Apply on Kit Job: kitjob.ca/job/2fshut

Who we are For over 25 years, Global Relay has set the standard in enterprise information archiving with industry‑leading cloud archiving, surveillance, eDiscovery, and analytics solutions. We securely capture and preserve the communications data of the world’s most highly regulated firms, giving them greater visibility and control over their information and ensuring compliance with stringent regulations.We believe great businesses thrive on diversity, inclusion, and the contributions of all employees. To that end, we recruit candidates from different backgrounds and foster a work environment that encourages employees to collaborate and learn from each other, completely free of barriers.Your role The Application & Product Security Principal is responsible for leading the DevSecOps areas of application security, application vulnerability scanning and other daily security and compliance efforts. This role is positioned between software engineering, security and operations, driving the integration of robust security practices into every stage of the software development lifecycle. As a senior member of the Application & Product team you will input into strategy, standards and partner closely with engineering, platform and product teams to ensure security is built‑in and aligned with business objectives. You will champion a proactive, risk‑based approach to security, embedding automated controls, secure design principles and continuous assurance into the development pipelines.Your responsibilitiesExtensive experience in Application Security, Product Security or DevSecOps rolesDeep understanding of secure software development practices, including threat modeling, secure coding and vulnerability managementServe as the liaison for deployment of DevSecOps standards and input into new standards or policiesEmbed security and DevSecOps practices throughout the organization, within SDLC and support an automated continuous integration (CI) and continuous delivery (CD) systemWork with APIs and plugins to integrate security tools into established CI/CD pipelines using agile delivery methodologyPartner with developers and engineering teams to prevent vulnerabilities and shift‑left security testing in the SDLCFocus on automation to aid in efficiencies with both testing and developmentProvide hands‑on technical expertise and support in general DevSecOps tasksReview and analyze vulnerability data to identify security risks to the organization's network,



infrastructure, and applications, and effectively address false positivesInvestigate security issues in order to determine specific steps for reproduction and scope of vulnerabilities and risksProvide encouragement to team members, including identifying areas for additional training or skills developmentMentor less experienced members of the team to help build a strong culture, improve security efficacy, and oversee team member work for quality and guideline complianceCreate security documentation and developer training materialImprove test case documentation and groupingAct as the senior subject matter expert for Global Relay software security testing related to the CI/CD pipelineLead the selection, deployment, and management of appropriate scanning tools for security testing in the CI/CD pipelineDevelop competency in the OWASP Top 10 and derive new test methodologies based on Global Relay applicationsWork with Application and Product Security Team Lead to identify areas where security test coverage is lacking, and work to improve the security test coverageProvide suggestions on improvements and see these through to completionAbout you8+ years of application security and operations experience and expert knowledge of software securityExperience with at least one of each of the following:OWASP, Mitre, NIST SP800‑115SAST, DAST, SCAPython, Java, Bash, PowerShellPuppet, Ansible, Git repositories, Jenkins, Docker/Podman, CI/CD technologiesContainer - OpenShift / KubernetesAPI securityWorking with Security, Developers, DevOps, and Engineering teams in a dynamic environmentSecure development, coding, and engineering practicesExperience with the following would be an asset:AI tools / Machine learningISO 27000, SOC 2, GDPR and other security and privacy standardsCISM, CISSP, OSCP, or other relevant security certificationsNetworking technologies, particularly with OSI layers and TCP/IPWeb‑based protocols, including cookie management, encrypted traffic, TLS, HTTPS, HSTS, and webhooksSecurity tools such as firewalls, IDS/IPS, anti‑virus, anti‑spam,



and server and network device hardeningEncryption protocols and methodologiesAbility to work under broad supervision with little instructionAbility to communicate effectively, in both written and verbal forms, with technical and non‑technical cross‑functional teamsAbility to communicate diplomatically and effectively at all levels of the organization with all classifications, including the very technicalProven competence using MS Office and other desktop applicationsMethodical and creative approach to problem‑solvingExcellent verbal and written communication skillsStrong attention to detail and follow‑upCompensation Global Relay advertises the pay range for this role in compliance with British Columbia’s pay transparency laws. Individual pay rates are determined by evaluating factors such as expertise, skills, education, and professional background. The range below reflects the expected annual base salary, which is only one element of our comprehensive total rewards package designed to reflect our company pay philosophy, culture and values. We aim to foster an inspiring work environment and support employees' work‑life rhythms. We provide a comprehensive extended health benefits program, including virtual healthcare and a wellness allowance. Employees also receive annual allotted vacation days, which increase based on tenure. Other benefits include paid sick days, maternity/parental enhancement program, bonus, and an RRSP contribution matching program. For Vancouver‑based employees, we provide a subsidized meal program courtesy of our talented in‑house culinary team.British Columbia - Base salary range: $125,000 CAD – $160,000 CADWhat you can expect At Global Relay, there’s no ceiling to what you can achieve. It’s the land of prospect for the energetic, the intelligent, and the driven. You’ll receive the mentoring, coaching, and support you need to reach your career goals. You’ll be part of a culture that breeds creativity and rewards perseverance and hard work. And you’ll be working alongside smart, talented individuals from diverse backgrounds, with complementary knowledge and skills.Global Relay is an equal‑opportunity employer committed to diversity, equity, and inclusion.We seek to ensure reasonable adjustments, accommodations, and personal time are tailored to meet the unique needs of every individual.#J-18808-Ljbffr

Apply on Kit Job: kitjob.ca/job/2fshut

📌 Application & Product Security Principal (Vancouver)
🏢 Global Relay
📍 Vancouver