Security Engineer: AI/AppSec

• Conduct threat modelling to identify and mitigate security risks in application and product design
• Perform secure code reviews, design reviews, and penetration testing (black box and white box)
• Execute SCA, SAST, and DAST analysis using industry-standard tools and integrate them into CI/CD pipelines
• Develop and maintain cloud security policies to support secure deployment of applications and platforms
• Design and implement security controls ensuring confidentiality, integrity, availability, authentication, and non-repudiation
• Manage vulnerability and risk management processes throughout the software development lifecycle
• Define and document security requirements and controls aligned with solution architecture
• Support security validation and tuning of testing tools to ensure accurate results
• Collaborate with DevOps teams to embed secure development practices
• Deliver secure coding training and awareness to development teams
• Evaluate and implement new security tools and technologies
• Ensure compliance with security policies, standards, and best practices
• Participate in security monitoring and incident response activities

• Minimum 6 years of experience in security engineering roles with increasing complexity
• Undergraduate degree in Computer Science or a STEM-related field
• Industry certification such as CISSP, CEH, or equivalent
• Strong expertise in SCA, SAST, DAST, threat modelling, and web application penetration testing
• Hands-on experience with application security design, architecture, and AI security controls, * Experience securing AI or machine learning-based applications
• Knowledge of cloud security practices, particularly in Azure environments
• Experience integrating security tools into CI/CD pipelines
• Familiarity with DevSecOps practices and secure SDLC frameworks
• Experience conducting security risk assessments for complex systems

On behalf of our Public Sector Client, Ignite Technical Resources is recruiting for a Security Engineer (AI AppSec) to join our Client's team on a Contract basis. This role is Hybrid (3 days onsite per week) and the Client is based in Richmond., About Ignite Technical: Based in Vancouver and proudly Canadian, Ignite Technical Resources has been providing Top Technical Talent to organizations across Canada since 2005.