Career Opportunities Contact Us Français Italiano
Home Services Solutions Profile
In order to meet the growing needs of our customers, we are constantly searching for dynamic, qualified individuals to join the CTC resource team. Currently, there are several career opportunities available at CTC. If you feel you satisfy the qualifications for one of the positions listed on this page, please send your CV to resources@ctcinc.ca identifying the position(s) you are interested in. Qualified individuals will be contacted by our human resources department.
CTC006004 : Technical Specialist - AppSec Community manager
Location : Montreal, Quebec
Field : Technical Specialist
Position Type : Contract
Starting : June 14, 2021
Ending : June 13, 2022
Resources Required : 1
Position Description

IMPORTANT

Top 3 skills needed

  • Self organize project/program manager
  • Great communicator with a strong sense of community and able to bring people together
  • Application Security knowledge and experience enabling relationship with developers

Since it is remote during Covid, are you open to receiving people from Toronto, Ottawa , Maritimes etc. ? Montréal, Ottawa or Toronto are OK as long as ready to work from office after COVID

Bilingual? Is a must

1. Will this person be responsible for managing people? No2. Will this person be specifically managing the Checkmarx Codebashing training platform? Yes3. Will this person be responsible for developing training? Yes4. Has client had someone work in this role before? If so, what did they call themselves? No, this is a new role.

The Technical Specialist - AppSec Community Manager will be part of the Secure-SDLC team and presented with a blank canvas to develop a Community of software developers acting as AppSec Champions in their respective teams. This person will have a strong understanding of Software Development with a focus on Application Security while talented in bringing people together with a strong sense of community. You will be familiar with the setup, administration and management of an interactive AppSec training platform.

Role

  • Develop and manage a community of Application Security Champions using a game-like interactive training platform
  • Administer and manage the AppSec training platform (Codebashing by Checkmarx)
  • Cultivate engagement by being a creative facilitator ensuring the community is vibrant via value added experiences
  • Engage the software developer community promoting Application Security channelling cross-pollinating ideas
  • Plan, organize and facilitate events and activities creating positive and valuable interactions for community members

Requirements

  • Bachelor’s degree in Computer Science, or a related field or equivalent
  • 2+ years of relevant, engineering experience in a large enterprise environment
  • 2+ years experience as a Security Champion/AppSec Leader in a Secure-SDLC/DevSecOps context
  • 2+ years experience using an interactive AppSec training platform
  • Familiar with DevOps Pipeline CI/CD implementation tools (Gitlab, Github, Jenkins, Artifactory, Nexus, etc.)
  • Familiar with Application Security tools implementation and integration in a CI/CD Pipeline (SAST/DAST/IAST/SCA: Jfrog X-ray, Checkmarkx, SonarQube, etc.).
  • Knowledge of Application Security standards and remediation techniques (OWASP, CWE, STRIDE, etc.)
  • Ability to explain vulnerabilities and weaknesses and discuss effective defensive techniques
  • Knowledge of and experience working with Checkmarx Codebashing (a definite plus!)
  • Self starter who is comfortable getting going from scratch and being resourceful
  • Strategic thinker who is also willing to roll up your sleeves and get your hands dirty
  • Natural connector who can draw people in and get involved even if you aren’t an expert in the domain
  • Experience having grown or led a developer community
  • Knowledge of Agile, Kanban and Scrum methodologies
  • Knowledge of project management, collaboration and issue tracking tools (Confluence, Jira, Slack, etc.)
  • Intermediate user of Microsoft Office SuiteStrong verbal and written communication skills with demonstrated technical leadership