ARCHIVED
This job listing has been archived and is no longer accepting applications.
MisuJob - AI Job Search Platform MisuJob
Login Sign Up

Application Security Specialist

Colabsoftware

Canada, Remote (Headquarters, Remote, Canada) Remote permanent

Posted: January 29, 2026

Interested in this position?

Create a free account to apply with AI-powered matching

Register to Apply

Quick Summary

The Application Security Specialist is responsible for ensuring the security of CoLab's engineering designs and models, working closely with subject matter experts to identify and mitigate potential security risks.

Required Skills

Application Security Risk Assessment Manual Testing Exploratory Testing Security Review DevOps Tools Documentation Shadowing Self-Learning

Job Description

About CoLab

At CoLab, we want to help mechanical engineering teams bring life-changing products to market years sooner.

CoLab is a cloud based platform for engineering design review. We make it easy for subject matter experts (SMEs) across your business to access, evaluate, and comment on 2D drawings and 3D models. Our built-in AI peer checker, AutoReview, scans designs for common errors or non-compliance with your standards and guidelines. AutoReview creates markups and comments on your files, in context – just like a human checker.

With CoLab, human SMEs and AI work together to help you make better decisions and improve designs faster. We automatically capture knowledge from across your global business that would otherwise be buried in emails, spreadsheets, slide decks, and unknown locations in Sharepoint or PLM. Then, we make sure every lesson learned and every design guideline is applied exactly when it matters.

Companies like Johnson Controls, Komatsu, Schaeffler, and Polaris have launched products 40% faster, cut BOM costs by 50%, and reduced quality escapes by 15% in 1 year.

About the Role

CoLab is looking for our next Application Security Specialist. Your focus is helping us catch vulnerabilities before they reach production. You’ll be embedded in multiple product build teams (2–3 squads), attending standups, reviewing feature work, and stress-testing our application and tools for risk. Your day-to-day involves deeply understanding how our software works—and then figuring out how to break it.

Taking direction from the Director of AppSec, this role is ideal for someone early in their security career (dev, QA or pentesting exposure) who is deeply motivated to learn and ready to work hard to get better.

What You’ll Do

• Review and risk rate upcoming features based on potential security impact. Work closely with devs on high risk projects.

• Conduct manual and exploratory security testing on features before they ship.

• Actively participate in team standups for 2–3 development teams, building trust and offering guidance when needed.

• Break things. Your job is to think like an attacker and uncover issues devs may not see.

• Manage and support internal security tools (e.g., SemGrep, Datadog, Retool, etc.) and help teams use them responsibly.

• Continuously improve our security review process, tooling, and internal documentation.

• Shadow senior security team members and pursue self-guided learning to level up your skills.

You’ll Thrive in This Role If:

• You’re self-motivated and learn best by doing. You don’t need someone to tell you what to Google.

• You’re excited by difficult, often thankless work—because you know it matters.

• You’re detail-oriented and comfortable living in the weeds.

• You’re tactful and thoughtful in how you deliver feedback—even when it’s hard to hear.

• You have baseline exposure to development, QA, or pen testing and are hungry to specialize in application security.

Must-Haves

• Strong drive to learn, improve, and become an expert in application security.

• Some experience in software development, QA or penetration testing (even co-op or personal projects).

• Familiarity with modern web applications and security fundamentals.

• Clear communication skills

• Willingness to work toward a certification like OSCP or OSWA (we’ll support you).

Nice-to-Haves

• Exposure to web app security testing or bug bounty programs.

• Hands-on experience practicing offensive security techniques (CTFs, labs, or platforms such as Hack The Box) is a plus

• Experience with dev tools and CI/CD pipelines.

• Familiarity with security issues in modern JavaScript, Python, or cloud-based applications.

The Extra Details

Compensation: Full-time, permanent role with competitive compensation and stock options.

Benefits: Unlimited vacation, extended health coverage, and 5% RRSP matching.

Location: Remote-first within Canada. Our HQ is in St. John’s, NL, Canada with optional hybrid if you're local.

Equity Note

Frequently cited statistics show that people who identify with historically marginalized groups are likely to apply to jobs only if they meet 100% of the qualifications. We encourage you to help us break that statistic and apply even if you don’t meet every single qualification—your potential is what matters most to us.

Why Apply Through MisuJob?

AI-Powered Job Matching: MisuJob uses advanced artificial intelligence to analyze your skills, experience, and career goals. Our matching algorithm compares your profile against thousands of job requirements to find positions where you have the highest chance of success. This saves you hours of manual job searching and ensures you only see relevant opportunities.

One-Click Applications: Once you create your profile, applying to jobs is effortless. Your resume and cover letter are automatically tailored to highlight the most relevant experience for each position. You can apply to multiple jobs in minutes, not hours.

Career Intelligence: Beyond job matching, MisuJob provides valuable career insights. See how your skills compare to market demands, identify skill gaps to address, and understand salary benchmarks for your experience level. Make data-driven decisions about your career path.

Frequently Asked Questions

How do I apply for this position?

Click the "Register to Apply" button above to create a free MisuJob account. Once registered, you can apply with one click and track your application status in your dashboard.

Is MisuJob free for job seekers?

Yes, MisuJob is completely free for job seekers. Create your profile, get matched with jobs, and apply without any cost. We help you find your dream job without any hidden fees.

How does AI matching work?

Our AI analyzes your resume, skills, and experience to understand your professional profile. It then compares this against job requirements using natural language processing to calculate a match percentage. Higher matches mean better fit for the role.

Can I apply to jobs in other countries?

Absolutely. MisuJob features jobs from companies worldwide, including remote positions. Filter by location or look for remote opportunities to find jobs that match your preferences.

Ready to Apply?

Join thousands of job seekers using MisuJob's AI to find and apply to their dream jobs automatically.

Create Free Account Sign In
← Browse all jobs
Register to Apply