View all jobs
2026-25 - Security Developer
Calgary, AlbertaJob Description: The Security Developer will have a strong technical understanding of authentication, quality assurance principles, and a collaborative approach to problem-solving. This individual should also be proactive, dedicated to continuous learning, and skilled in explaining complex issues to both technical and non-technical audiences.
Responsibilities:
- Design, develop, test, and integrate code into identity (IdP) systems to meet specific business needs.
- Design, develop, and automate security testing processes, including generating test data, test scripts, and test cases automatically.
- Specify testing frameworks and acceptance criteria, and develop meaningful quality assurance and testing strategies, optimizing the corresponding processes.
- Conduct and execute various testing stages, including regression testing, integration testing, unit testing, performance tests, and system integration tests.
- Perform authentication policy and code reviews for team members, ensuring code quality, security standards, and adherence to best practices.
- Give recommendations for improving product security, solve issues related to integration and testing, and work with the product team to define technical requirements for future projects
- Share technical requirements for secure integration with authentication systems and provide guidance to other teams on the implementation of features as a subject matter expert
- Identify potential design and implementation vulnerabilities/security flaws
- Build a standardized set of security product requirements and produce metrics to report performance against those requirements.
- Collaborate with team members on project delivery, offering guidance, and conducting troubleshooting sessions to unblock progress and ensure timely completion of work tasks.
- Investigate and resolve issues related to authentication and user management and debugging complex authentication flows.
- Act as an emissary of the Identity, Application and Offensive Security team working to promote strong partnerships with teams and stakeholders that are dependent on our services.
Accreditations:
- Have a minimum of 3 years of experience within an IT Enterprise field.
- Have a bachelor’s degree or equivalent in science, computer science, engineering or related field, or equivalent work experience.
Foundational knowledge of Cyber Security
- Have working knowledge in one or more general purpose programming languages including but not limited to: Java, Python, JavaScript, etc.
Core Technical Skills:
- Demonstrated experience in designing and implementing test automation, including the use of tools for testing and processing test results.
- Experience with object-oriented programming languages would be considered an asset.
- Have an understanding of SSO Standards and authentication flows (SAML, OIDC, OAuth 2.0)
- Familiarity with FIDO2 is considered an asset
- Experience writing code for authentication is considered an asset
- Have experience with API integration, authentication and security standards.
- Have experience with Git or working knowledge of common software version control systems in collaborative development environments.
- Prior experience with development in the agile framework is considered an asset.
Interpersonal and Leadership Skills:
- Self-starter with strong problem-solving skills: The ability to take ownership of complex technical challenges, independently troubleshoot issues, and propose effective solutions.
- Excellent communication and collaboration skills: The ability to clearly articulate technical concepts to both technical and non-technical audiences, and to work effectively with cross-functional teams.
- Quick learner with a security-first mindset: A candidate who can rapidly adapt to new technologies and processes while consistently prioritizing security in all aspects of their work.
Top Skills: - Demonstrated experience in designing and implementing test automation, including the use of tools for testing and processing test results. - Experience with object-oriented programming languages (java, javascript) - Have an understanding of SSO Standards and authentication flows (SAML, OIDC, OAuth 2.0) - Familiarity with FIDO2 is considered an asset - Experience writing code for authentication is considered an asset .
Project Description: Key work includes leading the CIAM FY27 enterprise project to transition toward a passwordless future by implementing phish-resistant Passkeys and TOTP MFA across Retail, Wealth, and Business banking. A critical focus will be unifying the identity ecosystem through a Universal Organizational Unit and a centralized Enterprise Profile Management tool to ensure a seamless "one identity" experience for all clients.
This team member will drive the Digital Sales initiative to unlock self-serve credential claiming, improved identity verification via Persona, and automated account recovery flows. This includes expanding IVR authentication capabilities to increase self-serve technology and allow the client base to scale without increasing operational costs. Additionally, the role will oversee the commercial lending project to build a secure client authentication pathway aligned with the broader IAM strategy, while scaling platform quality through automated testing and data-driven insights from Splunk.
Responsibilities:
- Design, develop, test, and integrate code into identity (IdP) systems to meet specific business needs.
- Design, develop, and automate security testing processes, including generating test data, test scripts, and test cases automatically.
- Specify testing frameworks and acceptance criteria, and develop meaningful quality assurance and testing strategies, optimizing the corresponding processes.
- Conduct and execute various testing stages, including regression testing, integration testing, unit testing, performance tests, and system integration tests.
- Perform authentication policy and code reviews for team members, ensuring code quality, security standards, and adherence to best practices.
- Give recommendations for improving product security, solve issues related to integration and testing, and work with the product team to define technical requirements for future projects
- Share technical requirements for secure integration with authentication systems and provide guidance to other teams on the implementation of features as a subject matter expert
- Identify potential design and implementation vulnerabilities/security flaws
- Build a standardized set of security product requirements and produce metrics to report performance against those requirements.
- Collaborate with team members on project delivery, offering guidance, and conducting troubleshooting sessions to unblock progress and ensure timely completion of work tasks.
- Investigate and resolve issues related to authentication and user management and debugging complex authentication flows.
- Act as an emissary of the Identity, Application and Offensive Security team working to promote strong partnerships with teams and stakeholders that are dependent on our services.
Accreditations:
- Have a minimum of 3 years of experience within an IT Enterprise field.
- Have a bachelor’s degree or equivalent in science, computer science, engineering or related field, or equivalent work experience.
Foundational knowledge of Cyber Security
- Have working knowledge in one or more general purpose programming languages including but not limited to: Java, Python, JavaScript, etc.
Core Technical Skills:
- Demonstrated experience in designing and implementing test automation, including the use of tools for testing and processing test results.
- Experience with object-oriented programming languages would be considered an asset.
- Have an understanding of SSO Standards and authentication flows (SAML, OIDC, OAuth 2.0)
- Familiarity with FIDO2 is considered an asset
- Experience writing code for authentication is considered an asset
- Have experience with API integration, authentication and security standards.
- Have experience with Git or working knowledge of common software version control systems in collaborative development environments.
- Prior experience with development in the agile framework is considered an asset.
Interpersonal and Leadership Skills:
- Self-starter with strong problem-solving skills: The ability to take ownership of complex technical challenges, independently troubleshoot issues, and propose effective solutions.
- Excellent communication and collaboration skills: The ability to clearly articulate technical concepts to both technical and non-technical audiences, and to work effectively with cross-functional teams.
- Quick learner with a security-first mindset: A candidate who can rapidly adapt to new technologies and processes while consistently prioritizing security in all aspects of their work.
Top Skills: - Demonstrated experience in designing and implementing test automation, including the use of tools for testing and processing test results. - Experience with object-oriented programming languages (java, javascript) - Have an understanding of SSO Standards and authentication flows (SAML, OIDC, OAuth 2.0) - Familiarity with FIDO2 is considered an asset - Experience writing code for authentication is considered an asset .
Project Description: Key work includes leading the CIAM FY27 enterprise project to transition toward a passwordless future by implementing phish-resistant Passkeys and TOTP MFA across Retail, Wealth, and Business banking. A critical focus will be unifying the identity ecosystem through a Universal Organizational Unit and a centralized Enterprise Profile Management tool to ensure a seamless "one identity" experience for all clients.
This team member will drive the Digital Sales initiative to unlock self-serve credential claiming, improved identity verification via Persona, and automated account recovery flows. This includes expanding IVR authentication capabilities to increase self-serve technology and allow the client base to scale without increasing operational costs. Additionally, the role will oversee the commercial lending project to build a secure client authentication pathway aligned with the broader IAM strategy, while scaling platform quality through automated testing and data-driven insights from Splunk.