We’re looking for a Security Software Developer to join the networking device development team behind Evertz IP switch fabric products, including the EXE and NATX, and Evertz SDI router products, including the NEXX and ENX platforms. In this role, you’ll be responsible for ensuring our products meet the security requirements of the NDcPP (Network Device collaborative Protection Profile) under the Common Criteria certification framework. You’ll work across the codebase to implement security features, stay ahead of vulnerabilities, and support the CI/CD infrastructure that keeps the team moving.

Responsibilities:

• Review and interpret security requirements for NDcPP (Common Criteria) certifications, which occur periodically every few years, and translate them into actionable development tasks.
• Implement and update product software to satisfy evolving security certification requirements — including cryptography, certificate management, authentication, audit logging, and access control — through a mix of C/C++ and Python/Bash development, package patching, and configuration changes as needed.
• Harden the embedded Linux environment, including managing firewall rules (iptables), disabling insecure services and defaults, configuring secure boot, and enforcing least-privilege port policies.
• Secure and configure network management protocols such as SSH, SNMPv3, syslog over TLS, NTP authentication, and HTTPS in line with certification requirements.
• Periodically upgrade the embedded Linux OS and its associated packages to maintain security compliance and long-term supportability.
• Regularly monitor CVE reports and security advisories, and address identified vulnerabilities by backporting upstream patches, updating dependent packages, or applying fixes to existing product revisions.
• Contribute to formal security certification documentation, including CC Security Guides, Security Targets, and related evaluation deliverables.
• Develop and maintain utility scripts in Python and Bash to support security workflows, testing, and automation.
• Contribute to the maintenance of the team’s Jenkins CI infrastructure as needed, including updating Jenkins packages and plugins, maintaining build scripts (Python/Bash), and occasional triage of build failures. This responsibility is shared across the team based on workload and availability.

Qualifications:

• Diploma or degree in Computer Science, Computer Engineering, Cybersecurity, or a related field.
• 1–2 years of experience with C/C++ development.
• 1–2 years of experience with Python and Bash scripting.
• Ability to read and interpret security standards, protection profiles, or compliance documentation.
• Familiarity with common security concepts such as TLS/SSL, x.509 certificates, authentication mechanisms, and cryptographic protocols.
• Basic understanding of Linux security management, including firewall configuration, service hardening, and user/permission management.
• Familiarity with securing network management protocols (SSH, SNMP, syslog, NTP, HTTPS).
• Experience tracking CVEs or security advisories and applying upstream patches or fixes.
• Experience with Jenkins or similar CI/CD tools.
• Strong analytical skills and attention to detail when working with security-sensitive code.
• A willingness to learn new technologies and take ownership of improving existing designs, processes, and tools for the betterment of the product and the team.

Nice to Have:

• Prior experience with Common Criteria, NDcPP, or FIPS certification processes, including contributing to evaluation documentation.
• Familiarity with embedded Linux build systems (e.g., Buildroot, Yocto) and package management in embedded environments.
• Experience with secure coding practices in C/C++ (memory safety, input validation, privilege management).
• Awareness of Post-Quantum Cryptography (PQC) concepts and emerging standards.
• Familiarity with version control systems (Git, Subversion).
• CompTIA Security+, CompTIA Linux+, or similar industry certifications.

What we offer

• Employer funded benefits program 
• Competitive total compensation package
• Work-Life Balance
• Employee assistance plan
• Employee Discount Platform 
• Career Progression 
• Casual Work Environment 
• Social Events and Sports Teams

Location: Markham, Ontario 
Hours: Monday to Friday, 40 hours per week
Vacancy: This is a newly created position
Salary Range: $60,000 to $85,000 per year, based on experience

About Evertz Microsystems (TSX: ET)
Evertz is a global leader in broadcast technology, delivering cutting-edge hardware and software solutions that deliver content to television sets, on-demand services, WebTV, IPTV, and mobile devices (like phones and tablets) worldwide. Trusted by major broadcast facilities, telcos, and satellite providers on every continent, we're known for end-to-end innovation that sets the industry standard.
Canadian-headquartered with offices around the world, Evertz has 2,000+ employees and has been recognized as one of Canada's 50 Best Managed Companies — a testament to our commitment to excellence and global impact.
Join a team where your work shapes the future of broadcast and new media industries.
Evertz is committed to equal opportunity employment. Accommodations are available throughout the recruitment process for applicants with disabilities — please notify HR when scheduling your interview.

Artificial intelligence (AI) technology may be used in our recruitment process to assist with resume screening and interview note-taking. All hiring decisions are made by our team without AI involvement.

 

Please note, this email address will only respond to requests regarding privacy concerns. This inbox will not respond to job applications, resumes, or questions regarding an application. When you apply to a job on this site, the personal data contained in your application will be collected by Evertz Microsystems Ltd (“Controller”), which is located at 5292 John Lucas Drive, Burlington, Ontario, Canada and can be contacted by emailing privacy@evertz.com. Controller’s data protection officer is Nadiera Toolsieram, who can be contacted at privacy@evertz.com. Your personal data will be processed for the purposes of managing Controller’s and its' subsidiaries' and affiliates' recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of Regulation (EU) 2016/679 (General Data Protection Regulation) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment.

A complete privacy policy can be found at https://evertz.com/contact/privacy/

Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have to right to data portability. In addition, you may lodge a complaint with an EU supervisory authority.