Match score not available

Senior Engineering Manager, Application Security and Posture Management

Remote: 
Full Remote
Contract: 
Experience: 
Senior (5-10 years)
Work from: 

Offer summary

Qualifications:

5-7 years of experience in security or software development, At least 2 years in application security and management, Proven experience with security tooling or architecture or offensive security, Ability to write code at a senior developer level, Excellent leadership skills and a growth mindset.

Key responsabilities:

  • Develop and direct the Application Security program
  • Establish strong relationships with product engineering leaders
  • Collaborate effectively with other security teams
  • Assess and articulate risks and opportunities in the application security program
  • Create annual roadmap, budget, and headcount plan for the team
Wealthsimple logo
Wealthsimple Financial Services Large https://www.wealthsimple.com/
501 - 1000 Employees
See more Wealthsimple offers

Job description

Your career is an investment that grows over time!

Wealthsimple is on a mission to help everyone achieve financial freedom by reimagining what it means to manage your money. Using smart technology, we take financial services that are often confusing, opaque and expensive and make them transparent and low-cost for everyone. Weโ€™re the largest fintech company in Canada, with over 4 million users who trust us with more than $50 billion in assets.

Our teams ship often and make an impact with groundbreaking ideas. We're looking for talented people who keep it simple and value collaboration and humility as we continue to create inclusive and high-performing teams where people can be inspired to do their best work.


 


About the Application Security & Posture Management Team:
  • The team is currently growing and is expected to reach a size of 4 ICs and & EM by H1 2025
  • The team owns the security architecture, security tooling, and offensive security testing for our applications. We enable the business and help Wealthsimple win the trust of our clients driving net deposits, client acquisition, and more
  • Reporting to the Sr. Engineering Manager, Security Engineering as a part of the broader Security Engineering function with peers in IAM and Infrastructure Security

  • What you bring:
  • 5-7 years of experience in security or software development with at least 2 years in application security and management
  • Proven experience with at least 2 of the following domains: security tooling (e.g. SAST, DAST, SCA, etc), security architecture (e.g. threat modelling, secure code review, etc), or offensive security (e.g. bug bounty programs, pentesting, etc)
  • Ability to read and write code at a Sr. Developer level with a preference for experience with Ruby, Javascript, Java, and Python
  • Excellent leadership skills with a track record of being able to work closely with product and development teams while growing talent on the team
  • A history that demonstrates a maker-owner and growth mindset. You are always thinking and acting like a team player and coach

  • What you will do:
  • You will be responsible for developing, supporting, and setting the direction for the team and Application Security program so that we can enable the business by effectively scaling in this area
  • You will need to establish and maintain strong relationships with product engineering leaders across the organization becoming a trusted partner who is able to influence cross-functional decision making
  • You will need to collaborate effectively with other security teams acting as an escalation or subject matter expert as needed to address risks to the business

  • In the first 3 months our ideal candidate will have:
  • Completed their initial assessment of the application security program and team, and be able to articulate to the business key risks and opportunities
  • Reviewed and prioritized existing issues with the team and brought any cross-functional work to the appropriate betting tables to secure buy-in from stakeholders
  • Taken ownership of our vendor relationships specifically for our enterprise security testing tools, bug bounty program, and pentest program

  • In the first 6 months our ideal candidate will have:
  • Developed growth plans for the team based on existing needs including any training, conference, or sourcing budget that may be required
  • Established good working relationships with vulnerability management and our product teams through program and product reviews respectively and will have executed on 2-4 threat modelling or pentesting opportunities
  • Established what KPIs or SLAs define excellence on this team and established a strong operating cadence for their direct reports in concert with their peers and management team with at least a 4-month roadmap

  • In the first 12 months our ideal candidate will have:
  • Prepared their teams annual roadmap, budget, and headcount plan for the new year and got appropriate buy-in from their stakeholders
  • Reviewed their team's performance against stated objectives, evaluated control effectiveness, and highlighted and suggested changes to the program
  • Why Wealthsimple?
    ๐Ÿค‘ Competitive salary with top-tier health benefits and life insurance
    ๐Ÿ“ˆ Retirement savings matching plan using Wealthsimple Work
    ๐ŸŒด 20 vacation days per year and unlimited sick and mental health days
    ๐Ÿ“š Up to $1,500 per year towards wellness and professional development budgets respectively 
    ๐Ÿ›ซ 90 days away program: Employees can work internationally in eligible countries for up to 90 days per calendar year 
    ๐ŸŒŽ A wide variety of peer and company-led Employee Resource Groups (ie. Rainbow, Women of Wealthsimple, Black @ WS)
    ๐Ÿ’– Company-wide wellness days off scheduled throughout the year

    Weโ€™re a remote-first team, with over 1,000 employees coast to coast in North America. Be a part of our Canadian success story and help shape the financial future of millions โ€” join us!

    Read our Culture Manual and learn more about how we work.

    DEI Statement
    At Wealthsimple, we are building products for a diverse world and we need a diverse team to do that successfully. We strongly encourage applications from everyone regardless of race, religion, colour, national origin, gender, sexual orientation, age, marital status, or disability status. 

    Accessibility Statement
    Wealthsimple provides an accessible candidate experience. If you need any accommodations or adjustments throughout the interview process and beyond, please let us know, and we will work with you to provide the necessary support and make reasonable accommodations to facilitate your participation. We are continuously working to improve our accessibility practices and welcome any feedback or suggestions on how we can better accommodate candidates with accessibility needs.

    Required profile

    Experience

    Level of experience: Senior (5-10 years)
    Industry :
    Financial Services
    Spoken language(s):
    English
    Check out the description to know which languages are mandatory.

    Other Skills

    • Growth Mindedness
    • Coaching
    • Problem Solving
    • Collaboration
    • Leadership
    • Communication
    • Analytical Thinking

    Engineering Manager Related jobs