Apply now »

Manager, Application Security

Description:

Permanent Full Time

We are looking for a Manager, Application Security.

The Manager, Application Security will lead the organization’s application security program, ensuring secure design, development, and deployment of applications. This role requires deep technical expertise in threat modeling, secure coding practices, and advanced security testing methodologies, including SAST, SCA, DAST, and penetration testing. The manager will collaborate with engineering, DevOps, and product teams to embed security into the SDLC and drive continuous improvement.

What you will do:

Program Leadership
- Define and execute the application security roadmap aligned with business objectives.
- Manage and mentor a team of application security engineers and analysts.
- Establish KPIs and metrics for security posture and program success.

Secure Development Lifecycle (SDLC)
- Integrate security controls into CI/CD pipelines.
- Oversee threat modeling for critical applications and architectures.
- Manage SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) tools.
- Coordinate and review penetration testing activities for web, mobile, and API applications with vendors and internal stakeholders.

Risk Management & Compliance
- Identify, assess, and prioritize application security risks.
- Ensure compliance with OWASP Top 10, NIST, ISO 27001, and regulatory requirements.
- Provide executive-level reporting on vulnerabilities and remediation progress.

Collaboration & Enablement
- Partner with development teams to promote secure coding practices.
- Deliver training and awareness programs on application security.
- Act as a subject matter expert for application security across the organization.

What you will bring:

Bachelor’s degree in Computer Science, Information Security, or related field.
7+ years in application security or software development with security focus.
3+ years in a leadership or managerial role.
Hands-on experience with threat modeling, SAST, DAST, and penetration testing.
Technical Skills:
- Proficiency with tools like Veracode, Checkmarx, Burp Suite, OWASP ZAP, and similar.
- Strong understanding of secure coding principles and vulnerability remediation.
- Familiarity with cloud security (AWS, Azure, GCP).
Certifications (Preferred): CISSP, CSSLP, OSCP, GWAPT, or equivalent.

Core Competencies:

Strategic thinking and ability to influence at all levels.
Excellent communication and stakeholder management skills.
Strong analytical and problem-solving abilities.

The base salary for this position is between $107,800 - $157,800 annually. This represents base salary only and does not represent other variable compensation components of our total compensation ( i.e. annual bonus, commission etc). If you are selected to move forward in our recruitment process, your recruiter will be able to discuss additional details of our total rewards program with you.

Career opportunities will be open a minimum of 5 business days from the date of posting, closing dates will vary depending on the search activity. All applications received will be reviewed on a rolling basis.

Grow with Canada Life

We’re united by a shared purpose: to improve the financial, physical and mental well-being of Canadians. Our company is trusted by 1 in 3 Canadians and contributes to the strength of communities across the country.

We’re looking for people who live our values everyday: we step up, we do the right thing, and we deliver – for our customers, communities and each other. Are you someone who always strives to do the right thing, who steps up for themselves and others, and who delivers with impact? Then we want to hear from you!

What we offer:

We’re committed to supporting our employees through every stage of their career. Here’s what you can expect as a full-time or part-time permanent team member:

Career Development: Opportunities for career advancement, access to industry-leading learning programs and up to $2,000 annually towards education reimbursement.

Health & Wellness: Flexible health and dental benefits, plus a $5,000 mental health benefit to support your well-being.

Time Off: In addition to regular vacation and personal days, we support community involvement with a volunteer day.

Financial Security: Company-matching pension plan, share ownership program and additional investment options.

Rewards and Recognition: Employee recognition programs, service milestone celebrations, employee discounts and more!
Emphasis on Community: We provide a workplace where employees feel connected and supported through Employee Resource Groups (ERGs), mentorship programs, social clubs and events.

Learn more about Canada Life.

We’re committed to removing barriers and ensuring equal access to employment. Applicants requiring reasonable accommodation during the application process may contact talentacquisitioncanada@canadalife.com. All information provided will be handled in accordance with applicable laws and Canada Life policies.

Canada Life would like to thank all applicants, however only those who qualify for an interview will be contacted.

#LI-Hybrid

Requisition ID: 5810

Category: Digital Technology

Location:

Toronto Ontario, ON, CA, M5T 3M3

Date: Apr 15, 2026

If you are not finding suitable opportunities now, please click below to join our talent community!

Join Our Community

Apply now »

Provider	Description	Enabled
Vimeo	Vimeo is a video hosting, sharing, and services platform focused on the delivery of video. Opting out of Vimeo cookies will disable your ability to watch or interact with Vimeo videos. Cookie Policy Privacy Policy Terms and Conditions
YouTube	YouTube is a video-sharing service where users can create their own profile, upload videos, watch, like, and comment on videos. Opting out of YouTube cookies will disable your ability to watch or interact with YouTube videos. Cookie Policy Privacy Policy Terms and Conditions