Web Application Protection Manager

🕒 April 25

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Intact

WebsiteLinkedInAll Job Openings

10,000+ employees

👥 HR Tech

Insurance • HR Tech

Intact is a company that offers a wide range of career opportunities across various domains such as sales, customer service, claims, technology, underwriting, actuarial, finance, legal, marketing, administration, operations, and human resources. It is committed to fostering a diverse and inclusive workplace where employees can thrive, make a difference, and grow their skills. Intact provides financial rewards, wellness benefits, and professional development opportunities to support its employees. The company emphasizes the importance of teamwork, innovation, and a transformative approach to insurance and related fields.

📋 Description

• Lead and develop a high-performing team responsible for WAF operations and API security • Define the roadmap for web and API security and control enhancements • Act as a trusted advisor on secure web and API design patterns and governance • Own the operational effectiveness of WAF and API Security Tools • Partner with Network Security to strengthen the security of external connections • Implement and operate API security monitoring for external and internal services • Partner with API platform owners to define guardrails • Build threat intelligence feedback loops • Work with Risk/Compliance to meet financial services regulatory expectations • Develop standards and playbooks for WAF and API policies • Participate in incident response for application-layer events • Evaluate new capabilities; lead POCs and onboarding to close coverage gaps • Define and track KPIs and KRIs to demonstrate control effectiveness

🎯 Requirements

• Bachelor’s degree in computer science or equivalent education and experience • Minimum of ten (10) years in information technology, including at least three (3) years managing technical teams in Security • Minimum of three (3) years of hands-on experience with WAF and API security in large enterprise environments • Strong understanding of: Web security controls, API security principles, Threat modeling for web/API threats • Initiative, creativity, and autonomy • Excellent communication skills with the ability to influence senior stakeholders • Strong ethical principles and understanding of business and information security ethics • One of these certifications would be a considerable asset: CISSP, CISA, CISM, CGEIT, CRISC, GSEC, GISP • French is an asset - For candidates located in Quebec, bilingualism is required.

🏖️ Benefits

• Flexible work arrangements and a hybrid work model • Possibility to purchase up to 5 extra days off per year • Multiple benefits offered to support physical and mental wellbeing, including telemedicine • Wellness account and much more • Share plan & other savings: up to 12% of salary or even more