Workleap is hiring a DevSecOps Lead, Application Security - AI SDLC to join their Security team. Company Description Workleap is a Montreal-based tech company, founded in 2006. Key skills: Python, Go, Azure, CI/CD, AI.
Workleap is a Montreal-based tech company, founded in 2006. We're builders at heart, we make simple products that actually matter to the people who use them. We have two product lines: The Workleap Agent, our agentic HR platform that helps managers become better leaders, and ShareGate, the world's leading solution for Microsoft 365 migration and governance. More than 15,000 companies worldwide trust us to do exactly that. We're intentional about who joins us. If you're the kind of person who gets excited by a hard problem and wants to help shape what comes next, there's a place for you here.
As a DevSecOps Lead, you will be an operational individual contributor responsible for embedding security directly into our products, pipelines, and development workflows — with a focus on CI/CD, C#/.NET applications, Azure, and AI-driven software delivery. This is a deeply technical role where you will write code, build tooling, and work closely with developers to ensure security is a natural part of how we build and ship software.
You will join the AI-SDLC team, which builds internal platforms and tooling that enable AI agents to operate across the development lifecycle. Your mission will be to ensure that security is integrated from the ground up across these tools, pipelines, and agentic workflows—enabling secure-by-default product development at scale.
Your impact:
You will join the AI-SDLC team, responsible for building the internal platform that enables AI agents to operate across the Workleap and ShareGate development lifecycle. This includes developing agent pipelines, safety mechanisms, and developer-facing tooling. You will work closely with Infrastructure SecOps and partner with multiple product teams across the organization. This is a highly collaborative environment where your impact comes from building scalable solutions and making secure development the default for everyone.
The next challenges awaiting the team revolve around scaling automated security practices across a growing portfolio of SaaS products, while deepening security integration within GitHub Actions and CI/CD pipelines. As AI-assisted and agentic development workflows continue to evolve, ensuring that security guardrails keep pace will be a key priority — alongside strengthening secure-by-default practices and building greater security awareness among developers across teams.
Please note: this position is posted under the title DevSecOps Lead but carries the official title of Application Security Manager within the organization.
At Workleap, we build software that sits at the center of how people experience work, every day, at every level.
We move fast. Priorities shift, decisions get made with the information we have, and we iterate. If you thrive on intensity and ambiguity doesn't slow you down, you'll feel right at home.
We're builders. We do what it takes to move forward. AI is part of our toolkit. We use it to go faster and decide smarter, not to replace judgment.
If you want real impact and a place where your decisions matter, this is it.
Transparency is how we hire — for you as much as for us.
Here's how it works: a first call with a recruiter, then a virtual interview with the hiring manager. You'll then complete a take-home case study, followed by a meet with future colleagues to discuss it together. Depending on the role, the process may vary slightly — your recruiter will walk you through it on your first call.
We use AI to support certain steps of the process, but every hiring decision remains human.
We can't wait to meet you.
By applying, you confirm that you have read and agree to our privacy policy.
#LI-Remote