Coveo logo

Senior Security Developer

Coveo
Full-time
On-site
Canada

JobsCloseBy Editorial Insights

Coveo is seeking a Senior Security Developer in Canada, full time onsite, to build internal platforms that embed security into software development and delivery. You will design, build, and evolve security tooling for access management, continuous compliance, and secure software delivery, automate CI/CD security, and design automated access workflows. You will contribute to vulnerability management, enforce compliance programmatically at scale, and deploy application layer protections like web application firewalls. Key qualifications include strong production grade Python, secure SDLC expertise, hands on AWS and Kubernetes experience, and a proven track record of automating security to reduce developer friction. Nice to have: Terraform, IAM and secrets management, SAST/DAST/IAST/RASP, and internal developer platform experience. To apply, tailor your resume to highlight automation wins, cloud security, and collaboration with product teams; convey how you already ship secure code by default. Coveo values diversity and accessibility.

Engineer the foundations that make secure development effortless!

What if every team at Coveo could ship secure code by default, without friction? As a Senior Security Developer, you’ll build the internal platforms and services that embed security directly into our software development and delivery processes.

You’ll turn complex security requirements into elegant, scalable systems, absorbing the heavy lifting so product and platform teams can innovate faster and safer. If you love building developer-first security tooling in the cloud, you’ll feel right at home here.

As one of our Senior Security Developers, you will:

  • Design, build, and evolve internal security services supporting access management, continuous compliance, and secure software delivery.
  • Own and enhance security tooling embedded in our continuous integration and continuous deployment (CI/CD) pipelines.
  • Design and automate access management workflows to provision, monitor, and audit access to infrastructure and applications.
  • Contribute to vulnerability management by triaging findings, managing exceptions, and improving remediation workflows through automation.
  • Support compliance automation across our cloud environments, enforcing standards programmatically and at scale.
  • Design, deploy, and maintain web application firewalls (WAF) and related application-layer protections to reduce risk exposure.

Here is what will qualify you for the role:

  • Strong experience writing reusable, production-grade Python code and building reliable, scalable systems.
  • In-depth knowledge of secure software development practices and how to integrate them across the software development lifecycle.
  • Hands-on experience with cloud service providers (AWS preferred), securing and configuring compute, storage, networking, and Kubernetes environments.
  • Proven track record of automating security and infrastructure processes to reduce friction and complexity for development teams.

What will make you stand out:

  • Experience with Terraform or other infrastructure-as-code tools to manage security-related resources such as identity and access management (IAM) roles, secrets, and network controls.
  • Hands-on experience designing or operating application security controls such as web application firewalls, runtime protections, API security tooling, or advanced testing tools (static application security testing (SAST), dynamic application security testing (DAST), interactive application security testing (IAST), or runtime application self-protection (RASP)).
  • Experience building internal developer platforms or self-service security tooling at scale.
  • Familiarity with cloud-native detection, monitoring, or policy-as-code frameworks.

Do you think you can bring this role to life? Send us your application, we want to hear from you!

Join the Coveolife!

We encourage all qualified candidates to apply regardless of, for example, age, gender, disability, gaps in CV, national or ethnic background.

This job description was written by humans, assisted by AI. We may leverage technology in our hiring process to help us see the person behind the resume.

Coveo is committed to providing accessible employment practices. If you require accommodation due to a disability at any point during the recruitment process, please contact [email protected] to discuss your needs.