Work In Tech

Visier is looking for a strong Security Engineering Manager with an excellent understanding of industry best practices and hands-on experience in application and infrastructure security. You will work closely with stakeholders across Visier to protect our critical assets and anticipate threats. You will provide insights on security best practices, techniques and technologies as well as defining new best practices necessary to defend Visier and our customers against emerging threats and highly-skilled threat actors.

What you'll be doing...

• Lead a team of technical security engineers.
• Discover flaws in systems and applications, guide remediation, and provide guidance to prevent recurring flaws.
• Participate in architecture review, threat modelling, source code review and promote secure software development lifecycles. Play a key role in implementing security solutions for systems and applications to identify security flaws and help eliminate security vulnerabilities.
• Perform application and infrastructure vulnerability and penetration tests using external & internal tools and manual and scenario-based security testing.
• Research & evaluate new attacks and threats. Review security-related events, assessing severity, criticality and priority.
• Develop and execute security-focused test plans to identify software problems and their causes.
• Intrusion detection, prevention and response systems operations. Security log management and monitoring
• Embrace a philosophy of continuous learning, keeping current with industry best practices, tools and strategies, documenting knowledge and educating fellow Visierites on security and secure coding practices.

What you'll bring to the table...

• Practical experience in networking, network security, firewalls, routing, DNS, Linux operating system technologies and security.
• Hands-on proficiency with AWS services, including but not limited to IAM, AWS permissions, AWS Organizations, GuardDuty, Security Hub, AWS Config, ACLs, and Security Groups
• Coding skills - the ability to read and analyze code (Python, JavaScript, Java, Scala, C++ are desirable)
• Ability to prioritize security threats and work with developers and the SRE team to remediate them.
• Good understanding of industry best practices and hands-on experience with application and infrastructure security in a software environment (ideally SaaS)
• Solid penetration and vulnerability testing knowledge using tools such as Burp Suite, OWASP ZAP, CSRFTester, Metasploit, etc.
• Ability and interest to lead a team of security engineers
• Professional security certifications are an asset.

Most importantly, you share our values...

• You roll up your sleeves
• You make it easy
• You are proud
• You never stop learning
• You play to win

The base pay range for this position in the Canada is $128k - $192k / year + bonus

The compensation offered will be determined by factors such as relevant qualifications, experience, knowledge and skills. Many of our positions are eligible for additional types of compensation (e.g., commission plans, bonus, etc.) which our Talent Acquisition team will share with you if you interview for the role.