We are looking for a Senior Developer to start a new security initiative at Quest. This new group will be part of a gated check-in and build process for a number of products in Quest. This new position is for someone that has very good experience in code reviews, specifically with a focus on security. They will also have good experience with bringing up build systems, as they will need to establish a controlled build environment.
Conduct security related application and code testing for all systems and applications, and open source dependencies, providing analysis and risk assessments for vulnerabilities discovered
Utilize code analysis tools to assess the quality and security of source code
Define secure coding standards and develop secure coding training for current and future developers
Conduct code reviews for all code changes for a given application release, providing both a detailed risk analysis of the security posture of the code and technical programming solutions (secure coding standards) to the developers to mitigate insecure code from being implemented.
Prepare mirrored build systems to allow isolated build environments.
This position requires a candidate with Canadian Citizenship with a minimum enhanced reliability security clearance.
7 years of experience in performing software development
3 years of experience performing security code reviews
Experience with AngularJS and NodeJS would be an asset.
Some experience with Azure and/or AWS would also be an asset.
Knowledge of build automation and continuous integration systems such as MS Build and Jenkins
Knowledge of the latest security threats, techniques and exploits targeting vulnerabilities