Application Security Engineer / Penetration Tester

Description

What makes us Qlik?

A Gartner® Magic Quadrant™ Leader for 14 years in a row, Qlik transforms complex data landscapes into actionable insights, driving strategic business outcomes. Serving over 40,000 global customers, our portfolio leverages pervasive data quality and advanced AI/ML capabilities that lead to better decisions, faster.

We excel in integration and governance solutions that work with diverse data sources, and our real-time analytics uncover hidden patterns, empowering teams to address complex challenges and seize new opportunities.

We were also recognized as one of National Capital Region's 2024 Top Employers in Canada, read on to see why!

The Application Security Engineer / Penetration Tester

This position will be of interest if you are an experienced penetration tester with software engineering skills.

Join our Security team and take charge of delivering the status of features and products. Independently plan, execute, and thoroughly document Penetration Tests adhering to industry best practices.

Your role involves promoting and inspiring software security best practices, actively assisting stakeholders in developing features with security at the forefront, and creating comprehensive threat models for proposed features.

What makes this role interesting?

Autonomy and Impact: Work independently to plan and execute penetration tests, showcasing your expertise in identifying vulnerabilities and providing effective solutions.

Championing Security Best Practices: Inspire and promote software security best practices and guidelines, contributing to a culture of security awareness and excellence.

Collaborative Security Measures: Collaborate with stakeholders, assisting in the design, development, and testing of features with a strong focus on software security.

Proactive Threat Modelling: Produce threat models against proposed features, offering valuable insights and suggesting defensive countermeasures.

Here’s how you’ll be making an impact:

Vulnerability Resolution: Work with third parties to replicate reported security vulnerabilities, collaborating with R&D teams to develop and implement fixes.

Automated Vulnerability Assessment: Verify results from automated vulnerability assessment tools, ensuring accurate identification of vulnerabilities and minimizing false positives.

Manual Penetration Testing: Perform manual penetration tests using a combination of manual methods and automated tools to ensure a thorough security evaluation.

Developer Training: Coach and train developers on best security practices, creating and delivering engaging training content when necessary.

We’re looking for a teammate with:

• 3+ years of application penetration experience and software engineering skills, ideally with enterprise software/systems using languages such as C#, Java, Ruby, Go, Python, etc.
• Proven experience in creating detailed penetration test reports tailored for both company executives and developers, including prioritization and mitigation advice.
• Strong experience with the OWASP testing guide, showcasing your proficiency in understanding, and implementing industry-standard security practices.
• Familiarity with multiple web frameworks and technologies, including JavaScript, XML, SOAP, and JSON.

The location for this role is:

Canada - Ottawa

Apply now and help change how the world transforms complex data landscapes into actionable insights and turns complex data challenges into new opportunities!

More about Qlik and who we are:

Find out more about life at Qlik on social: Instagram, LinkedIn, YouTube, and X/Twitter, and to see all other opportunities to join us and our values, check out our Careers Page.

What else do we offer?

• National Capital Region's 2024 Top Employers in Canada: [https://reviews.canadastop100.com/top-employer-qliktech>
• Genuine career progression pathways and mentoring programs
• Culture of innovation, technology, collaboration, and openness
• Flexible, diverse, and international work environment

Giving back is a huge part of our culture. Alongside an extra “change the world” day plus another for personal development, we also highly encourage participation in our Corporate Responsibility Employee Programs

The anticipated base salary range for this role is $120, 000 - $150,000 CDN per year. Final compensation offered by Qlik will be based on factors such as the candidate’s location, job-related skills, education, experience, and other business and organizational needs. Qlik offers a comprehensive benefits package, eligibility requirements for benefits will be controlled by applicable Qlik plan documents and policies.

If you need assistance applying for a role due to a disability, please submit your request via email to accessibilityta @ qlik.com. Any information you provide will be treated according to Qlik’s Recruitment Privacy Notice. Qlik may only respond to emails related to accommodation requests.

Qlik is not accepting unsolicited assistance from search firms for this employment opportunity. Please, no phone calls or emails. All resumes submitted by search firms to any employee at Qlik via-email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of Qlik. No fee will be paid in the event the candidate is hired by Qlik as a result of the referral or through other means.

#LI-AMER