Web programmer • brossard qc
Pay at Intact is about much more than just salary.Multiple benefits offered to support.Wellness account and much more.Share plan & other savings: up to.Employee Share Purchase Plan (ESPP) – with In... Show more
As a Physics Programmer, you will join a small, empowered team building an ambitious multiplayer experience in Unreal Engine.We’re looking for hands‑on developers with a strong execution mindset, o... Show more
Fabrication artisanale de bijoux métiers d'arts.Description de l’offre d’emploi.Poste contractuel annuel avec rémunération à taux horaire pour services rendus.Nous recherchons une personne possédan... Show more
Agence Index Index est une compagnie de 15 ans spécialisée en marketing + IA, avec plus de 1000 projets complétés en e-commerce, Éducation, immobilier et B2B.Nous avons mon... Show more
The role Are you ready to dive into the world of cutting-edge video game development? Headquartered in Montreal, Behaviour Interactive is at the forefront of the gaming industry, crafting unforgett... Show more
Vous souhaitez évoluer dans un environnement où votre rigueur, votre souci du détail et vos compétences en rédaction auront un impact concret au sein d’une entreprise innovante en pleine croissance... Show more
La dynamique de votre équipe :.Le groupe de l’expérience numérique est responsable de la conception et de la mise en place de la plateforme numérique pour notre écosystème, qui permet à nos partena... Show more
En tant que Développeur Web Front-End, vous contribuerez à la création, à la maintenance et à l’amélioration de l’expérience de notre site web en étroite collaboration avec les équipes de design, m... Show more
The Statistical Programmer will be responsible for the development, maintenance, and validation of annotated Case Report Forms (aCRFs) as well as of specifications and statistical programming of St... Show more
Do you want to work for a world-renowned research institute that pushes the boundaries of biomedical science and health research? Right here in Montreal! At the Research Institute of the McGill Uni... Show more
As a Physics Programmer, you will join a small, empowered team building an ambitious multiplayer experience in Unreal Engine.We’re looking for hands‑on developers with a strong execution mindset, o... Show more
Design Shopp is a creative agency specializing in web development, branding, digital marketing, video production, and photography.Since 2007, we have been working with clients across multiple indus... Show more
Pay at Intact is about much more than just salary.
Flexible work arrangements and a hybrid work model
Possibility to purchase up to 5 extra days off per year
Multiple benefits offered to support physical and mental wellbeing, including telemedicine, Wellness account and much more
Share plan & other savings: up to 12% of salary or even more (ask how you could earn guaranteed income for life)
Salary range (but not limited to):
128,300 - 156,800Annual bonus target, based on the base salary, with a potential payout of up to double the target (subject to personal and company performance):
15%As part of our commitment to Win As A Team, we share our success with employees through our annual bonus plan and Employee Share Purchase Plan (ESPP) – with Intact matching 50% of your net shares.
Our pension offerings provide flexibility and long-term security for our employees beyond their careers. We are one of the few companies offering the opportunity to receive guaranteed income for life via our defined benefit pension plan.
Salary for the candidate will be determined taking into consideration a number of factors including: experience, skills, qualifications, anticipated contribution to role, internal equity, etc. The salary range presented above is based on a 35-hour workweek and would represent a majority of different candidate profiles. However, we encourage candidates who may fall outside of this range to apply as well.
About the role
We are seeking a Manager to lead our Web Application Protection team. This role evolves our current Web Application Firewall (WAF) and API security operations into a proactive capability that leverages tooling insights to drive continuous improvements of our processes and controls. You will partner with Security, DevOps, Infrastructure, and Architecture to improve our security posture and safeguard customer-facing and employee-facing web applications and APIs.
What you'll do here:
Lead and develop a high-performing team responsible for WAF operations and API security.
Define the roadmap for web and API security and control enhancements.
Act as a trusted advisor on secure web and API design patterns and governance; provide reusable standards and templates.
Own the operational effectiveness of WAF and API Security Tools; manage vendor relationships and integrations.
Partner with Network Security to strengthen the security of external connections from a web application security perspective, ensuring appropriate edge controls, policies, and monitoring are defined, implemented, and continuously improved.
Implement and operate API security monitoring for external and internal services (discovery, posture assessment, anomaly detection).
Partner with API platform owners to define guardrails (authentication/authorization, token lifecycles, rate limits, schema validation, gateway policies).
Build threat intelligence feedback loops: map observed attack patterns, drive root cause analysis for recurring issues, and propose updates to detection and prevention logic.
Work with Risk/Compliance to meet financial services regulatory expectations and audit requirements.
Develop standards and playbooks for WAF and API policies, exception handling, and change control.
Participate in incident response for application-layer events, supporting detection, containment, and post-incident improvements.
Evaluate new capabilities; lead POCs and onboarding to close coverage gaps and improve security signal fidelity.
Define and track KPIs (e.g., false positive reduction, protected endpoint coverage, API inventory accuracy, time-to-tune, time-to-mitigate) and KRIs to demonstrate control effectiveness and trends to leadership.
What you bring to the table:
Bachelor’s degree in computer science or equivalent education and experience.
Minimum of ten (10) years in information technology, including at least three (3) years managing technical teams in Security.
Minimum of three (3) years of hands-on experience with WAF and API security in large enterprise environments.
Strong understanding of:
Web security controls: authentication/authorization, session management, input validation, bot management, DDoS mitigation, CDN/edge policies.
API security principles: OAuth2/OIDC, JWT, mTLS, rate limiting, schema validation, threat detection, inventory/discovery.
Threat modeling for web/API threats and common attack vectors (OWASP Top 10, API Top 10).
WAF and API platforms/tools such as Akamai, Cloudflare, F5, cloud-native WAF, Apigee.
Initiative, creativity, and autonomy: you pro-actively seek resources and information for informed decisions, manage expectations and articulate problems while looking at continuous improvement.
Excellent communication skills with the ability to influence senior stakeholders and guide engineering teams.
Strong ethical principles and understanding of business and information security ethics.
One of these certifications would be a considerable asset: CISSP, CISA, CISM, CGEIT, CRISC, GSEC, GISP.
French is an asset - For candidates located in Quebec, bilingualism is required considering the necessity to interact on a regular basis with English speaking colleagues across the country.
No Canadian work experience required however must be eligible to work in Canada.
#LI-Hybrid
Il s'agit d'un nouveau rôle au sein de notre équipe en plein croissance | This role is a new member of our growing team.
