Skip to content
SecRoles

Lead Applications Security Engineer

JobgetherRemote (Canada)June 18, 2026
Remote
Full-time
Application Security
Management

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Lead Application Security Engineer based in Canada.

This role sits at the forefront of modern application and product security, shaping how secure-by-design principles are embedded across cloud, SaaS, and AI-driven systems. You will lead high-impact security initiatives that directly reduce risk across large-scale, distributed platforms used by global customers. The position combines deep technical ownership with cross-functional influence, requiring close collaboration with engineering, product, and platform teams. You will define security standards, drive threat modeling practices, and ensure security is built into every stage of the SDLC. A key part of the role involves securing emerging AI and GenAI systems while helping evolve internal AppSec practices toward an AI-first model. This is a high-visibility leadership role where your expertise will directly shape organizational security maturity and engineering culture. You will also mentor engineers and Security Champions, elevating security awareness across the broader organization.

Accountabilities:

Lead and evolve application security practices by embedding secure-by-design principles across engineering teams, products, and platforms in a fast-moving cloud and AI-native environment.

  • Lead threat modeling sessions for applications, APIs, microservices, and AI/LLM-enabled systems
  • Define and promote secure architecture patterns and conduct security design reviews across products and platforms
  • Own end-to-end application security initiatives and drive organization-wide risk reduction programs
  • Conduct security assessments for new features, cloud infrastructure, and GenAI/AI-driven capabilities
  • Implement, manage, and optimize AppSec tooling such as SAST, DAST, SCA, IAST, IaC scanning, and container security solutions
  • Establish security metrics, dashboards, and scalable processes to track and improve security posture
  • Influence engineering and product teams to adopt secure development practices across the SDLC
  • Drive internal standards for secure development and contribute to R&D-wide security governance
  • Mentor engineers and Security Champions while fostering a strong security-first engineering culture

Requirements:

7+ years of experience in Application Security, Product Security, or Secure Software Development, with proven leadership in securing complex, distributed systems and modern cloud-native architectures. Strong ability to translate technical risk into actionable engineering guidance and influence senior stakeholders.

  • Deep expertise in secure software design principles, including OWASP Top 10, OWASP ASVS, and modern AppSec frameworks
  • Proven experience leading threat modeling, architecture reviews, and risk assessments at scale
  • Hands-on expertise with AppSec tooling (SAST, DAST, SCA, IaC scanning, container and cloud security tools)
  • Strong understanding of cloud platforms such as AWS, Azure, or GCP and their security models
  • Experience securing SaaS platforms, distributed systems, and production-grade cloud-native environments
  • Knowledge of AI/GenAI security concepts, including LLM risks and secure AI system design practices
  • Demonstrated ability to influence engineering teams and leadership through risk-based decision-making
  • Strong communication skills, with the ability to simplify complex security concepts for technical and non-technical audiences
  • Experience driving security culture change and embedding security into SDLC workflows
  • Strong mentoring mindset with a passion for developing engineers and improving organizational maturity

Benefits:

  • Competitive base salary (CAD $60,000 – $211,000, depending on experience and level)
  • Variable incentive compensation and new hire equity grants
  • Remote-first work environment across Canada
  • Comprehensive health benefits including medical, dental, vision, mental health, and disability coverage
  • RRSP matching and retirement savings programs
  • Flexible time off, paid volunteer days, and parental leave support
  • Learning, training, and professional development programs
  • Equity participation for all employees
  • Home office support and employee wellness programs
  • Inclusive, collaborative, and globally distributed engineering culture.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1

Job Details

Salary

CA$60,000 – CA$211,000/yr (ca)

Experience

Management

Tools & Tech

AWS
Azure
GCP
Apply