Application Security Analyst

Veracity Software Inc • Full-time • Regina, SK, CA • 1d ago

Location: Regina, Saskatchewan, Canada (Onsite)

Work Model: 100% Onsite

Job Type: Contract Up to 3 years

Ideal Candidate Profile

Experienced Application Security professional with strong penetration testing background
Holds CISSP or CEH certification
Strong understanding of web technologies and secure coding
Experienced in DevSecOps and cloud security
Comfortable working onsite in a government environment

The Application Security Analyst will support the Government of Saskatchewan by performing advanced application security testing, vulnerability assessments, and risk mitigation activities. This role focuses on securing web, mobile, and API-based applications while ensuring compliance with cybersecurity standards and best practices.

This is a long-term staff augmentation role where the selected consultant will work closely with government teams to strengthen application security and support DevSecOps initiatives.

Key Responsibilities

Perform manual and automated application security testing
Conduct penetration testing and vulnerability assessments
Perform web, mobile, and API security testing
Execute secure code reviews and identify vulnerabilities
Analyze false positives/negatives and validate findings
Provide security recommendations to development teams
Support Web Application Firewall (WAF) implementation and tuning
Collaborate with teams on DevSecOps and secure SDLC practices
Identify, assess, and mitigate security risks
Ensure compliance with security standards and policies

Required Qualifications (Mandatory)

CISSP OR Certified Ethical Hacker (CEH) - Mandatory
Strong experience in:
- Application Security
- Penetration Testing
- Vulnerability Assessment
- OWASP standards
Must be available for 100% onsite work in Regina, Canada

Required Skills

Web security and application security expertise
Knowledge of OWASP, ISO 27002, and security frameworks
Experience with secure coding practices
Strong understanding of:
- HTTP/HTTPS, SOAP
- REST APIs, JSON, XML
Experience with security testing tools and methodologies
Risk management and vulnerability analysis skills
DevSecOps and secure SDLC experience
Cloud and network security knowledge

Preferred Qualifications

Bachelor's Degree in Computer Science or related field
Experience with government or public sector environments
Strong knowledge of cloud architecture and security models

Recruiter Submission Template

Full Name:

Degree Major with University and Completion Year:

CISSP / CEH Certification (Y/N - Details - Mandatory):

Years of Application Security Experience:

Experience with Application Security Testing (Details - Mandatory): (Manual testing, automated testing, tools used)

Experience with Penetration Testing (Details):

Experience with Vulnerability Assessment & Risk Management (Details):

Experience with OWASP & Security Standards (Details):

Experience with Web Technologies (Details): (HTTP/HTTPS, REST, JSON, XML, JavaScript, etc.)

Experience with Secure Coding & Code Review (Details):

Experience with DevSecOps / Secure SDLC (Details):

Experience with Cloud Security (Details):

Experience with Network Security (Details):

Experience with WAF (Web Application Firewall) & Security Tools (Details):

Experience with ISO 27002 / Security Compliance (Details):

Experience working with Government / Public Sector (Details - Preferred):

Motivation / Reason for Relocation (if not local to Regina, Canada):

Motivation / Reason for interest in this position:

Contact Number:

Email ID:

LinkedIn Profile URL:

Full Address (Street, City, Province, Postal Code):

Notice Period (in weeks):

Current Work Authorization Status (Canada):

Expected Hourly Rate:

Are you able to work 100% onsite in Regina, Saskatchewan, Canada?

Are you comfortable with a long-term contract (up to 3 years)?