Security Analyst

Toronto, Ontario, Canada - Remote

Applications have closed

Aviso Wealth

Aviso powers businesses that empower investors. Learn more about Aviso’s comprehensive range of investment and wealth management solutions.

View company page

Aviso Wealth:

At Aviso Wealth, we are dedicated to improving the financial well-being of Canadians. As a leading wealth management organization, we are committed to service, partnership, and innovation. Working with talented and energetic professionals who exemplify our values every day, you will quickly notice that our people and dynamic culture sets Aviso Wealth apart. If you are looking for interesting and challenging work, at a company committed to its people, find out more about what Aviso Wealth has to offer at www.aviso.ca.

The Opportunity:

We’re looking for a Security Analyst to join or Information Security team.

Reporting to the Senior Manager of Information Security, the Security Analyst is responsible for ensuring the security of Aviso at every level of the stack. You will be setting security controls and design requirements during the feature design & development stage of the software lifecycle. You will also help ensure that security across all aspects of the software is uniform by setting up checkpoints and reviews.


Who you are:

  • Service – You consider both internal and external stakeholders and demonstrate intent of understanding and putting the clients’ needs first. You advocate service excellence and work to deliver solutions that meet the needs. You proactively develop strategic partnerships that allow Aviso Wealth to become a trusted advisor and partner
  • Execution – You are committed to achieving your goals and to succeed. This includes focusing on “getting things done”, as well as recognizing and taking advantage of opportunities as they arise. You are consistently looking for ways to improve your personal best and see value in continuous improvement. You take accountability for your actions and learn from mistakes
  • Collaboration – You work collaboratively with others with the common goal of driving positive results. Making meaningful contributions to your team to achieve organizational goals is a priority. You proactively encourage collaboration, build trust and inclusion, and work to establish effective relationships both inside and outside of the organization

What your day looks like:

  • Security assessments through code reviews, automation and security audits
  • Implementing security controls and checkpoints to detect and prevent security issues early in cycle
  • Work with engineering and product teams in the design phase of products and features, conducting threat modeling and security architecture, design
  • Implement various types of scanning (SAST, SCA, DAST, etc.) in our CI/CD pipelines and ensure results are appropriately surfaced to developers
  • Work with the product management teams to prioritize fixes for vulnerabilities and work with engineering teams to understand how to fix these issues
  • Design tooling and frameworks to make adoption of security best practices easier for developers when working in our code bases
  • Assist in the creation and maintenance of security training

Requirements

Your experience and skills:

  • College diploma or university degree in Computer Science or related field
  • You have 4+ years of experience working on a security team supporting product/engineering functions, cloud infrastructure, and corporate infrastructure development
  • Demonstrate an in-depth knowledge of a broad range of hardware and software products; IIS, .NET/Java, and SDLC concepts & tools such as Azure DevOps, Ansible, Jenkins, Git, etc.
  • Proven experience in the application security domain with secure development practices
  • Hands on Threat modeling, security risk assessment experience is a plus
  • Experience automating application security testing tools and secure DevOps practices
  • Knowledge of penetration testing procedures with industry standard toolsets
  • Basic understanding of CI/CD pipelines
  • Knowledge of OWASP security principles
  • Experience with Application Security Testing tools like Burp Suite
  • Excellent communication and articulation skills
  • Highly motivated self-starter
  • Strong time management and organizational skills; ability to multi-task and manage competing priorities
  • Experience in the financial industry an asset
  • Fluent Communication skills in English are required and bilingual communication skills in French are an asset

Benefits

Why Aviso Wealth?

At Aviso Wealth, you will find a dynamic and inclusive culture that rewards innovation and celebrates success.
Here are a few things that set us apart:

  • Competitive compensation package that rewards and recognizes individual contributions
  • Excellent health, dental and insurance benefits to meet the diverse needs of our employees
  • Generous vacation time, fitness benefit, parental leave top-up options
  • Matching contributions to our retirement program
  • Commitment to the continuous improvement of our staff through learning & development and an education assistance program
  • Regular social events to foster teamwork

Equal Employment Opportunity

Aviso Wealth welcomes and encourages applications from all qualified individuals including persons with disabilities. If you require an accommodation, we will work with you to meet your needs in all stages of the hiring process.

We thank all applicants for their interest, however, only those selected for further consideration will be contacted.

No recruiters or agencies, please.

Company Overview:

Aviso Wealth is a national, integrated financial services company, with over $100 billion in assets under administration and management. Aviso Wealth is owned by Credit Union Centrals, The Co-operators / CUMIS and Desjardins. Our MFDA-regulated dealer, full-service IIROC-regulated brokerage, and insurance dealer support thousands of financial advisors at credit unions across Canada. Our award-winning online brokerage, Qtrade Direct Investing, and our digital advice platform, VirtualWealth, give Canadians flexible choices for building their wealth. Our asset manager, NEI Investments, is a Canadian leader in Responsible Investment funds and portfolios, which are available through a national network of advisors. Aviso Wealth also provides custodial services and introducing broker services to independent financial organizations, including banks, trust companies, insurance companies, investment dealers, portfolio managers and financial planning firms. We have operations in Toronto, Vancouver, and Montreal with a regional office in Winnipeg. More information about Aviso Wealth is available at www.aviso.ca.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Ansible Application security Audits Automation Azure Burp Suite CI/CD Cloud Computer Science DAST DevOps Java OWASP Pentesting Risk assessment SAST SDLC Security assessment Vulnerabilities

Perks/benefits: Career development Competitive pay Flex hours Flex vacation Health care Parental leave Startup environment Team events

Regions: Remote/Anywhere North America
Country: Canada
Job stats:  43  4  0
Category: Analyst Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.