Application Security Specialist

Intelcom | Dragonfly

With more than 100 sorting stations and operations across three continents, Intelcom | Dragonfly is Canada’s leader in last-mile logistics. Our vision is clear: to deliver fast, accurate, and reliable service powered by cutting-edge technology.

A Strategic Role at the Heart of Logistic

Role Overview

Are you ready for your next career move—one where you can help strengthen and mature an application security practice within a fast-paced, growing organization?

Join a team where ideas are valued, contributions are recognized, and collaboration helps us push what’s possible. If you enjoy driving change and partnering with developers, squads, DevOps, system administrators, architects, and cybersecurity teams to make meaningful progress—and celebrate wins along the way—this role may be for you.

We’re looking for someone to join us as a Senior Application Security professional who will :

• Serve as the go-to advisor for application security across architecture, engineering, and secure coding practices.

• Define, implement, and continuously improve security controls and baseline configurations.

• Assess control effectiveness across CI/CD pipelines and application platforms (desktop, web, mobile, containers, COTS).

• Own and evolve application and cloud security services (tool selection, onboarding, configuration, operations, and testing).

• Drive security automation and repeatable guardrails throughout the SDLC.

• Lead threat modeling and secure design activities for key initiatives.

• Mentor and enable stakeholders on web, mobile, API, and cloud security to uplift posture and address technical debt.

Expectations for the role:

• Bring broad expertise in information security and application security to identify threats, recommend controls, and support business goals.

• Be recognized as a go-to resource across the organization for application security guidance.

• Advise developer squads on vulnerabilities, secure design, and application security best practices.

• Make decisions on complex issues and provide direction aligned with application and cloud security best practices.

• Maintain and support application security services (tools, platforms, tuning/optimization, configuration and upgrades).

• Partner with engineering, product, platform, architecture, and business teams to design and implement appropriate security features.

• Educate teams on application and cloud risks, secure configuration, secure coding, and core security concepts.

• Support procedures and automate security tasks throughout the software development lifecycle.

• Act as a subject matter expert for application and cloud security topics.

• Deliver outcomes with significant autonomy, using creative and practical approaches.

• Create training materials, guidelines, secure patterns, and documentation.

• Coordinate and host training sessions, knowledge-sharing forums, and AppSec/CloudSec communities of practice.

What do you need to succeed?

• Expert Problem-solving skills and advanced interpersonal and communication skills

• Autonomous – Time Management Skills

• Broad knowledge of application security, including application development, application testing methodologies, security testing, secure coding, training and secure product design

• Broad knowledge of cloud security, including cloud deployment, automation, secure configuration and policies, cloud security services

• Strong understanding of API, Web services, Modern Software architecture

• Knowledge of scripting : Python, bash

• Knowledge of development languages: At least 1 or 2 of the following: Java, Node.JS. C# .Net

• Strong understanding of secure design and threat modeling methodologies

• Knowledge of information security risks, framework, regulatory requirements and industry best practices

• Familiar with network protocols and cloud networking . Good understanding of network threat landscape

Key Differentiators:

• Hands on security experience with implementation and support of CI/CD pipelines, Secret Management solution, Image Management, Service Mesh, WAF, Cloud Firewall/ rules management, Kubernetes, Container security, API gateway, Cloud Workload Protection & Cloud Posture, IaC, Compliance as a Code , cloud policies (Azure, AWS), GitOps

• Hands-on experience with security testing, secure coding, training and secure product design

• Hands-on experience with security automation and incident response experience.

Qualifications:

• Degree in computer science, 5+ years of experience or an equivalent combination of training and experience

• Security Certification(s) required: CISSP, CSSLP, CEH, OSCP, GIAC “or” demontrated equivalent security knowledge and experience

• Cloud or Vendor specific security certification(s) “or” demontrated equivalent security knowledge and experience

Why Join Us?

At Intelcom | Dragonfly, you’ll thrive in a flexible and stimulating environment, surrounded by passionate talent. You’ll also enjoy a wide range of benefits:

• On-site gym with a personal trainer

• Employer-provided lunch of your choice

• Comprehensive group insurance

• Group RRSP plan

• Care & Well‑Being Activities

• Partial reimbursement for public transportation

• Employee Assistance Program

…and much more.

This position has been opened to address a genuine organizational need within the company.

At Intelcom | Dragonfly, we move forward guided by strong values: collaboration, innovation, excellence, and responsibility.

We embrace diversity, ensure equity, and foster a true sense of belonging.

Accommodation measures are available for individuals with disabilities throughout our recruitment process, in compliance with the law. Please let us know if you have any specific needs.