Description:

BioRender is seeking a Senior/Lead Application Security Engineer to enhance their application security program.
The role involves managing ongoing application security initiatives, including application risk assessments, CI/CD integration (SAST/DAST), and bug bounty programs.
Responsibilities include performing code reviews (NodeJS/React) and collaborating with engineering teams to ensure secure code delivery.
The engineer will build and maintain security and CI/CD tooling for automation, conduct penetration testing, and drive the identification and remediation of application security vulnerabilities.
The position requires testing application code using the OWASP methodology and evaluating bug bounty issues.

Requirements:

Candidates must have expertise in web application security and best practices.
The ability to perform code reviews on NodeJS, React, and related application findings is essential.
Knowledge of integrating and maintaining SAST/DAST systems is required.
Experience with Secure Software Development Life Cycles is necessary.
Applicants should possess applied knowledge of cryptography, PKI, TLS, and practical implementation of these technologies.
Experience in threat modeling and familiarity with common code and network vulnerability types, impacts, and remediations is expected.

BioRender is mission-driven, focusing on improving scientific communication and accelerating scientific discovery.
The company has a strong reputation, with figures appearing in over 54,000 publications and a world-class NPS.
BioRender is backed by top investors and accelerators like Y Combinator, indicating a strong growth trajectory.
The company offers a remote-first work environment, allowing team members to work flexibly from anywhere in Canada or the U.S.