Lead Engineer, Security Assurance
Description For Lead Engineer, Security Assurance
EQ Bank is seeking a Lead Engineer, Security Assurance to join their Information Security team in a hybrid role based in Toronto. This crucial position involves leading the organization's security testing and assurance initiatives, managing the implementation of security solutions, and ensuring the protection of the bank's digital assets.
The role requires a seasoned professional with 5+ years of experience in information security, combining technical expertise with leadership capabilities. You'll be responsible for managing security tools, identifying vulnerabilities, and providing recommendations for remediation, while also leading automation efforts and implementing robust security processes.
As the Lead Engineer, you'll work with cutting-edge security testing tools including DAST, SAST, Mobile DAST, and API Security tools. You'll be instrumental in designing and implementing security solutions for vulnerability management and application security, while managing the organization's attack surface and risk profile.
The ideal candidate should possess strong technical skills, including experience with programming languages like Python, and have a deep understanding of cloud environments. Knowledge of security frameworks such as PCI DSS, MITRE ATT&CK, and ISO 27K series is highly valued. Professional certifications such as CISSP or CISM are preferred.
Working at EQ Bank offers the opportunity to impact the security posture of a leading digital banking institution. You'll collaborate with cross-functional teams, lead security initiatives, and play a crucial role in protecting both the organization and its customers. The hybrid work environment provides flexibility while maintaining team connectivity.
This position reports to the Manager of Enterprise Security Assurance & Testing, offering both autonomy and the opportunity to make significant decisions within your domain. Your work will directly influence the bank's security strategy and contribute to maintaining its reputation for secure, reliable financial services.
For security professionals seeking a leadership role in financial technology, this position offers the perfect blend of technical challenges, leadership opportunities, and the chance to work with modern security tools and frameworks in a dynamic banking environment.
Responsibilities For Lead Engineer, Security Assurance
- Lead and provide security testing using tools such as DAST, SAST, Mobile DAST, SCA, RASP, EASM & API Security
- Design, implement and operate security solutions for vulnerability management, infrastructure & application security
- Manage the attack surface by identifying, prioritizing, and mitigating potential threats and vulnerabilities
- Build and manage relationships with stakeholders across the organization
- Implement and manage configuration management tools and processes
- Keep up-to-date with the latest security threats and vulnerabilities
- Evaluate and implement new tools and technologies
- Develop and maintain technical documentation
Requirements For Lead Engineer, Security Assurance
- College diploma or university degree (Bachelor of Computer Science preferred)
- 5+ years of experience in information technology/information security
- Proven expertise in deploying and operating security infrastructure solutions
- Experience in scripting or programming languages (Python, Ruby, or PowerShell)
- Experience in cloud environments
- Excellent analytical and problem-solving skills
- Strong verbal and written communication skills
- Preferred certifications: CCSP, CCSK, CISM, CISSP, or CRISC
- Understanding of PCI DSS, MITRE ATT&CK, BSIMM, NIST, ISO 27K series
- Experience in banking or financial services environment is an asset
- Understanding of DevSecOps approaches
- Understanding of Vulnerability Management, Risk Acceptance and IT practices
Jobs Related To EQ Bank Lead Engineer, Security Assurance
