Job Description

Location Address: Hybrid - - 2 days/week split between the 2 locations, can work from one or the other (HM does Tues at Scarborough and Thurs downtown, can be flexible but 2 days onsite minimum required)
Subject to change: 3-4 days onsite may be required based on business needs
Contract Duration: 8 months
Possibility of extension & conversion to FTE
Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week
Story Behind the Need
Business group: Cloud & Platform Engineering - integrating application security vulnerability detection tools used by the Bank for static code analysis and SBoM generation
Project: Resource will be playing a key role in developing and deploying components of the strategic solution for Application Security implementing Software Composition Analysis and SBoM tools in the bank's SDLC.
Candidate Requirements/Must Have Skills:
1. 10+ years of enterprise IT experience
2. 3+ years' experience as a Software or DevOps Engineer
3. Experience in designing, programming and implementing APIs, automation scripts using python, java, or other scripting tools
4. Experience in designing and implementing automated security scanning in CI/CD pipelines
5. Experience with SSO, Networking, and general OS system administration (linux and windows)
Nice-To-Have Skills:
1. Cloud solution deployment experience (GCP, Azure)
2. Experience with security tools (SAST, SCA, DAST)
3. Solution architecture experience
Soft Skills Required:

• Strong analytical and problem-solving skills with the ability to devise innovative solutions to complex technical challenges.
• Strong communication skills- written & oral
• Strong collaborator, team player

Education:
Bachelors in technical field (computer science)
Best VS. Average Candidate:
Someone who can work independently with stakeholders to implement solution from design, constantly able to update design - Crucial: taking initiative, strong problem solver and is a strategic thinker and can identify solution; experience with APIs. The best candidates will have used the tools themselves and have an understanding of how they work, strong independent developer, with programming and automation expertise.
Programming with python, java experience is more important than security experience as many candidates in the past have had more broad security engineer profiles and need someone who can program and run scripts in the back end

Skills Required