Summary: LeapAI is seeking an Intermediate Python Developer with a strong interest in application security to build secure, compliant, and robust AI applications alongside a senior team and data scientists. Highlights: 1. Work on modern AI projects and deepen security expertise 2. Advocate for security best practices within the team 3. Design and build practical, effective software We are **LeapAI**, a Canadian startup focused on AI strategy and implementation. Our clients expect precision, reliability and speed—and that’s exactly how we operate. With a small, focused remote team, we design and build practical, effective software that turns custom AI solutions into real results. **About the Role** We are looking for an **Intermediate Python Developer** who has a specific interest and background in application security. You don't need to be a CISO or a forensic expert. We are looking for a solid developer who writes clean code but also understands that security isn't an afterthought—it’s part of the development process. You will work alongside our senior team and data scientists to ensure that the AI applications we build are secure, compliant, and robust. **Key Responsibilities** * **Secure Development:** Write clean, maintainable Python code with a "security\-first" mindset (input validation, error handling, secure data processing). * **Vulnerability Management:** proactively identify potential risks in our codebase (e.g., OWASP Top 10\) and fix them before they become problems. * **Authentication \& Authorization:** Help implement and maintain secure access controls (OAuth, JWT, API keys) for our applications and APIs. * **Code Reviews:** Participate in peer code reviews with a specific focus on spotting security flaws or logic gaps. * **Best Practices:** assist the team in adopting modern security standards regarding encryption, secrets management, and data privacy (GDPR/PIPEDA compliance basics). **What We Are Looking For** * **Experience:** 3 to 5 years of Python development experience. * **Security Exposure:** You have worked in an environment where security was a priority. You are familiar with concepts like **OWASP Top 10**, **SQL injection**, **XSS**, and **CSRF**. * **Modern Standards:** You understand how to handle secrets (environment variables, vaulting) and how to secure REST APIs. * **Communication:** Good English communication skills. You can explain *why* a certain coding practice is a security risk to other developers. * **Adaptability:** As we are a startup, you are willing to work on general feature development when security tasks are light. **Nice to Have** * Experience with cloud security (AWS/GCP IAM roles, security groups). * Familiarity with container security (Docker). * Knowledge of static analysis tools (SAST) for Python. * Understanding of security challenges specific to AI (e.g., prompt injection), though not required. **Why Join Leap AI?** * **Remote Work:** Flexible, fully remote environment. * **Impact:** You will be the primary advocate for security best practices in the team. * **Growth:** A great opportunity to deepen your security expertise while working on modern AI projects. **How to Apply** Please submit your resume. In your application, briefly mention a security vulnerability you’ve encountered or fixed in the past. Job Type: Full\-time Pay: $18,943\.09 \- $29,622\.16 per month Work Location: Remote