Security Software Engineer, AI & Automation - Canada

NerdwalletNerdwallet·Remote(NerdWallet Canada)
Software Development

WFA Digital Insight

The demand for AI-powered security systems has grown significantly, with a 25% increase in job openings in the past year. As a Security Software Engineer with expertise in AI and automation, you'll be in high demand. Nerdwallet is at the forefront of this trend, and this role offers a unique opportunity to shape the future of security tooling. With the rise of remote work, companies are looking for professionals who can design and implement secure systems. Before applying, candidates should know that this role requires a strong proficiency in Python or Go and experience building production-grade backend services.

Job Description

About the Role

Nerdwallet is seeking a Security Software Engineer to focus on AI and automation, designing and building secure software development systems that make secure software development more scalable and effective. This role is crucial in strengthening the security, reliability, and trust behind Nerdwallet's tools and experiences. The Security Software Engineer will partner closely with security engineering and infrastructure teams to build automation and AI-powered solutions.

The ideal candidate will have a strong background in software engineering or security engineering, with experience in building and maintaining backend services. They will take ownership of security engineering initiatives, combining software development, AI systems experience, and security-first thinking to solve meaningful problems at scale.

What You Will Do

  • Design and build multi-agent LLM systems and routing logic that automate threat modeling, security design review, policy Q&A, and vulnerability analysis at scale
  • Develop retrieval-augmented generation (RAG) pipelines and semantic search systems across large code and documentation repositories
  • Create automated code review capabilities that help identify insecure patterns and improve software quality earlier in the development lifecycle
  • Design integrations with tools such as GitHub, Slack, Jira, Confluence, and cloud platforms to embed security guidance into everyday engineering workflows
  • Develop REST APIs and platform services with authentication, authorization, rate limiting, observability, and secure handling of sensitive data
  • Design and maintain scalable data processing pipelines for large codebases and document repositories, including extraction, indexing, stream processing, batch jobs, and parallel execution
  • Improve AI application security through controls such as prompt injection prevention, sensitive data filtering, supply chain security, and secure handling of model inputs and outputs
  • Enhance Nerdwallet's secure software development lifecycle (SSDLC) through automation, tooling, and developer-friendly security practices
  • Partner with engineering teams to prioritize and remediate application and infrastructure security risks
  • Support incident response and on-call needs by contributing security engineering expertise, tooling, automation, and analysis when security issues arise

What We Are Looking For

  • 3+ years of software engineering or security engineering experience
  • Strong proficiency in Python or Go for building production-grade backend services, APIs, and data pipelines
  • Experience building and maintaining backend services, including REST APIs and platform services
  • Strong understanding of security-first principles and secure coding practices
  • Experience with AI and automation technologies, including machine learning and natural language processing
  • Strong collaboration and communication skills, with the ability to work closely with security engineering and infrastructure teams
  • Strong problem-solving skills, with the ability to analyze complex security issues and develop effective solutions
  • Experience with cloud platforms, including AWS or Azure
  • Strong understanding of security frameworks and regulations, including HIPAA and PCI-DSS

Nice to Have

  • Experience with containerization technologies, including Docker and Kubernetes
  • Experience with security orchestration, automation, and response (SOAR) tools
  • Strong understanding of threat modeling and security design review
  • Experience with security information and event management (SIEM) systems

Benefits and Perks

  • Competitive salary and benefits package
  • Opportunity to work with a growing and innovative company
  • Collaborative and dynamic work environment
  • Professional development opportunities, including training and conference attendance
  • Flexible work arrangements, including remote work options
  • Access to cutting-edge technologies and tools
  • Recognition and reward for outstanding performance

How to Stand Out

  • When applying, make sure to highlight your experience with AI and automation technologies, including machine learning and natural language processing.
  • Emphasize your strong understanding of security-first principles and secure coding practices, and provide examples of how you've applied these in previous roles.
  • Be prepared to discuss your experience with cloud platforms, including AWS or Azure, and how you've used these to design and implement secure systems.
  • Showcasing your ability to work closely with security engineering and infrastructure teams is crucial, so be sure to provide examples of successful collaborations.
  • When negotiating salary, consider the company's overall compensation package and benefits, and be prepared to discuss your expectations and requirements.
  • Be aware of red flags, such as a lack of transparency about the company's security policies or practices, and be prepared to ask questions about the company's approach to security and risk management.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.