Product Security Engineer

Benefits

Parental leave

Not verified

Non-birth-parent leave

Not verified

Family-building benefits

• Fertility benefits: Not verified
• Adoption assistance: Not verified
• Surrogacy assistance: Not verified

Mental health support

Not verified

Relocation assistance

Not verified

Childcare support

Not verified

Learning budget

Not verified

Verification

Not verified

Salary

Not verified not verified - source not recorded; timestamp not recorded

Was this benefit information wrong? Tell us.

Schedule

Shift type

Not verified

Weekend work

Not verified

Application

Cover letter

Not verified

Assessment

Not verified

Deadline

Not stated

Where they hire

State eligibility is not yet verified.

About this role

Product Security Engineer Movable Ink - Toronto Movable Ink scales content personalization for marketers through data-activated content generation and AI decisioning. The world's most innovative brands rely on Movable Ink to maximize revenue, simplify workflow and boost marketing agility. Headquartered in New York City with close to 600 employees, Movable Ink serves its global client base with operations throughout North America, Central America, Europe, Australia, and Japan. Movable Ink is hiring a Product Security Engineer to help secure our codebases, CI/CD pipelines, and development practices. To succeed in this role, you'll balance a security-first mindset with a practical understanding of how engineering teams ship software: finding ways to reduce risk without slowing down delivery. This is a hands-on opportunity to build and improve the automation that keeps our code and infrastructure safe, working closely with both the Security and Engineering teams. As AI coding tools and supply chain attacks increase risk across the industry, this role is critical to staying ahead of vulnerabilities before they reach production. Responsibilities: - Implement and maintain static application security testing (SAST) using Semgrep across our repositories - Configure and improve software composition analysis (SCA) tooling (Dependabot) to identify vulnerable dependencies - Manage secrets detection scanning (Trufflehog) and respond to findings - Integrate security scanning into CI/CD pipelines (GitHub Actions) to catch issues before code is merged - Triage and prioritize vulnerability findings, working with engineering teams to drive remediation - Support dynamic application security testing (DAST) efforts using tools like ZAP - Contribute to

Read the full description at movableink.com. FewerJobs shows a source-linked preview and links to the original posting.