Application Security, Lead

Who We Are:

Every transaction matters. Every Canadian matters. At Interac we protect both driving trust security and inclusion so our digital economy thrives.

Founded in 1984 Interac connects Canadians through secure digital payments advanced identity verification and industry-leading fraud protection. Connecting banks businesses and individuals Interac enables millions to send receive and manage money safely and effortlessly every day across both digital and physical environments.

As the backbone of Canadas financial ecosystem Interac facilitates over 20 million transactions daily supported by trusted partnerships with government and financial institutions. Consistently ranked as Canadas most reputable financial technology brand Interac is deeply embedded in the daily lives of Canadians.

Who You Will Work With:

We are currently recruiting for a vacant Application Security Lead to be part of our Threat & Vulnerability Management team within Cybersecurity. Reporting to our Leader Threat & Vulnerability Management this role will lead the Application Security practice and work with cross functional teams to ensure products and applications are built securely.

What You Will Do:

• Lead application security practice at Interac in alignment with product and business objectives.

• Build and maintain a comprehensive application security strategy to identify and mitigate product vulnerabilities.

• Work alongside and educate product development teams as the subject matter expert in application security to design secure products to protect Interacs customers.

• Integrate application security tools into DevSecOps practice reducing development friction and vulnerabilities in production

• Integrate application security processes throughout the Secure Software Development Life Cycle (SSDLC).

• Perform threat modelling on new systems products and features and facilitate secure architecture and design discussions.

• Develop and implement code reviews and automated security testing processes to monitor compliance to secure coding standards.

• Develop and report on actionable KPIs and KRIs against application security policies and standards

• Collaborate with other cybersecurity functions such as IR VM and Cloud Security as needed to mitigate application security risk.

• Continuously improve application security technology by staying up-to-date with latest trends and advancements

• Clearly communicate with both technical and non-technical stakeholders ensuring transparency and understanding of security measures.

• Demonstrate proficiency in programming languages commonly used in application development.

What You Bring:

• 5-7 years of experience in Application Security or related fields

• Post-Secondary degree or diploma in Engineering Programming/Systems Computer Science or other related discipline.

• Eligibility to work for Interac Canada in a Full Time Capacity.

• Outcomes driven the ability to figure-it-out to reach the desired outcome

• Strong sense of personal responsibility and accountability for delivering high quality work both personally and at a team level.

• Ability to communicate effectively to both technical and non-technical stakeholders

• Ability to work autonomously with attention to detail.

• An understanding of technical conceptsand are an avid learner of new technology.

Technical Skills:

• Expertise in DevSecOps practices and SSDLC frameworks

• Experience with threat modelling design reviews and risk analysis

• Strong understanding of security risks threats and vulnerabilities

• In-depth knowledge of authentication authorization network security vulnerability exploitation and vulnerability remediation.

• Experience with SAST/DAST/SCA tools such as Veracode SonarQube Snyk or Burp Suite

• Experience with overseeing or conducting application penetration tests

• Proficiency in common programming languages used within application development such as Java JavaScript or Python

• Knowledge of security industry standards and best practices such as OWASP ISO 27001/2 NIST

• Cybersecurity certificates such as CISSP CSSLP OSCP

What Were Offering:

The hiring range for this position is $120K-$140K and you will also be eligible for our short-term incentive plan. The exact amount will depend on factors such as skills experience and job-related knowledge but Interacs commitment goes beyond compensation. Our Total Rewards package is designed to support your well-being and future and includes:

• Generous vacation and wellness days to help you recharge

• Comprehensive employer-paid benefits coverage for peace of mind

• Market-leading employer-funded RRSP program to invest in your future

• Flexible hybrid work model for better work-life balance

• Access to a free and confidential 24/7 employee & family assistance program to offer support for you and your immediate family

• Pregnancy and parental leave top-up to support growing families

• Charitable donation matching with United Way to amplify your impact

Why Join Us

At Interac the impact we make and the people who drive it is profound. When you become part of our team youre joining a purpose-driven organization thats shaping the future of digital finance in Canada. Heres what you can expect:

• Investing in the Future Help us unlock digital prosperity for all Canadians.

• Innovative Thinking Collaborate on products practices and platforms that redefine whats possible.

• Inclusive Culture Be empowered to bring your whole self to work and realize your full potential.

• Inspiring Community Work in an ecosystem where we lift each other up and rise together.

• Intentional Support Enjoy flexible supportive offerings that prioritize your total wellness.

Additional Pre-Employment Requirements:

To ensure the integrity of our organization successful candidates will be required to complete background checks which may include Canadian Criminal Credit Check Canadian ID Cross-Check Public Safety Verification 5-year Employment Verification Education Verification Credit Check and Social Media Check.

Equal Opportunity Employer

Interac is also an equal opportunity employer committed to fostering a diverse and inclusive workplace. We believe that innovation thrives when people from different backgrounds experiences and perspectives come together. Thats why we are committed to providing fair and equitable employment opportunities for all individuals without discrimination based on race color ancestry ethnic origin place of origin citizenship creed sex sexual orientation gender identity or expression age marital or family status disability or any other characteristic protected by applicable law.

If you require accommodation during any stage of the application or recruitment process please contact us at We will work with you to meet your needs.

Please be aware that certain individuals are misusing Interac Corp.s name and logo to promote fictitious employment opportunities. Interac Corp. never requests solicits or accepts any form of payment in exchange for employment. Any such offers are fraudulent and should be disregarded. Interac Corp. assumes no liability for any claims losses damages expenses or inconveniences arising from or related to these fraudulent activities. Such communications do not constitute an offer or representation by Interac Corp. or its subsidiaries and affiliates.