Application Security Automation Engineer

BMO Financial Group

Toronto, Ontario, Canada
Base: $82,800.00 - $154,800.00; bonus/equity: perf...
Hybrid
5+ years sast and dast tool experience
Python, node.js, bash scripting automation
Secure code review and root-cause analysis
The role leads end-to-end Static Application Security Testing (SAST) operations including intake, configuration, execution, and reporting

Job Summary

  • The role leads end-to-end Static Application Security Testing (SAST) operations including intake, configuration, execution, and reporting.
  • Candidates will tune scan tools to reduce false positives and integrate security controls directly into CI/CD workflows.
  • BMO offers a competitive salary range, health insurance, tuition reimbursement, and retirement savings plans.

Matching Summary

The role leads end-to-end Static Application Security Testing (SAST) operations including intake, configuration, execution, and reporting.

Salary

Base: $82,800.00 - $154,800.00; Bonus/Equity: Performance-based incentives and discretionary bonuses possible; Benefits: Health insurance, tuition reimbursement, accident/life insurance, retirement savings plans

Skills & Requirements

Must-have

  • 5+ years SAST and DAST tool experience
  • Python, Node.js, Bash scripting automation
  • Secure code review and root-cause analysis
  • CI/CD pipeline integration for security testing
  • OWASP Top 10 and NIST CSF framework knowledge

Nice-to-have

  • Experience securing LLMs and prompt-driven workflows
  • Cybersecurity certifications like CISSP or OSCP
  • Exposure to AI-assisted security scanning tools
  • Contributing to SOPs and security playbooks
  • Risk-based assessment and regulatory alignment

Key Requirements

  • Bachelor's Degree in Computer Science, Engineering, Math, or Cyber Security
  • 5-7 years relevant experience as SAST/Automation Engineer
  • Strong coding ability in C#, Java, JavaScript, TypeScript, or Python

Work Rights

Not specified

Tailored Resume

Cover Letter