Talent.com
Aarorn Technologies
Remote Vulnerability Management Specialist Application SecurityAarorn Technologies • Sainte-Therese, Quebec
Remote Vulnerability Management Specialist Application Security

Remote Vulnerability Management Specialist Application Security

Aarorn Technologies • Sainte-Therese, Quebec
Il y a 28 jours
Type de contrat
  • Temps plein
  • Télétravail
Description de poste

Role: Vulnerability management (Remote, Canada)
Location: Remote (Canada)
Employment Type: Contract
Work Authorization: Open Work Permit (OWP), PR, Canadian Citizen only

Mandatory skills for vulnerability management we are looking for the candidate having below key skills:

Regarding skills for appsec. We need below hands-on experience and not only tool based.

AppSec:

Web Application Security

Mobile Application Security

API Security

SAST (Static Application Security Testing), SCA (Software Composition Analysis)

Vulnerability Management lifecycle

VM: Risk Assessment & Prioritization
Ability to assess vulnerabilities based on risk, not just severity—considering CVSS scores, exploitability, asset criticality, business impact, and threat intelligence to prioritize remediation effectively.

Vulnerability Scanning & Tool Proficiency
Hands-on expertise with vulnerability scanning tools (e.g., Nessus, Qualys, Rapid7, OpenVAS) and the ability to interpret scan results accurately, reduce false positives, and tune scans for different environments.

Patch & Remediation Management
Strong coordination skills to drive timely patching and mitigation—working with IT, cloud, DevOps, and application teams to remediate vulnerabilities while minimizing operational and business disruption.

Reporting & Stakeholder Communication
Ability to translate technical vulnerability data into clear, actionable reports for different audiences (engineers, management, auditors), including dashboards, trends, SLAs, and risk narratives.

Compliance & Continuous Improvement
Knowledge of security frameworks and standards and the skill to embed vulnerability management into continuous security processes, audits, and metrics-driven improvement.

Job Description:

"Summary

The Vulnerability Management Specialist – Application Security is responsible for end to end management of application security vulnerabilities across the SDLC using SAST, DAST, and SCA tools, with a strong focus on risk based prioritization, remediation tracking, and posture visibility through ASPM platforms.

Technical Skills

Strong hands on experience with:

• SAST (e.g., AppScan, Check Marx, GitHub Advanced Security)

• DAST tools and runtime testing approaches

• SCA / OSS security and dependency risk analysis

Working knowledge of ASPM platforms and vulnerability aggregation.

Understanding of OWASP Top 10, secure coding practices, and application threat models.

Soft Skills:

• Must be from global support background.

• Strong documentation, presentation, and communication skills

Experience

• 8-10 + years of experience in application security or vulnerability management roles.

• Experience supporting enterprise scale AppSec programs with multiple applications and teams.

Key -Responsibilities

• Interpret findings across SAST, SCA, Secrets, API and Mobile scanning (tools like GitHub Advanced Security, Traceable, etc)

• Hand-off findings to development teams for remediation

• Provide technical remediation assistance to product development teams

• Track and report remediation progress

• Facilitate extension requests for remediation timelines

• Collaborate across teams using JIRA for ticketing and dashboards

• Familiarity with RBVM/ASPM tools like ArmorCode, Seemplicity, Brinqa a plus.

• Should have good knowledge of information security areas as Vulnerability Management Lifecycle, hardening controls (CIST, NIST) etc.

• Good understanding of information security related fields, including security operations and administration

• Should possess good understanding of assets, threats and vulnerabilities and their correlation in an organization

• Good understanding of vulnerability reports from tools like Qualys/ Tenable etc.

• Hands on experience on vulnerability prioritization tool, RiskSense or Kenna would be a plus

• Strong practical knowledge of vulnerability remediation tracking across infrastructure, applications, and teams/ 3rd parties

• Knowledge on vulnerability exception management process

• Strong practical knowledge on presenting vulnerability remediation tracking updates to the management

• Hands on experience on vulnerability patching

• Should have a good customer handling skill

• Good to have Experience on vulnerability scanning tools Like Qualys and Tenable.

Créer une alerte emploi pour cette recherche

Remote Vulnerability Management Specialist Application Security • Sainte-Therese, Quebec

Offres similaires

Spécialiste des essais en vol | Flight Test Specialist

Pratt & WhitneyMirabel, QC, CA
Temps plein

Location: CA-QC-MIRABEL-M01 ~ 11155 Julien-Audette ~ M01 BLDG.Spécialiste des essais en vol (Flight Test Specialist).Pratt & Whitney Canada is a global leader in aerospace innovation headquartered ... Voir plus

 • Offre sponsorisée

Survey Taker: Earn up to $25 per survey (Remote)

Earn HausSaint-Calixte, QC, CA
Télétravail
Temps plein +1

Looking for people to participate in taking online surveys for Fortune 500 brands.All you need to do is complete online surveys by sharing your opinion.You will help influence brand decisions on se... Voir plus

 • Offre sponsorisée

Blaster (Demolition Specialist)

FddfSaint-Eustache, QC, CA
Temps plein

According to CCQ (Quebec Construction Commission) rates.Blasting operations on various construction sites across Quebec;.Blasting in urban environments with nearby buildings;.Lead and execute blast... Voir plus

 • Offre sponsorisée

Image and Deployment Tech

TekWissen ®Kirkland, Montreal (administrative region), CA
Temps plein

TekWissen is a global workforce management provider headquartered in Ann Arbor, Michigan that offers strategic talent solutions to our clients world-wide.Our client is a global provider of managed ... Voir plus

 • Offre sponsorisée

Remote Business Applications Analyst (JDE)

Fluid - Solutions de Talents/Workforce SolutionsBaie-D'Urfé, Montreal (administrative region), CA
Télétravail
Temps plein

Become a Remote Business Applications Analyst specializing in JD Edwards configurations and project leadership.Drive system improvements and optimize processes in a collaborative team environment.T... Voir plus

 • Offre sponsorisée

Laptop Imaging & Deployment Specialist

TekWissen ®Kirkland, Montreal (administrative region), CA
Temps plein

A global workforce management provider is looking for a candidate in Kirkland, Canada, to image laptops using AutoPilot and assist users both onsite and remotely.Key responsibilities include gather... Voir plus

 • Offre sponsorisée

Data Center Security Officer

SaluteBaie-D'Urfé, Montreal (administrative region), CA
Temps plein

Salute is a leading provider of cutting-edge Data Center Infrastructure Services, dedicated to serving data center clients worldwide.We pride ourselves on delivering sustainable solutions, unparall... Voir plus

 • Offre sponsorisée

Installateur(trice) de systèmes de sécurité

noxeSaint-Eustache, QC, CA
Temps plein

Dans un contexte de forte croissance et de projets de plus en plus complexes, noxe souhaite renforcer son équipe terrain à notre succursale de Saint‑Eustache.Nous cherchons un(e) Installateur(trice... Voir plus

 • Offre sponsorisée

Ingénieur Sécurité Systèmes Aéronautiques — Innovation

Cessna Aircraft CompanyMirabel, QC, CA
Temps plein

Une entreprise aérospatiale renommée à Mirabel, au Québec, recherche un Ingénieur de sécurité du système pour garantir la sécurité des conceptions et analyser les artéfacts dans le cadre de la cert... Voir plus

 • Offre sponsorisée

Documentation management Analyst

GoTo MeetingSainte-Anne-de-Bellevue, QC, CA
Temps plein

Configuration and documentation management (CADM) Analyst.Satellite systems team at our Montreal office.An equal opportunity employer prizing diversity, integrity and collaboration, we are committe... Voir plus

 • Offre sponsorisée

Operational Performance Analyst (Mirabel)

AAA CanadaMirabel, QC, CA
Temps plein +1

Job Offer: Operational Performance Analyst.Company: AAA Canada (mandate for a major aerospace player).Type: Full-time, permanent position.Permanent employment offering stability and security.High-p... Voir plus

 • Offre sponsorisée

Analyste Cybersécurité et Audit SI pour Régulation Actifs Numériques

敗㍢Salaberry-De-Valleyfield
Temps plein

Contribuez à la sécurité des actifs numériques en tant qu'analyste en cybersécurité et audit des systèmes d'information.Engagez-vous dans un environnement dynamique régulé par des normes strictes.A... Voir plus

 • Offre sponsorisée

Agent(e) de protection - General Dynamics Produits de défense et Systèmes Tactiques

General Dynamics Produits de défense et Systèmes Tactiquessalaberry-de-valleyfield, qc, ca
Temps plein

GENERAL DYNAMICSproduits de défense et Systèmes tactiques - Canada Développement et fabrication de munitions et de propulsifs destinés aux forces militaires.Le soucie la qualité de nos produits et ... Voir plus

 • Offre sponsorisée

Senior Contracts Specialist for Satellite Systems in Montreal

MDASainte-Anne-de-Bellevue, QC, CA
Temps plein

Elevate your career as a Senior Contracts Specialist in the satellite systems sector.Leverage your expertise in contract negotiation and development while working in a dynamic space environment.Thi... Voir plus

 • Offre sponsorisée

Health And Safety Specialist

AnalytiChem CanadaBaie-D'Urfé, Montreal (administrative region), CA
Temps plein

At Analytichem we are looking for inquisitive individuals to help us build a global organization that enables our customers’ science.Our products help customers make better measurements in analytic... Voir plus

 • Offre sponsorisée

Directeur Cybersécurité et Gouvernance à Nova Bus

Nova BusSaint-Eustache, QC, CA
Temps plein

Intégrez Nova Bus comme Directeur de la cybersécurité et de la continuité des affaires.Ce rôle exige une forte stratégie de protection de l'information et une expertise en gestion des crises.Dans c... Voir plus

 • Offre sponsorisée

Ingénieur sécurité machine - salaberry-de-valleyfield

General Dynamics Produits de défense et Systèmes Tactiquessalaberry-de-valleyfield, qc, ca
Temps plein

GENERAL DYNAMICSproduits de défense et Systèmes tactiques - Canada Développement et fabrication de munitions et de propulsifs destinés aux forces militaires.Le soucie,la qualité de nos produits et ... Voir plus

 • Offre sponsorisée

Gestionnaire des Programmes de Sécurité Bilingue

Sodexo Canada LtdKirkland, Montreal (administrative region), CA
Temps plein

Soyez un acteur clé dans la gestion des programmes de sécurité.Ce rôle contractuel offre une chance d'influencer la culture de sécurité dans un cadre professionnel.Sous la direction des responsable... Voir plus

 • Offre sponsorisée

Tech Installateur Systèmes de Sécurité (Véhicule fourni)

CISTECBoisbriand, Laurentides, CA
Temps plein

Une entreprise en systèmes de sécurité, située à Boisbriand, recherche un(e) Technicien Installateur et Entretien de Systèmes de Sécurité pour installer et maintenir des équipements de sécurité.Les... Voir plus

 • Offre sponsorisée

Analyste De Plateforme Infonuagique: Sécurité Et Optimisation Cloud

AB VolvoSainte-Thérèse, Canada
Temps plein

Entamez un nouveau chapitre en tant qu’Analyste de plateforme infonuagique.Mettez à profit votre expertise sur Microsoft Azure et AWS pour répondre à des défis sociaux et environnementaux.Ce rôle p... Voir plus