Senior Security Engineer, Application & Platform Security

SentrySentry·Remote(Toronto, Ontario, Canada)
Software Development

WFA Digital Insight

The demand for skilled security engineers has grown significantly, with a 25% increase in job postings in the last year alone. As companies like Sentry continue to expand their digital presence, the need for experts who can ensure the security of their applications and platforms has never been more pressing. With Sentry's strong developer culture and commitment to building high-quality products, this role presents a unique opportunity for security professionals to make a real impact. Before applying, candidates should be aware of the evolving landscape of cybersecurity threats and the importance of staying up-to-date with the latest technologies and methodologies.

Job Description

About the Role

The Senior Security Engineer position at Sentry is a critical component of the company's efforts to protect its customers, code, and infrastructure from an ever-evolving array of threats. As a key member of the Security Team, this role will involve working closely with various stakeholders across the organization to identify, assess, and mitigate potential security risks. The successful candidate will have a deep understanding of application and platform security, as well as a proven track record of developing and implementing effective security strategies.

Sentry operates in a hybrid work model, with a strong emphasis on collaboration and open communication. The company's commitment to its employees' growth and well-being is reflected in its flexible working arrangements and comprehensive benefits package. As a Senior Security Engineer, you will have the autonomy to drive projects forward, working closely with cross-functional teams to ensure that security is integrated into every aspect of the product development lifecycle.

The Security Team at Sentry is responsible for securing all aspects of the company's operations, from its customers' data to its internal infrastructure. As a senior member of this team, you will play a key role in shaping the company's security posture, working closely with product and engineering teams to design and implement secure solutions.

What You Will Do

  • Own and mature Sentry's security review program, including secure code review, architecture review, and threat modeling.
  • Develop and implement processes and tooling to support security reviews, ensuring that security is integrated into every stage of the product development lifecycle.
  • Influence mature vulnerability management practices, including intake, triage, prioritization, remediation tracking, and management of the bug bounty and responsible disclosure program.
  • Partner with product and engineering teams to embed secure-by-design principles into the development lifecycle, integrating security tooling into developer and CI/CD workflows.
  • Validate and reproduce application and infrastructure security findings, including scanning, manual testing, and coordinating penetration testing and vulnerability validation.
  • Evaluate and respond to emerging threats relevant to application security, working closely with cross-functional teams to develop and implement effective countermeasures.
  • Collaborate with the engineering team to develop and implement automated security testing and monitoring solutions.
  • Provide training and guidance to junior security engineers, helping to develop their skills and expertise.
  • Stay up-to-date with the latest security trends and technologies, applying this knowledge to continuously improve Sentry's security posture.

What We Are Looking For

  • 5+ years of industry experience in a security engineering role, with a focus on application and platform security.
  • Proven track record of developing and implementing effective security strategies, including security reviews and vulnerability management.
  • Strong understanding of secure coding practices, including secure design patterns and principles.
  • Experience with security testing and monitoring tools, including static analysis and penetration testing.
  • Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams.
  • Strong problem-solving skills, with the ability to analyze complex security issues and develop effective solutions.
  • Experience with cloud-based infrastructure and agile development methodologies.
  • Familiarity with bug bounty and responsible disclosure programs.
  • Strong understanding of security frameworks and compliance requirements.

Nice to Have

  • Experience with artificial intelligence and machine learning-based security solutions.
  • Knowledge of containerization and orchestration technologies, such as Docker and Kubernetes.
  • Familiarity with programming languages, including Python and Java.
  • Experience with security information and event management (SIEM) systems.
  • Certification in a security-related field, such as CISSP or CEH.

Benefits and Perks

  • Competitive salary and equity package.
  • Comprehensive health, dental, and vision insurance.
  • Flexible working arrangements, including remote work options.
  • Generous PTO and holiday package.
  • Professional development opportunities, including training and conference attendance.
  • Access to the latest security tools and technologies.
  • Collaborative and dynamic work environment.
  • Recognition and reward programs for outstanding performance.

How to Stand Out

  • Develop a strong understanding of the company's security posture and the role you will play in it.
  • Be prepared to provide specific examples of your experience with security reviews and vulnerability management.
  • Show a willingness to learn and adapt to new technologies and methodologies.
  • Highlight your ability to work effectively in a cross-functional team environment.
  • Prepare to discuss your approach to secure coding practices and your experience with security testing and monitoring tools.
  • Research the company's products and services to understand the security challenges they face and how you can contribute to addressing them.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.