Key skills
CloudLinuxOpen SourcePythonRustCCommunication
About this role
Role Overview
- Utilize programming tools to test devices, configuration, and code
- Provide risk assessments for vulnerabilities
- Report on the overall quality of current security standards
- Work closely with Geotab software developers, the broader Security team, and global strategic initiative stakeholders
- Conduct device, cloud infrastructure or web application and code testing for all systems and applications, open source dependencies, and provide analysis and risk assessments for vulnerabilities discovered
- Leverage security expertise in Hardware and Embedded Development
- Conduct focused information security research and make recommendations on changes within department and company
- Utilize code analysis and fuzzing tools to assess the quality and security of source code
- Provide recommendations on tools to address any gaps in coverage as well as defining and implementing security technical and process improvements
- Contribute to secure device configuration, infrastructure design and coding standards
- Conduct manual code reviews for all systems and code changes for a given device, system or application release
- Provide reporting on overall quality of device, infrastructure configuration or source code from a security perspective by project/team
- Triages and handles/escalates security issues within area of expertise
- Support Geotab global strategic initiatives
- Participate in candidate interviews during the hiring process
Requirements
- 8+ years of experience with security evaluation/analysis within a technical organization, including security code reviews and risk assessments
- 8+ years of experience performing hardware, infrastructure, or embedded development (e.g., Network protocol analysis, debugging, virtualization)
- Post-Secondary Diploma/Degree in Computer Science, Information Management, Engineering, or a related field
- Technical proficiency with Linux, Windows, and languages such as C, Rust, and Python
- Professional certification in Information Security (e.g., CISSP, CCSP, CSSLP, CEH, OSCP, OSWE) is highly valued
- Excellent verbal and written communication skills, with comfort delivering technical training and presentations
- Entrepreneurial mindset with the ability to stay organized and manage multiple priorities in a flat organization
Tech Stack
- Cloud
- Linux
- Open Source
- Python
- Rust
Benefits
- Flex working arrangements
- Home office reimbursement program
- Baby bonus & parental leave top up program
- Online learning and networking opportunities
- Electric vehicle purchase incentive program
- Competitive medical and dental benefits
- Retirement savings program