Senior Software Engineer - Product Security

Remote or Mississauga
PointClickCare – SaaS Ops /
Full-Time /
Remote
At PointClickCare our mission is simple: to help providers deliver exceptional care. And that starts with our people. As a leading health tech company that’s founder-led and privately held, we empower our employees to push boundaries, innovate, and shape the future of healthcare.

With the largest long-term and post-acute care dataset and a Marketplace of 400+ integrated partners, our platform serves over 30,000 provider organizations, making a real difference in millions of lives. We also reinvest a significant percentage of our revenue back into research and development, ensuring our employees have the resources to innovate and make a lasting impact. Recognized by Forbes as a top private cloud company and honored as one of Canada’s Most Admired Corporate Cultures, we offer flexibility, growth opportunities, and meaningful work. 

At PointClickCare, we empower our people to be the architects of a smarter healthcare future; one that is human-first and accelerated by AI to create meaningful and lasting change. Employees harness AI as a catalyst for creativity, productivity, and thoughtful decision-making. By integrating AI tools into our daily workflows, collaboration is enhanced, outcomes are improved, and every team member has the proficiency to maximize their impact. It all starts with our hiring practices where we uncover AI expertise that complements our mission, and we continue to invest in training and development to nurture innovation throughout the employee journey.

Join us in redefining healthcare — so it doesn’t just survive, it thrives. To learn more about PointClickCare, check out Life at PointClickCare and connect with us on Glassdoor and LinkedIn.

Job Summary

The Senior Software Engineer is responsible for proactively building systems, identifying, and mitigating product security level issues while working with the overall product team to detect potential issues in production. This multi-faceted role involves engineering solutions, guiding product teams on best practices, performing reviews, conducting thorough investigations, creating detection rules, monitoring security alerts, and collaborating with other security teams to enhance the organization’s overall security posture. The ideal candidate will have a strong technical background in software engineering, cyber security, excellent analytical skills, and a proactive approach to threat detection and response.
 
Key Responsibilities

•System Development & Management: Solution, develop, and maintain custom scripts, tools, and techniques to enhance threat detection and response capabilities. Manage and optimize security detection tools and platforms.
•Data Analysis: Analyze security data from various sources, including logs, SIEM(s), network traffic, and endpoint data, to identify patterns, trends and anomalies indicative of potential threats.
•Collaboration: Work closely with other cyber security professionals, product teams, and external partners to share threat intelligence and improve overall security posture.
•Continuous Improvement: Stay up-to-date with the latest cyber threats, trends, and technologies to continuously improve threat hunting and detection methodologies and tools.
•Product Advisement: "Shift-left" to work with existing product teams to identify, remediate, and fix new or existing product deficiencies.
•Detection Rule Development and Stewardship: Create and maintain detection rules and signatures for various security tools (e.g., SIEM, IDS/IPS) to identify potential threats and anomalies.
•Incident Response: Collaborate with the incident response team to analyze and respond to security incidents, ensuring timely and effective mitigation.
•Threat Intelligence: Integrate threat intelligence feeds and data into detection mechanisms to improve the accuracy and relevance of alerts.
•Reporting: Understand the nature of threats, potential impact, response actions taken, and recommended mitigation strategies.

Qualifications

•Education: Bachelor’s degree in Computer Science or a related field. Certifications are not required however being a Certified Ethical Hacker is a plus.
•Experience: Minimum of 10-15 years of experience in software engineering,
•Technical Skills: Expert level understanding of software engineering skills with Java, C#, or other OOO languages with focus on app security best practices.  Proficiency in using security tools and technologies such as SIEM, IDS/IPS, EDR, network analysis tools, and OWASP Top 10 knowledge is desirable but not required. Strong scripting skills (e.g., Python, PowerShell) are also highly desirable.
•Security Skills: Appreciation and eagerness to learn about account security, app security, threat hunting, security detection, incident response, or related areas.
•Analytical Skills: Excellent analytical and problem-solving skills, with the ability to think critically and creatively to identify and mitigate threats.
•Communication: Strong written and verbal communication skills, with the ability to convey complex technical information to both technical and non-technical stakeholders.
•Team Player: Ability to work effectively both independently and as part of a team in a fast-paced, dynamic environment.

Generative AI Code Assistants - Use of Generative AI Code Assistants (e.g. Github Copilot) and knowledge of latest Generative AI Model capabilities would be an asset.



#LI-remote
#LI-AJ1

$112,500 - $125,000 a year
PointClickCare Benefits & Perks:

Benefits starting from Day 1!
Retirement Plan Matching
Flexible Paid Time Off
Wellness Support Programs and Resources
Parental & Caregiver Leaves
Fertility & Adoption Support
Continuous Development Support Program
Employee Assistance Program
Allyship and Inclusion Communities
Employee Recognition … and more!

It is the policy of PointClickCare to ensure equal employment opportunity without discrimination or harassment on the basis of race, religion, national origin, status, age, sex, sexual orientation, gender identity or expression, marital or domestic/civil partnership status, disability, veteran status, genetic information, or any other basis protected by law. PointClickCare welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection process. Please contact recruitment@pointclickcare.com should you require any accommodations.

When you apply for a position, your information is processed and stored with Lever, in accordance with Lever’s Privacy Policy. We use this information to evaluate your candidacy for the posted position. We also store this information, and may use it in relation to future positions to which you apply, or which we believe may be relevant to you given your background. When we have no ongoing legitimate business need to process your information, we will either delete or anonymize it.  If you have any questions about how PointClickCare uses or processes your information, or if you would like to ask to access, correct, or delete your information, please contact PointClickCare’s human resources team: recruitment@pointclickcare.com 

PointClickCare is committed to Information Security. By applying to this position, if hired, you commit to following our information security policies and procedures and making every effort to secure confidential and/or sensitive information.