Title: Jr. Product Security Technical Expert

Location: Ottawa/Kanata Ontario

Duration: Permanent FT, 3x days a week on-site

Qualifications & Skills

Education & Experience

• Bachelor’s degree in computer science, Information Security, or a related field.
• Experience in security‑related roles such as security analyst, security engineer, or security consultant.
• Experience with Secure-SDLC (the full lifecycle from concept/planning to post-GA)
• Requires experience overseeing and embedding security across the full Software Development Life Cycle (SDLC).
• Defining where security is required at each stage and ensuring appropriate controls and activities are applied.
• Security Testing & Threat Modeling
• Experience leading and executing security activities such as CVE risk analysis, threat modeling, security reviews, and release readiness assurance.
• Knowledge of threat modeling methodologies such as STRIDE, OCTAVE, PASTA, VAST, and Attack Trees.

Security Knowledge

• Strong understanding of security frameworks, standards, and best practices (ISO 27001, NIST, CIS, OWASP).
• Knowledge of:
• PKI / X.509
• Identity Management
• Centralized authentication (RADIUS, LDAP, TACACS+, SAML, OAuth, OpenID)
• Experience with Linux and OS hardening.
• Familiarity with virtualized and cloud‑based architectures, including:
• VNF / CNF
• DevOps / DevSecOps
• Public cloud environments

Communication & Collaboration

• Excellent written and verbal communication skills.
• Ability to explain complex security concepts to both technical and non‑technical audiences.
• Ability to work independently while collaborating effectively with global cross‑functional teams.

Certifications (Preferred)

• CISSP, CISM, CEH, OSCP, or similar security certifications.