Application Security Engineer

Application Security Engineer

Location: Ottawa & Montreal

Shopify's merchant protection team ensures we provide a trustworthy commerce platform for our 90,000+ merchants. This includes security in every aspect of the Shopify experience, from storefront to the Admin panel to apps in our App Store. We are looking for an application security specialist who will help identify and respond to application vulnerabilities and develop tools to integrate security into our development process.

You'll need to have:

  • Experience performing web application penetration testing (Running Nessus doesn't count)
  • Thorough knowledge of security issues affecting web applications
  • Interest in creative ways to include security in the software development process

It would be great if you had:

  • Experience in web application development, especially Ruby on Rails
  • Contributions to open source security projects
  • Experience with bug bounty programs such as the Shopify Whitehat program (

You'll be working on:

  • Performing security audits of internally-developed and third-party apps
  • Responding to vulnerabilities disclosed through our Whitehat program
  • Providing security advice to product teams
  • Developing tools to help scale the security assessment process

If you are interested in discussing this role further, please click here and fill in your information.

Date Posted:
Sep 4, 2015 1:01 AM PDT

Ottawa, Ontario, Canada

Shopify is an Ottawa based commerce platform that allows anyone to easily sell online, at their retail location, and everywhere in between. Shopify offers a professional online storefront, a payment solution to accept credit cards, a point of sale system to power retail sales and a card reader to accept payments through a mobile phone. Shopify currently powers over 165,000 active online stores... more