Talent.com
Croesus
AI Application Security Analyst (French mandatory)Croesus • Laval, Canada
No longer accepting applications
AI Application Security Analyst (French mandatory)

AI Application Security Analyst (French mandatory)

Croesus • Laval, Canada
5 days ago
Job type
  • Full-time
Job description

The working language is French, all internal meetings (including interviews) at Croesus are conducted in French, so a strong proficiency in French is mandatory.


Croesus provides innovative, high-performance, and secure wealth management solutions that include portfolio management systems, portfolio rebalancing tools, and application programming interfaces (APIs). These solutions empower wealth management professionals to improve their productivity, enhance their client relationships, make informed decisions, and maximize the management of their assets under management.


Croesus’s mission is to provide a superior experience to its clients, users, partners, and employees and to positively impact the community. With more than 200 employees in its Montréal, Toronto, and Geneva offices, Croesus has won several industry awards for being a high-quality solution provider and an outstanding employer.


As a member of the information security team, you serve as the strategic bridge between development and cybersecurity. Your role is to integrate security from the earliest stages of software design (“security by design”) and to turn technical constraints into drivers of excellence. As a hands-on expert, you support teams in effectively addressing vulnerabilities and fostering a culture of security. You also serve as the internal point of contact for the security of the artificial intelligence components integrated into our SaaS products.


Main Responsabilities:

Vulnerability Management and Triage

  • Classify vulnerabilities based on actual risk by correlating severity scores with business impact.
  • Support product managers in prioritizing fixes within development backlogs.
  • Oversee remediation using key performance indicators and validate the robustness of fixes.

Secure Architecture and Development

  • Conduct critical code reviews for C#, C++, Python, and web environments.
  • Secure data processing chains.
  • Get involved as early as the design phase through threat modeling. Extend this practice to AI components and agent-based architectures integrated into our products (RAG, autonomous agents, MCP integrations).

Security of AI Components in Products

  • Assess the security of integrations between our products and third-party AI models.
  • Apply the OWASP LLM Top 10 framework during code reviews and threat modeling exercises.
  • Define, in collaboration with development and DevOps teams, the application controls governing the use of generative AI in products: secret management for third-party model APIs, input and output validation, server-side controls on prompts, and checkpoints in CI/CD pipelines.
  • Evolve internal secure development standards for AI components.
  • Assess risks specific to the agent-based architectures integrated into our products: indirect prompt injection (RAG), excessive agency, tool poisoning, and MCP integration security.

Leadership: Security Champions Program

  • Lead the Champions Guild across various functional areas.
  • Organize knowledge transfer through workshops, simulation exercises, and training sessions.
  • Provide personalized technical mentoring to security champions.

Security Automation and Integration

  • Maintain automated security checks in continuous integration and continuous deployment (CI/CD) pipelines.
  • Evaluate, deploy, and refine static and dynamic analysis (SAST, DAST), software composition analysis (SCA), and secret detection tools, ensuring a good balance between coverage, false positive rates, and developer experience.

  • Overall experience: Minimum 5 years in information technology.
  • Domain expertise: Minimum 2 years in software development and 3 years in application security.
  • Education: Degree in computer science. A specialization or additional training in security is a major asset
  • Development & Code
  • Advanced proficiency: C#, C++, and Python (AI and data).
  • Web Security: Proficiency with modern development frameworks (TS/JS) and defense against common attacks.
  • Security Methodologies: Static and dynamic analysis, software composition analysis.
  • Automation: Integration of automated security controls into deployment pipelines.
  • Risk Analysis: Translation of technical vulnerabilities into understandable business risks

Why join Croesus ?

  • À la carte vacations
  • Annual salary + Corporate profit-sharing plan
  • Hybrid work, 2 days a week in office (Laval &Montreal offices)
  • Sports program
  • Gym available at our Laval head office
  • Telemedicine + group insurance (super useful for the family 😉 )
  • Group RRSP
  • Proximity to Montmorency & Mcgill metro
  • Ongoing training and development plan
  • Referral bonus
  • Indoor and outdoor parking & electric car recharging
  • Croesus boutique
  • Beautifully renovated and spacious office
  • Complimentary breakfast every morning
  • 2X per month, Happy hours, prepared by our Croesus Life Partner


Are you interested in this challenge? Do you believe you have the qualities and expertise required for this position? Please complete your application today.


Although all applications are carefully analyzed, we will communicate only with those selected. Thank you for your interest in Croesus.

Create a job alert for this search

AI Application Security Analyst (French mandatory) • Laval, Canada

Similar jobs

Lead Application Security Analyst

National Bank of CanadaMontreal
Full-time

A career as a DevSecOps lead on the Asset Protection team at National Bank means serving as a specialist in application security, vulnerability management and DevSecOps practises.This position allo... Show more

 • Promoted

Security Analyst

Fluid - Solutions de Talents/Workforce SolutionsMontreal (administrative region), QC, CA
Temporary

We are seeking a highly skilled Security Analyst to enhance and optimize our cybersecurity posture.This temporary position will focus on fine‑tuning threat detection models, ensuring best practices... Show more

 • Promoted

AI Governance & Compliance Testing Lead

PowerToFlyMontreal (administrative region), QC, CA
Full-time

A leading financial services firm in Montreal seeks an AI Governance and Compliance Testing Lead Specialist.This Vice-President level role emphasizes compliance coverage for AIML governance, requir... Show more

 • Promoted

French Channel Solutions Engineer for Cybersecurity & AI

TrendAIMontreal (administrative region), QC, CA
Full-time

A cybersecurity leader in Canada is seeking a Channel Solutions Engineer to enhance partnerships and provide technical support for their AI-powered cybersecurity platform.The role involves serving ... Show more

 • Promoted

Expert Analyste 3DEXPERIENCE chez Accenture

AccentureMontreal (administrative region), QC, CA
Full-time

Intégrez l'équipe d'Accenture comme Expert Analyste 3DEXPERIENCE et contribuez à des projets innovants en ingénierie numérique.Votre rôle sera centré sur la documentation, les processus d'affaires,... Show more

 • Promoted

AI & Automation Business Analyst – Hybrid Montréal

Sky Systems, Inc. (SkySys)Montreal (administrative region), QC, CA
Full-time

Une entreprise technologique renommée à Montréal cherche un Analyste d'affaires spécialisé en Intelligence Artificielle et Automatisation.Vous serez responsable de la qualification des projets en I... Show more

 • Promoted

Azure AI Security & Governance Consultant

ConcentrixMontreal (administrative region), QC, CA
Full-time

A customer experience solutions provider based in Canada is seeking a Cybersecurity Consultant to lead strategic AI security initiatives.The ideal candidate will have deep expertise in the Microsof... Show more

 • Promoted

Cybersecurity Analyst & AI Tutor — Remote Threat Hunter

MindriftMontreal (administrative region), QC, CA
Remote
Part-time

A technology consulting firm based in Canada is seeking a Freelance Cybersecurity Analyst - AI Trainer to collaborate on innovative AI projects.The role involves analyzing security alerts, conducti... Show more

 • Promoted

Security Analyst

Prosperity Workforce SolutionsMontreal (administrative region), QC, CA
Temporary

We are seeking a highly skilled.This temporary position will focus on fine-tuning threat detection models, ensuring best practices in endpoint protection, and improving the utilization of our secur... Show more

 • Promoted

Application Security Engineer

HireTalent - Staffing & Recruiting FirmMontreal, Montreal (administrative region), CA
Full-time

Information Security Engineer II.Application Security is looking to recertify all third-party connections in compliance with in-transit encryption requirements.We are seeking 2 Cyber Security exper... Show more

 • Promoted

Information Security Analyst - Banking and Finance

Hamilton Barnes Associates LimitedMontreal (administrative region), QC, CA
Full-time

Do you want to join a global trading firm’s cybersecurity team, helping to detect threats, respond to incidents, and strengthen the company’s security posture?.Join a global proprietary trading fir... Show more

 • Promoted

Principal Security Analyst - Remote

CyderesMontreal (administrative region), QC, CA
Remote
Full-time

Be among the first 25 applicants.Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and acce... Show more

 • Promoted

Applied AI Engineer

Simpro SoftwareMontreal (administrative region), QC, CA
Full-time

Le Applied AI Software Engineer sera responsable de la conception technique rapide et de la livraison d'agents et de cadres d'IA construits sur les SIMPRO FSM.En étroite collaboration avec le dépar... Show more

 • Promoted

Analyste en sécurité de l’information / Information Security Analyst

Tower Research CapitalMontreal (administrative region), QC, CA
Full-time

Français] Analyste en sécurité de l’information.Tower Research Capital, une société de négociation à haute fréquence pour compte propre fondée en 1998, est à la recherche d’un analyste en sécurité ... Show more

 • Promoted

Analyste SOC Cybersécurité Full Remote

Industrielle RH et recrutementMontreal (administrative region), QC, CA
Remote
Full-time

Rejoignez nous comme Analyste SOC et devenez un élément clé dans la défense des infrastructures.Travaillez en full remote pour une meilleure qualité de vie et d'équilibre travail-vie.Ce rôle exigea... Show more

 • Promoted

Markets Surveillance Analyst – Risk & Compliance

TekWissen ®Montreal (administrative region), QC, CA
Full-time

A banking services provider is seeking a Compliance Analyst in Montreal.You will review communications for adherence to rules, detect suspicious activities, and assist in risk management efforts.Th... Show more

 • Promoted

Flexible Analyst for Finance AI Development

DataAnnotationMontreal (administrative region), QC, CA
Full-time +1

Shape the future of finance AI as a Fixed Income Analyst.Engage in a remote role that offers adaptability in your projects and schedule, leveraging your financial expertise.This role entails assess... Show more

 • Promoted

Expert Sécurité Application chez Workleap

WorkleapMontreal (administrative region), QC, CA
Full-time

Rejoignez Workleap à Montréal en tant qu'Expert en Sécurité des Applications pour renforcer la sécurité dans le développement agile.Intégrez vos compétences au sein d'une équipe dynamique et innova... Show more

 • Promoted

Remote Information Risk & Security Analyst

DexianMontreal (administrative region), QC, CA
Remote
Full-time

A leading IT services firm is seeking an Information Control Testing Specialist to manage information risk and ensure compliance with security policies.You will work on global initiatives, conduct ... Show more

 • Promoted

Senior Security Architect - Remote, Equity, Impact

CliniaMontreal (administrative region), QC, CA
Remote
Full-time

A digital health company is seeking a Senior Security Specialist in Montreal to lead security architecture and manage incidents across cloud environments.Responsibilities include developing securit... Show more