective but all perspectives
  • You like to see the big picture around a product and see how your tinkering can help the product improve as a whole

What We Offer

  • Free snacks and refreshments
  • Regular participation in CTF events
  • Engagement with the security community by hosting events such as OWASP chapter meetings
Click Here for even more perks! Apply Now
+

Application Security Consultant

Greater Toronto Area

As an Application Security Consultant, you will be expected to perform and eventually lead various application-security-specific testing activities. In addition to the execution of traditional application security assessments, you will participate in their refinement and improvement. You will also draft reports based on the assessment results and gathered evidence, and address client inquiries regarding these results. You will be expected to stay up-to-date with the latest developments in information security in order to contribute to talks, blogs, articles, and whitepapers.

Candidates must be based out of the Greater Toronto Area.

Education

Bachelor degree or minimum 3-year college diploma in:

  • Software engineering
  • Computer science/electrical engineering
  • IT/system and network administration OR
  • Other applicable engineering disciplines
  • For those who don’t meet the technical skills experience requirements below: Master’s degree in one of the above disciplines

Soft Skills

  • Self-directed learner and willing to experiment with new things; high level of contextual and technological adaptability (i.e., tool- and industry-agnostic)
  • Excellent oral and written communication skills
  • Creative thinking ability and good analytical skills
  • Outstanding problem solving ability
  • Enthusiasm and positive attitude
  • Active listening and attention to detail
  • Professional and a team player
  • Good decision-making skills
  • Experience working both as part of a team and independently
  • Passion for customer service is an asset
  • Experience working as a consultant is an asset

Technical Skills

  • A deep understanding of the OWASP Top 10
  • Ability to analyze root causes and deliver strategic recommendations during client reviews
  • OSCP, CISSP, CSSLP, or GIAC certifications an asset
  • Experience with Threat Modeling an asset
  • {"1-3 years experience with"=>nil}
  • - Web/mobile application penetration testing
  • - Source code review
  • - Network penetration testing

Tinkerer:

  • You like to pull things apart and figure out how they work
  • You like to see what can be tampered with
  • You like to see what the maker of a product didn’t think about from not only a security perspective but all perspectives
  • You like to see the big picture around a product and see how your tinkering can help the product improve as a whole

Nice to Have

  • Participation in a bug bounty (i.e., recognition for responsibly reporting an issue)
  • Participation in Hackathons/Capture-the-Flags
  • Participation in open source software projects

What We Offer

  • Free snacks and refreshments
  • Regular participation in CTF events
  • Engagement with the security community by hosting events such as OWASP chapter meetings
Click Here for even more perks! Apply Now
+

Senior Application Security Consultant

Greater Toronto Area or San Francisco Bay Area

As a Senior Application Security Consultant, you will be expected to lead and manage enterprise-wide application security projects, including vulnerability assessments, SDLC security assessments, methodology development, software security advisory, and research. You will engage with clients to understand their application security needs, scope solutions and initiatives, drive the creation of project deliverables such as vulnerability reports and executive summaries, and manage the delivery of the project. You are constantly ingesting security events and information and integrating it into your practices. You can relay that information to your colleagues and your non-technical family members with the appropriate degree of detail.

Candidates must be located in or willing to relocate to the Greater Toronto Area or San Francisco Bay Area.

Education

Bachelor degree or minimum 3-year college diploma in:

  • Software engineering
  • Computer science/electrical engineering
  • Other applicable engineering disciplines

Soft Skills

  • You can teach someone about anything without being an expert yourself
  • You can write executive summaries, Wikipedia entries, and fanfiction flawlessly
  • You genuinely admire sweet hacks, even if they aren’t yours
  • If getting this job were a problem, you have multiple, proven solutions already
  • Other people ask to work with you
  • You’ve already spotted several mistakes in the content of this job posting
  • ...but you’re willing to overlook them because job postings are trivial in the overall hiring process
  • You respect the third rail
  • You’ve lead a team into battle; everyone survived
  • You’re generous with your knowledge and patient with your subordinates
  • Ultimately, you know how to Get Things Done

Technical Skills

  • 4+ years of experience in an information security role (offensive or defensive)
  • Expertise in the execution and delivery of information security assessments
  • Experience with the evaluation and development of security solutions and architectures
  • A deep understanding of the common network and software security vulnerabilities
  • Ability to analyze root causes and deliver strategic recommendations during client reviews
  • OSCP, CISSP, CSSLP, or GIAC certifications an asset
  • Government security clearances an asset
  • Ability to work internationally an asset
  • Recommendations from one or more clients and/or colleagues an asset

Thinker:

  • You like reverse engineering
  • You like to push boundaries and have the common sense to know when and where
  • You believe in responsible disclosure, behaving ethically, and collaboration to achieve success
  • Your snap intuitions about a product can be trusted
  • You can prioritize and assign resources efficiently

What We Offer

  • Free snacks and refreshments
  • Regular participation in CTF events
  • Engagement with the security community by hosting events such as OWASP chapter meetings
Click Here for even more perks! Apply Now
+

Senior Security Consultant

Greater Toronto Area or San Francisco Bay Area

As a Senior Security Consultant, you will be expected to lead and manage enterprise-wide security projects, including vulnerability assessments, methodology development, security advisory, and research. You will engage with clients to understand their security needs, scope solutions and initiatives, drive the creation of project deliverables such as vulnerability reports and executive summaries, and manage the delivery of the project. You are constantly ingesting security events and information and integrating it into your practices. You can relay that information to your colleagues and your non-technical family members with the appropriate degree of detail.

Candidates must be located in or willing to relocate to the Greater Toronto Area or San Francisco Bay Area.

Education

Bachelor degree or minimum 3-year college diploma in:

  • Software engineering
  • Computer science/electrical engineering
  • IT/system and network administration OR
  • Other applicable engineering disciplines

Soft Skills

  • You can teach someone about anything without being an expert yourself
  • You can write executive summaries, Wikipedia entries, and fanfiction flawlessly
  • You genuinely admire sweet hacks, even if they aren’t yours
  • If getting this job were a problem, you have multiple, proven solutions already
  • Other people ask to work with you
  • You’ve already spotted several mistakes in the content of this job posting
  • ...but you’re willing to overlook them because job postings are trivial in the overall hiring process
  • You respect the third rail
  • You’ve lead a team into battle; everyone survived
  • You’re generous with your knowledge and patient with your subordinates
  • Ultimately, you know how to Get Things Done

Technical Skills

  • 4+ years of experience in an information security role (offensive or defensive)
  • Expertise in the execution and delivery of information security assessments
  • Experience with the evaluation and development of security solutions and architectures
  • A deep understanding of the common network and software security vulnerabilities
  • Ability to analyze root causes and deliver strategic recommendations during client reviews
  • OSCP, CISSP, CSSLP, or GIAC certifications an asset
  • Government security clearances an asset
  • Ability to work internationally an asset
  • Recommendations from one or more clients and/or colleagues an asset

Thinker:

  • You like reverse engineering
  • You like to push boundaries and have the common sense to know when and where
  • You believe in responsible disclosure, behaving ethically, and collaboration to achieve success
  • Your snap intuitions about a product can be trusted
  • You can prioritize and assign resources efficiently

What We Offer

  • Free snacks and refreshments
  • Regular participation in CTF events
  • Engagement with the security community by hosting events such as OWASP chapter meetings
Click Here for even more perks! Apply Now
+

Experienced Developer (DDoS Strike)

Toronto

Are you sick and tired of hearing about DDoS attacks that could have been prevented? Are you ready to have a material impact with a team that's actually making a big difference in helping companies defend against DDoS assaults? Join us at Security Compass, to help build our DDoS simulation service DDoS Strike.

We're looking for a smart, pragmatic software developer to join our downtown Toronto based team. Working with us means you will be making a positive impact on the security of systems which affect us all on a daily basis: financial, health, infrastructure, and others. Our developers interface directly with customers, take pride in ownership of the product, and have major input on what they work on.

All developers are able to spend 10% of their time working on a side-project of their choice to encourage on-going learning. Are you passionate about building real, production software? Come realize it here.

Must be able to commute into our downtown Toronto office. Telecommuting available two days per week.

Desired Skills & Experience

  • Python
  • Network Programming

Nice to Have

  • Knowledge of how DDoS attacks work
  • Knowledge of Dev Ops/System Administration
  • Network/Application Protocols & Security (OSI Model)
  • Knowledge of Cloud IaaS (ex. AWS, Azure)
  • Asynchronous Programming
  • Experience with any of the following libraries: Tornado, scapy, Apache-libcloud
  • Expert knowledge in DDoS attacks and mitigation
  • Experience setting up DDoS defences

Why should you work for Security Compass?

Click Here to find out! Apply Now
+

Human Resources Manager

Toronto

We believe that a company culture that develops talent, enables creative thinking, and encourages diverse ideas is the foundation of our success. We also know that the approach that got us here won’t be enough get us to where we need to be. Our growth targets require extensive corporate change, as well as transformation and improvements in how we hire, support, and invest in our people.

That’s why we’re looking for an expert who can guide, lead, and inspire change in our Talent function, and have a positive impact on our workforce. With your support, we can ensure that Security Compass will remain a great place to work – not just now, but for years to come.

Specific Responsibilities include:

  • Be the first level contact for HR-related issues from all employees
  • Lead in the evolution of our organizational design, as well as the recruiting and retention of exceptional talent in all areas
  • Consult with leadership on management practices and keep us current, competitive and innovative with pay, benefits and people policies.
  • Ensures our policies and procedures are legally compliant
  • Oversee management of benefits administration
  • Develop and scale onboarding programs for all new employees
  • Partner with leaders and all people managers to keep our employees motivated and excited to be a part of our team.

Desired Skills & Experience

  • 5+ years of HR Generalist experience; familiarity with all areas of HR practice.
  • Previous leadership experience in an HR role at a fast-growing technology company is a major asset.
  • Expertise in employee relations, comp and benefits
  • Experience with having defined and executed on talent management (recruitment and retention) strategies
  • Sound knowledge of HR policies and laws
  • Excellent judgment and tact, including the ability to communicate tough messages respectfully.
  • The willingness and ability to perform both strategic and tactical HR tasks.
  • An excellent grounding in HR administration, along with a passion for people data and metrics.

Why should you work for Security Compass?

Click Here to find out! Apply Now
+

Senior Linux System Administrator

Toronto

SD Elements is looking for a smart, pragmatic Linux System Administrator with interest in DevOps and a good understanding of commercial software deployment/development to join our team. Working with us means you will be making a positive impact on the security of systems, which affect us all on a daily basis: financial, health, infrastructure, and others. We've been out for just over 4 years and our clients already include some of the most recognizable brands on the planet, with the list expanding quickly.

We are looking for good candidates with experience bridging the three worlds of development and operations and enterprise customer support. Your role will be a key in integrating, deploying and supporting platforms for our enterprise customers. The role might involve up to 25% travel time in cases the work needs to be done in customer premises.

Desired Skills & Experience

  • 3 years experience in operations, administering Linux machines.
  • Bash scripting and/or scripting experience with Python or Ruby.
  • Experience maintaining a consistent configuration across multiple servers using tools such as puppet, chef, or similar applications.
  • Experience deploying and maintaining web servers such as Apache and Nginx.
  • Experience with MVC platforms such as Django or Rails is a bonus.
  • Experience troubleshooting issues with the above technologies and other areas as needed, specifically when dealing with unfamiliar code.
  • Must be based in Canada or US. We are based in Toronto, but if you are able and interested in working remotely, we are open to it.

Why should you work for Security Compass?

Click Here to find out! Apply Now
+

Developer (Co-op / Intern)

Toronto

Are you sick and tired of hearing about security breaches that could have been prevented? Are you ready to have a material impact with a team that's actually making a big difference in helping companies build secure software? Join us at SD Elements. We're looking for a smart, pragmatic software developer intern to join our downtown Toronto based team. Working with us means you will be making a positive impact on the security of systems which affect us all on a daily basis: financial, health, infrastructure, and others. We've been out for just over 4 years and our clients already include some of the most recognizable brands on the planet, with the list expanding quickly. Our developers interface directly with customers, take pride in ownership of the product, and have major input on what they work on. All developers are able to spend 10% of their time working on a side-project of their choice to encourage on-going learning. Are you passionate about building real, production software? Come realize it here.

General programming experience, attitude, aptitude, passion for the product, and interpersonal communication skills are more important than specific technical skillset.

Nice to Have

  • Django (what we build on)
  • Python
  • Application Security
  • Apache / Mod WSGI / Nginx
  • Postgres
  • Puppet
  • Java/.Net/C++ (for integration and content development)
  • RESTful web services

Why should you work for Security Compass?

Click Here to find out! Apply Now
+

Test Automation Developer (Co-op / Intern)

Toronto

Are you sick and tired of hearing about security breaches that could have been prevented? Are you ready to have a material impact with a team that's actually making a big difference in helping companies build secure software? Join us at SD Elements. We're looking for a smart, pragmatic test automation developer intern to join our downtown Toronto based team. Working with us means you will be making a positive impact on the security of systems which affect us all on a daily basis: financial, health, infrastructure, and others. We've been out for just a few year and our clients already include some of the most recognizable brands on the planet, with the list expanding quickly. Our developers interface directly with customers, take pride in ownership of the product, and have major input on what they work on. All developers are able to spend 10% of their time working on a side-project of their choice to encourage on-going learning. Are you passionate about building real, production software? Come realize it here.

We are looking for someone to build on top of and improve upon our existing continuous integration and automated testing system. General programming experience, attitude, aptitude, passion for the product, and interpersonal communication skills are more important than specific technical skillset.

Nice to Have

  • Django (What we build on)
  • Python
  • Javascript
  • CasperJS
  • Jenkins, Travis CI, or other continuous integration tools
  • Application Security

Why should you work for Security Compass?

Click Here to find out! Apply Now
+

Administrative Assistant (Junior)

Toronto

We're looking for a creative and energetic Junior Administrative Assistant to help out with our ever so growing team.

Hop on board and let's take over the world!

Specific Responsibilities include:

  • Completing all assigned administrative tasks for activities that include but are not limited to: reports, listing forms, data entry, creating and maintaining spreadsheets, coordinate travel arrangements, developing presentations for internal use, scheduling meetings, emailing, taking notes, transcribe audio recordings, manage general inquiries, perform project research and analysis, process bills and invoices and other administrative tasks.
  • Keeping the office clean and organized
  • Inventory management
  • Sort and distribute mail
  • Arranging team events
  • Preparing and submitting expense reports

Desired Skills & Experience

  • Proficiency with Microsoft Office — especially Word, Excel, Power Point and Outlook
  • Highly proficient verbal and written communication skills
  • High-School Diploma or Equivalent
  • 1 — 2 years previous work experience in a related position
  • Report writing and presentation delivery experience
  • Highly organized and understanding the importance of transparent communication
  • Advanced analytical and problem solving skills with ability to multitask
  • Ability to think creatively
  • Willingness to quickly learn new technologies and perfect new skills
  • Attention to detail and professionalism
  • Flexibility to meet and adapt to changes in organizational priorities
  • Able to work in a team, as well as with great deal of autonomy
  • Enthusiastic, optimistic attitude
  • Basic understanding of Account Management, AP & AR
  • An excellent sense of humour!

Nice to Have

  • Photoshop
  • HTML
  • Visio
  • Publisher

Why should you work for Security Compass?

Click Here to find out! Apply Now
+

Sales Engineer Filled

Toronto

Are you sick and tired of hearing about security breaches that could have been prevented? Are you ready to have a material impact with a team that's actually making a big difference in helping companies build secure software? Join us at Security Compass. We're looking for a sales engineer. We're growing fast and we want somebody to help make sure we match the correct blend of products and services with client needs. The sales engineer position will primarily be focused on pre-sales, with some hands-on post sales activities included.

As a sales engineer, you will work closely with the field & inside sales teams

Specific Responsibilities include:

  • Focus on making sure we exceed customer expectations
  • Conduct remote & on-site demonstrations of our products (SD Elements, Computer Based Training) and discuss our services
  • Handle objections and provide relevant collateral from our knowledge base
  • Understand our sales process for all products and services
  • Pre-emptively identify areas of product improvement before they turn into support issues
  • Optionally, speak at conferences and write articles on topics of software security

Desired Skills & Experience

  • Passion and drive to improve the state of software security
  • Proven ability to learn very quickly with minimal guidance
  • Experience as a technical sales engineer, consultant or other client-facing technical role
  • Experience working directly with customers and helping them solve problems
  • Ability to travel up to 50% on weekdays
  • Located in North America, ideally close to an airline hub city

Nice to Have

  • Rudimentary knowledge of scripting or programming
  • Some experience using Python and/or Django
  • Familiarity with Linux environment/commands

Why should you work for Security Compass?

Click Here to find out!
+

Chief Financial Officer Filled

Toronto

We are seeking a Chief Financial Officer (CFO) to provide innovative financial guidance and solutions while promoting effective scaling of a business expected to grow over 100% in revenues year over year. As the CFO, you will be managing a dynamic Finance and Accounting Team whom we consider to be trusted partners within the company. You will be accountable for Financial, Administrative, Strategic and Risk Management operations.

This role is for somebody who thrives on wearing multiple hats, and materially affecting the success of the organization they work in. You will work closely with the management team and generally ensure the smooth operations of the company's consulting practice.

We are seeking candidate in the Great Toronto Area (GTA) only.

Core Competencies

  • Financial analysis & forecasting
  • Financial risk management
  • Technology domain understanding and aptitude for business management
  • Bookkeeping and project-based accounting for service delivery
  • Contract review

Specific Responsibilities include:

  • Creation of historic and projected financial statements broken down by business unit across multiple countries
  • Overseeing and implementing budget process
  • Cash flow management
  • Spending prioritization decisions
  • Involvement of finance perspective in major decisions
  • Overall tax planning & overseeing tax preparation process
  • Sourcing and comparing debt & equity finance options
  • Preparing for audits
  • Sourcing and liaising with accounting advisors for tax, audit preparation, etc.
  • Leadership in corporate structure planning & executions
  • Grants and tax credits (SRE&D, IRAP, etc.).
  • Overseeing AP & AR
  • Execution of expense management process
  • Payroll administration
  • Consolidation of financials from 4 different companies from different countries.

Desired Skills & Experience

  • 10+ years minimum progressive experience in accounting & finance with 3 of those years' as a controller, CFO or other financial leadership position
  • Comfortable working in a fast-growing, multi-office environment
  • Ability to think strategically while not being afraid to get hands dirty with low level work
  • Strong communication skills both verbal and written
  • Proven leadership and management skills
  • A recognized accounting designation (CPA, CA, CGA, CMA)
  • Well-developed leadership and business management skills
  • Results oriented focused with a commitment to excellence
  • Ability to work under pressure
  • Excellent task management skills
  • Experience in IT industry is a plus
  • Completion of an MBA is a plus

What We Offer

  • Competitive salary based on experience
  • Excellent Benefits and Bonus Programs
  • ESOP program available
  • Reimbursement, support for learning and growth initiatives
  • Flexible work schedule
  • Excellent growth potential
  • Exceptional working environment in a supportive and collaborative office
  • An "open culture" that is fun, creative, energetic, passionate and challenging where you have the freedom to make changes and solve problems
Click Here for even more perks!
+

Application Security Researcher Filled

Toronto

Looking to have a real, meaningful impact on the global state of information security? Join us as an application security researcher to help address security issues at the source: insecure software.

You will have a chance to positively impact nearly every part of the world's digital infrastructure by helping shape secure software development at our clients: the world's largest financial services, software, healthcare, telecom, technology, media and industrial control system companies.

We are looking for an expert in application security, with extensive knowledge of software security issues such as those listed in the Common Weakness Enumeration (CWE) and corresponding countermeasures. This position is ideal for academics with a passion for practical software security who are looking to work in research, application security consultants who are looking to focus on research and reduce travel, or developers who want to help influence other developers in software security.

Specific Responsibilities include:

  • Staying up to date with the latest software security vulnerabilities & related compliance standards by monitoring conferences, reading papers, relevant websites, social media and mailing lists
  • Converting compliance requirements and law to an actionable language for developers
  • Researching and defining broad threats and corresponding defensive controls/requirements
  • Mapping requirements to security test cases
  • Building and/or working with experts on secure coding samples in a variety of languages, including Java, .Net, Python, Ruby, JavaScript, C/C++, Objective C and more
  • Building testing scripts and guidance to aid QA & security testers in validating security requirements
  • Understanding & learning about a broad range of application types, including web, mobile, client/server, desktop, and embedded software
  • Mapping third party content to existing SD Elements data structure
  • Providing research output to a design team for building computer based training modules

Desired Skills & Experience

  • Extensive experience and interest in application security
  • Strong written communication skills and desire to write
  • Working understanding of networking and client server architecture
  • Direct development experience or past experience working with developers is a bonus
  • Existing understanding of relevant compliance standards such as PCI DSS, HIPAA, GLBA, embedded systems security (ISA) etc. very helpful
  • Preference to be based in Toronto and able to come into our downtown office. Telecommuting available two days per week

Why should you work for Security Compass?

Click Here to find out!

We’re constantly growing and are always looking for new talent to join our team

Copyright © 2015 Security Compass and SD Elements Inc.
All Rights Reserved.
257 Adelaide Street West, Suite 500, Toronto ON, Canada, M5H 1X9
Mail: 1801—1 Yonge Street, Toronto ON, Canada, M5E 1W7 | 1.888.777.2211 | info@securitycompass.com | Privacy Policy

We're Hiring!

Security Compass Logo