Himalayas logo
CoLab SoftwareCS

Application Security Specialist

Reinventing the way engineering teams design collaboratively.

CoLab Software

Employee count: 51-200

Canada only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

About CoLab

At CoLab, we want to help mechanical engineering teams bring life-changing products to market years sooner.

CoLab is a cloud based platform for engineering design review. We make it easy for subject matter experts (SMEs) across your business to access, evaluate, and comment on 2D drawings and 3D models. Our built-in AI peer checker, AutoReview, scans designs for common errors or non-compliance with your standards and guidelines. AutoReview creates markups and comments on your files, in context – just like a human checker.

With CoLab, human SMEs and AI work together to help you make better decisions and improve designs faster. We automatically capture knowledge from across your global business that would otherwise be buried in emails, spreadsheets, slide decks, and unknown locations in Sharepoint or PLM. Then, we make sure every lesson learned and every design guideline is applied exactly when it matters.

Companies like Johnson Controls, Komatsu, Schaeffler, and Polaris have launched products 40% faster, cut BOM costs by 50%, and reduced quality escapes by 15% in 1 year.

About the Role

CoLab is looking for our next Application Security Specialist. Your focus is helping us catch vulnerabilities before they reach production. You’ll be embedded in multiple product build teams (2–3 squads), attending standups, reviewing feature work, and stress-testing our application and tools for risk. Your day-to-day involves deeply understanding how our software works—and then figuring out how to break it.

Taking direction from the Director of AppSec, this role is ideal for someone early in their security career (dev, QA or pentesting exposure) who is deeply motivated to learn and ready to work hard to get better.

What You’ll Do

  • Review and risk rate upcoming features based on potential security impact. Work closely with devs on high risk projects.
  • Conduct manual and exploratory security testing on features before they ship.
  • Actively participate in team standups for 2–3 development teams, building trust and offering guidance when needed.
  • Break things. Your job is to think like an attacker and uncover issues devs may not see.
  • Manage and support internal security tools (e.g., SemGrep, Datadog, Retool, etc.) and help teams use them responsibly.
  • Continuously improve our security review process, tooling, and internal documentation.
  • Shadow senior security team members and pursue self-guided learning to level up your skills.

You’ll Thrive in This Role If:

  • You’re self-motivated and learn best by doing. You don’t need someone to tell you what to Google.
  • You’re excited by difficult, often thankless work—because you know it matters.
  • You’re detail-oriented and comfortable living in the weeds.
  • You’re tactful and thoughtful in how you deliver feedback—even when it’s hard to hear.
  • You have baseline exposure to development, QA, or pen testing and are hungry to specialize in application security.

Must-Haves

  • Strong drive to learn, improve, and become an expert in application security.
  • Some experience in software development, QA or penetration testing (even co-op or personal projects).
  • Familiarity with modern web applications and security fundamentals.
  • Clear communication skills
  • Willingness to work toward a certification like OSCP or OSWA (we’ll support you).

Nice-to-Haves

  • Exposure to web app security testing or bug bounty programs.
  • Hands-on experience practicing offensive security techniques (CTFs, labs, or platforms such as Hack The Box) is a plus
  • Experience with dev tools and CI/CD pipelines.
  • Familiarity with security issues in modern JavaScript, Python, or cloud-based applications.

The Extra Details

Compensation: Full-time, permanent role with competitive compensation and stock options.

Benefits: Unlimited vacation, extended health coverage, and 5% RRSP matching.

Location: Remote-first within Canada. Our HQ is in St. John’s, NL, Canada with optional hybrid if you're local.

Equity Note

Frequently cited statistics show that people who identify with historically marginalized groups are likely to apply to jobs only if they meet 100% of the qualifications. We encourage you to help us break that statistic and apply even if you don’t meet every single qualification—your potential is what matters most to us.

About the job

Apply before

Posted on

Job type

Full Time

Experience level

Mid-level

Location requirements

Canada

Hiring timezones

Canada +/- 0 hours

Job categories

DevelopmentApplication Security EngineerLead Application Security EngineerApplication Security EngineeringIT Security SpecialistSaaS Security SpecialistAPPLICATION SECURITY | TECH

Skills

SemgrepDatadogRetoolCI CDApplication SecurityBug BountyPenetration TestingJavaScriptPythonQAOffensive SecuritySoftware DevelopmentHack The BoxMake Remote

About CoLab Software

Learn more about CoLab Software and their company culture.

View company profile

Reinventing the way engineering teams design collaboratively. Our mission is to build the future — faster.

Our founders are mechanical engineers who've worked on innovative technology ranging from advanced medical devices and electric cars to breakthrough Hyperloop pod design and billion-dollar energy projects. But across the industry, no matter what tech they worked on, one thing was always the same: every team was stuck using archaic processes for working together—and it was slowing them down.

So, instead of wishing and waiting for a better way, Adam and Jeremy parked their design careers... and started building the tools engineers deserve.

Culture and values

Kindness and Respect Come First

  • We treat one another with respect.

  • We are kind to ourselves and others even when times are tough.

  • We seek to understand, and are transparent when we need help.

  • We have hard conversations and openly provide constructive feedback.

Ownership mentality

  • We take responsibility for outcomes and not just outputs: “It’s up to me to close the loop, not just check the box.”

  • We don’t give up the first time we hit a roadblock. We set clear goals and we stay focused on them until we succeed.

  • We take initiative, both within and outside our direct area of responsibility.

  • We operate with a healthy dose of paranoia: never panicked, but always trying to see around corners and anticipate challenges before they derail a product launch, customer onboarding, or sales opportunity

Better Everyday

  • We’re hungry, eager to solve tough problems, succeed in challenging roles, and work with people that push us to be our best

  • We make the best decisions we can, knowing no decision is still a decision and forward motion is better. We know that every step forward, big or small, builds momentum.

  • We strive for excellence in everything we do — we never settle.

  • We measure our progress — what’s visible can be improved.

One Team, One Mission

  • We always act in the best interest of our customers and CoLab.

  • We are the teammate we want to work with — we get what we give.

  • We are disciplined. We don’t get distracted by shiny objects.

What we look for in candidates

  • Grit: The average person would think that every job at CoLab is too hard. But if you love a challenge and seek excellence in everything you do, you will thrive here.

  • Business and technical acumen: CoLab is a complex product with lots of use cases. Our messaging is nuanced. We’re creating a new category of software, and nobody has a budget for it - yet. We’ll train you on how to overcome all of these obstacles, but you must come willing and able to learn.

  • Coachable team players: We’re looking for people that care about the success of the team as much or more than their individual success. Succeeding at CoLab requires a growth mindset and the ability to gracefully respond to constructive feedback.

  • Confidence, with low ego: You can hold your own in a conversation with a customer or a vendor. You can clearly communicate feedback to anyone at any level of the company – and you treat each of them with respect.

Employee benefits

Learn about the employee benefits and perks provided at CoLab Software.

View benefits

Healthcare benefits

Health and dental insurance (covered at 100% for the employee)

Retirement benefits

Generous 401(k) and RRSP matching to help you invest in your future.

Equity benefits

Competitive compensation package that includes a stock options package.

Unlimited time off

Take as much time off as you want as long as it doesn't interfere with your ability to do your work.

View CoLab Software's employee benefits
Claim this profileCoLab Software logoCS

CoLab Software

Company size

51-200 employees

Founded in

2017

Chief executive officer

Adam Keating

Markets

Engineering Collaboration ToolsMechanical Engineering SoftwareProduct Design SoftwareEngineering Project ManagementCollaborative Design PlatformsEngineering Workflow AutomationInnovation ManagementDesign Review SoftwareEngineering Productivity ToolsTechnology Development

Employees live in

CanadaUnited States
View company profile

Similar remote jobs

Here are other jobs you might want to apply for.

View all remote jobs

21 remote jobs at CoLab Software

Explore the variety of open remote roles at CoLab Software, offering flexible work options across multiple disciplines and skill levels.

View all jobs at CoLab Software
Top remote companies

Remote companies like CoLab Software

Find your next opportunity by exploring profiles of companies that are similar to CoLab Software. Compare culture, benefits, and job openings on Himalayas.

View all companies

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Save
Apply now