Application Security Lead

The Application Security Lead is responsible for integrating, optimizing, and managing security tools within the DevSecOps pipeline. The role will triage application security findings, drive remediation efforts, automate security processes, and oversee source code repositories. This position also leads AI-driven initiatives in application security and quality assurance, ensuring that security is embedded throughout the software development lifecycle. The role provides hands-on leadership across security tool integration, process automation, and strategic AI projects. KEY RESPONSIBILITIES Integrate and optimize application security tools including SAST, SCA, DAST, and secret monitoring within the DevSecOps pipeline. Triage and manage application security findings, driving remediation efforts. Troubleshoot and enhance the performance of security tools. Automate security processes to improve operational efficiency. Manage and maintain source code repositories, with emphasis on security and best practices. Lead AI-driven initiatives in application security and quality assurance. Stay current on cybersecurity threats, trends, and best practices. Collaborate across diverse environments, engineering, and DevSecOps teams to ensure security is embedded in development processes. REQUIRED QUALIFICATIONS Bachelor’s degree in Information Systems, Computer Science, or related field (or equivalent experience). Minimum 5 years of experience in cybersecurity, information security, or vulnerability assessment. Expertise in application security, particularly with SAST, DAST, and SCA tools. Hands-on experience with DevSecOps tools and processes. Proficiency in scripting languages for automation (e.g., Python, Bash). Experience managing and securing source code repositories. Demonstrated leadership in AI initiatives within security or QA. Ability to work effectively across diverse teams and global locations. PREFERRED QUALIFICATIONS CISSP – Certified Information Systems Security Professional CISM – Certified Information Security Manager Experience with secret monitoring tools Familiarity with cloud-native security practices YEARS OF EXPERIENCE Minimum 5 years in cybersecurity, information security, or vulnerability assessment J-18808-Ljbffr

Location: Toronto, Ontario, CA

Posted Date: 10/13/2025