Partner closely with engineering teams across the company to reduce security risk throughout the software development lifecycle
Contribute to initiatives that strengthen NerdWallet’s security posture by improving tooling, workflows, and standards
Help scale NerdWallet’s application security program through automation, tooling, and developer enablement
Build tools, processes, and automation that improve security posture visibility for engineers and leadership
Review pull requests and provide actionable guidance on secure coding practices
Support operational work during security investigations or incidents affecting applications
Help integrate security practices into the secure development lifecycle (SDLC) across teams

Requirements

2+ years of experience in application security, software engineering, or a related security role
Experience identifying, triaging, and remediating security vulnerabilities in applications
Experience working with software deployed in cloud environments, particularly AWS
Proficient in Python or another scripting language used for automation
Comfortable reading and reviewing JavaScript or similar application code
Experience or interest in building automation, tooling, or processes that improve application security workflows
Comfortable learning new programming languages, frameworks, or security tools as needed

Benefits

Monthly Healthcare Stipend
Rejuvenation Policy – Vacation Time Off + You will receive the official public holidays in your province
Paid sabbatical for Nerds to recharge, gain knowledge and pursue their interests
Monthly Wellness Stipend, Wifi Stipend, and Cell Phone Stipend
Work from home equipment stipend

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

application securitysecure coding practicesautomationPythonJavaScriptcloud environmentssecurity vulnerabilitiessecure development lifecycletoolingworkflows

Soft Skills

collaborationguidanceproblem-solvingcommunicationleadership