Senior Software Developer (Security Focus)

Newfoundland Time – Eastern Time | Canada

Application Deadline: Jan 16, 2025

Position Start Date: Feb 16, 2026

Compensation: Up to $120K CAD/year

About HeyOrca

HeyOrca is a fully remote company that values meaningful work and meaningful relationships. Our mission is to make marketing human by helping organizations build authentic communities.

We believe great software is built by people who care deeply about their craft, their teammates, and their customers. At HeyOrca, engineering is a collaborative, creative discipline—where speed, quality, and empathy are equally important.

The Role

We are seeking a Senior Software Developer with a security focus who thrives in a fast-moving, collaborative environment and is excited by the opportunity to build high-quality secure software quickly using modern AI-assisted development practices.

In this role, you will act as a bridge between feature development and securing our platform. You will help shape how we design, build, test, and ship features—using AI not just as a coding aid, but as a force multiplier and accelerator across development, testing, and iteration cycles. You will work closely with Product, Design, QA, and Customer teams to deliver customer value rapidly while maintaining a high bar for quality, security, and reliability.

This role offers room to grow—whether that means deepening technical expertise across our stack, expanding architectural influence, or developing leadership and mentorship skills.

Key Responsibilities

As a security focused Senior Software Developer, you will:

• Rapidly prototype ideas to gather early customer and internal feedback, leveraging AI-assisted tooling to accelerate iteration
• Convert validated prototypes into well-designed, secure, scalable, and maintainable production features
• Lead Secure SDLC practices, embedding security controls directly into our product development pipelines
• Design and implement security tooling, such as SAST, DAST, and dependency scanning, within our CI/CD workflows
• Collaborate on threat modeling and secure design reviews to ensure features solve customer problems without introducing risk
• Actively use AI tools for:
• • Accelerating implementation of well-understood patterns
  • Improving test coverage and reducing repetitive manual testing
  • Exploring alternative approaches and identifying edge cases
• Collaborate closely with Product, Design, QA, and Customer teams to ensure features solve real customer problems
• Contribute to technical architecture decisions and long-term platform evolution
• Participate in design discussions and team-wide technical brainstorming sessions
• Improve existing systems by refactoring, optimizing performance, and remediating vulnerabilities
• Contribute to DevSecOps and CI/CD practices to improve deployment speed, observability, and operational resilience
• Communicate clearly and proactively—sharing context, tradeoffs, and progress with teammates

Qualifications

You bring:

• 5+ years of professional software development experience
• A strong foundation in software development best practices, including maintainability, testing, and security
• Experience working with technologies such as:
• • REST APIs
  • PHP / Laravel
  • React.js, Node.js and TypeScript
  • SQL databases
• Hands-on experience using AI-assisted development tools for coding, testing, and security analysis
• Knowledge of security frameworks and best practices such as:
• • CIS Controls
  • SOC 2
  • OWASP Top 10
• A bias toward speed with discipline—moving quickly while preserving long-term code quality
• A collaborative mindset with a strong sense of ownership and accountability
• Comfort operating in a fast-paced, remote-first environment
• Experience with:
• • End-to-end tracing and observability
  • Web application performance analysis
  • Modern DevSecOps workflows
• Excellent problem-solving skills
• Clear, thoughtful communication skills
• Familiarity with AWS or similar cloud platforms

Nice to Have

• Experience designing or operating secure, scalable cloud infrastructure
• Experience with React Native
• Experience improving or automating QA and test pipelines

What You’ll Love About Working at HeyOrca

At HeyOrca, culture is not a side initiative—it’s central to how we work. We value curiosity, collaboration, and continuous improvement. We encourage engineers to learn, experiment, and share knowledge openly, including learning from AI-generated code and making it part of their personal toolkit.

We believe diverse perspectives make better products, and we are committed to creating an inclusive, supportive workplace where every team member feels empowered to contribute.

Perks include:

• 3 weeks vacation
• 2 weeks Christmas holiday
• Day off on your birthday
• $500 home-office allowance
• $500 yearly Orca wellness plan
• 5% RRSP matching
• $500/year personal development allowance

At HeyOrca, we are committed to building a diverse and inclusive workplace where every team member feels valued and empowered. We believe that our differences make us stronger and drive innovation. We welcome applications from people of all backgrounds, experiences, and perspectives. HeyOrca is an equal opportunity employer, and we do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Please note that we will only communicate with our job applicants by using @heyorca.com domains and no-reply@collage.co email. We will never contact applicants from any other email address. We will never ask for money or private information like SIN from potential employees. Be cautious of any unauthorized solicitations. You may view the most current and accurate job postings at HeyOrca by visiting https://www.heyorca.com/careers.