Associate Security Engineer

Manulife

Hybrid
Owasp top 10 knowledge
Static application security testing sast
Dynamic application security testing dast
The role focuses on safeguarding digital products and APIs from software-level threats within the Manulife ecosystem

Job Summary

  • The role focuses on safeguarding digital products and APIs from software-level threats within the Manulife ecosystem.
  • Candidates will integrate security tooling into CI/CD pipelines to enable DevSecOps practices and manage vulnerabilities throughout the SDLC.
  • The position offers a flexible hybrid work environment with a commitment to employee well-being, inclusion, and career growth.

Matching Summary

The role focuses on safeguarding digital products and APIs from software-level threats within the Manulife ecosystem.

Skills & Requirements

Must-have

  • OWASP Top 10 knowledge
  • Static application security testing SAST
  • Dynamic application security testing DAST
  • CI/CD pipeline security integration
  • Vulnerability triage and remediation
  • RESTful API security understanding

Nice-to-have

  • AI-assisted security tools experience
  • Penetration testing with Burp Suite
  • Python or Java scripting skills
  • Strong communication and training abilities
  • Knowledge of OAuth SAML JWT protocols

Key Requirements

  • 0-3 years hands-on experience in application security
  • Foundational knowledge of penetration testing concepts
  • Basic scripting skills in Python JavaScript or Java

Work Rights

Not specified

Tailored Resume

Cover Letter