Engineering Manager, Application Security
Toronto, Ontario
Relay Financial
Relay (Relay Financial), is an all-in-one business banking and money management platform helping businesses understand what they're earning, spending & saving.Relay is entering an exciting new chapter of growth and we’re looking for an Engineering Manager, Application Security to join our Trust team. Your love of making high-impact decisions daily and desire to help shape the future of Relay is going to be crucial. The team’s vision is “Protecting the cathedral while enabling the bazaar” - quite a challenge in a fintech business. This is an opportunity to get in at ground level and help evolve our security posture as we grow.
Our Engineering Manager, Application Security will be required to work from our downtown Toronto office (2-days per week).
What You'll Be Doing
- Take ownership of our vulnerability disclosure program (partnership with HackerOne)
- Collaborate with our compliance team to define and implement security best practices and processes to align on SLO/SLA for prioritized risks.
- Evaluate and recommend new technology solutions that will improve efficiency and productivity of our secure development lifecycle, including a ‘shift-left’ movement and secure deployment pipeline.
- Provide application security support to the engineering teams through technical design and code reviews
- Be an advocate for all things AppSec and Security at Relay. Tell us how you would reduce risk!
Who You Are
- You have 5+ years of experience in Application Security engineering, developing and implementing changes. We are looking for builders: incremental changes or major initiatives.
- You're familiar with our tech stack: Node.js, GitHub (repositories and actions), AWS, Datadog ASM, HackerOne.
- You have done some presentations about security subjects/participated in CTFs
- You have leadership and/or mentorship experience in growing a technical team
- You're automation-driven. Think small teams, high impact: tell us how to leverage systems to accelerate our velocity.
- You're an owner. You will be responsible for core systems upon which the organization depends on.
- You're curious. The AppSec and security landscape isn’t static, and neither should you be!
- You're a team player. Our team is small and mighty, and we collaborate constantly - we want someone who is always willing to pitch in and isn’t afraid to ask for help.
Bonus Points
- Show us your home lab! We have Ubiquity gears everywhere and we like to geek-out on our k8s clusters that control in-house experience. Show us CVE, conference talks, etc.
- You’ve joined a company at its early stages and have seen it through scale
- You have experience working in a fintech startup
Research shows that women-identifying and other marginalized individuals tend to only apply when they meet 100% of the qualifications; if you don't have all the listed qualifications, we encourage you to apply anyway!
Our Commitment To You
- Competitive salary and meaningful equity: every team member gets a piece of the pie.
- Comprehensive health benefits: we offer full health benefits + an HSA/WSA starting from day 1 so you get the coverage you need.
- Considerable vacation/end-of-year holiday shutdown: we take time off to reset and recharge so we come back better for our customers.
- Hybrid work environment: we love collaborating and connecting in the office two times a week and offer catered lunches and a snack/beverage program for the days we’re in office. Don’t forget to bring in your furry friends!
- Personal and professional growth: support from leaders who care about your growth and success through regular feedback and coaching. Our goal is to make Relay a step-change career opportunity.
- Top-tier equipment: we’ll make sure you have everything you need to produce your best work.
- Team-first culture: we’re passionate about working collaboratively, bonding through team events, and most importantly having fun.
The Interview Process
- Stage 1: A 30-minute Google Meets video call with a member of the Talent Team
- Stage 2: A 45-minute Google Meets video call with the Senior Engineering Manager, Trust
- Stage 3: A 45-minute case study presentation with members of the Trust team
- Stage 4: A 45-minute Google Meets video call with a member of the executive team at Relay Financial
We will work with applicants to provide accommodations at any stage of the hiring process. If you require accommodations during the interview process, please email your People Team contact, and we will work with you to meet your needs.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security ASM Automation AWS Banking Compliance Finance FinTech GitHub Kubernetes Node.js
Perks/benefits: Career development Competitive pay Equity Flex vacation Gear Health care Lunch / meals Salary bonus Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs