Certn
B2B • HR Tech • Compliance
Certn is a leading platform that specializes in providing comprehensive and efficient background checks for businesses worldwide. Designed to accommodate the dynamic needs of various industries, Certn offers tech-driven solutions that streamline the background check process, reducing time-to-hire by up to 80% and costs by up to 30%. With its innovative no-code, low-development technology, Certn conducts a range of checks including criminal record, identity, employment, and credential verifications across more than 200 countries and territories. By integrating seamlessly with existing systems through its API, Certn ensures a smooth and enhanced candidate experience, making it the preferred choice for businesses of all sizes in need of reliable, fast, and cost-effective screening solutions.
Application Security Engineer
Job not on LinkedIn
November 7
🇨🇦 Canada – Remote
💵 CA$106k - CA$132.5k / year
⏳ Contract/Temporary
🟢 Junior
🟡 Mid-level
💻 Application Engineer
Certn
B2B • HR Tech • Compliance
Certn is a leading platform that specializes in providing comprehensive and efficient background checks for businesses worldwide. Designed to accommodate the dynamic needs of various industries, Certn offers tech-driven solutions that streamline the background check process, reducing time-to-hire by up to 80% and costs by up to 30%. With its innovative no-code, low-development technology, Certn conducts a range of checks including criminal record, identity, employment, and credential verifications across more than 200 countries and territories. By integrating seamlessly with existing systems through its API, Certn ensures a smooth and enhanced candidate experience, making it the preferred choice for businesses of all sizes in need of reliable, fast, and cost-effective screening solutions.
📋 Description
• Embed security best practices throughout the software development lifecycle (SDLC) to ensure applications are designed and built with security in mind from the start. • Conduct secure code and architecture reviews to proactively identify and remediate vulnerabilities before they impact production. • Partner with engineering teams to create secure-by-design applications that protect sensitive applicant, client, and employee data while maintaining product performance and usability. • Identify, assess, and prioritize potential security risks to reduce Certn’s exposure to emerging threats and strengthen overall resilience. • Coordinate internal and third-party penetration testing to validate the effectiveness of security controls and ensure vulnerabilities are remediated promptly. • Maintain a structured vulnerability management process to ensure accountability, visibility, and measurable improvement in Certn’s security posture over time. • Implement and manage security tools (e.g., SAST, DAST, dependency scanning, secrets detection) to continuously monitor and safeguard Certn’s applications. • Integrate automated security checks into CI/CD pipelines to enable fast, secure releases without slowing development velocity. • Align application security practices with global and regional standards (e.g., SOC 2, ISO 27001, GDPR, PIPEDA) to meet client and regulatory expectations. • Support audit and compliance efforts by maintaining evidence of secure processes and demonstrating control effectiveness to external and internal stakeholders. • Participate in incident response for application-related issues to minimize impact, learn from events, and strengthen future defenses. • Partner with product, engineering, DevOps, and compliance teams to integrate security objectives seamlessly into business and development processes • Promote secure development practices through training, documentation, and coaching, fostering a culture where security is a shared responsibility.
🎯 Requirements
• Bachelor’s degree in Computer Science, Information Security, Software Engineering, or a related technical discipline; or an equivalent combination of education and practical experience. • Relevant post-secondary coursework or certifications in cybersecurity, secure software development, or cloud security are considered strong assets. • Strong understanding of secure coding principles, web application security, and common vulnerabilities (e.g., OWASP Top 10, SANS top 25). • Proficiency with application security testing tools such as SAST, DAST, SCA, and secrets-scanning platforms. • Working knowledge of authentication and authorization mechanisms, encryption, API security, and identity management. • Ability to interpret and communicate technical security risks to both technical and non-technical audiences. • Experience integrating security into CI/CD pipelines and using automation to improve security coverage. • Analytical thinking, problem-solving, and prioritization skills with strong attention to detail. • Collaborative mindset with the ability to partner effectively across engineering, product, DevOps, and compliance teams. • Demonstrated experience performing threat modeling, code review, and vulnerability remediation within agile development environments. • Hands-on experience with cloud-native architectures and security practices across AWS, Azure, or GCP environments. • Familiarity with security frameworks and compliance standards (e.g., SOC 2, ISO 27001, NIST, GDPR, PIPEDA). • Proven track record of improving security maturity within a fast-paced, product-focused organization.
🏖️ Benefits
• Competitive salary • commission structure • comprehensive health benefits • generous paid time off
Apply Now