May 2024 – Present · 1 yr 10 mos · Virtual · Remote

• Startup Advisory position with an amazing Security Champions startup and consulting service!

Jul 2023 – Aug 2025 · 2 yrs 1 mo · Remote

• I speak at conferences and community events, create content, such as courses for Semgrep Academy, and contribute to the community on behalf of Semgrep.

Oct 2022 – Jan 2024 · 1 yr 3 mos

• Threat modelling for every dev!

May 2022 – Present · 3 yrs 10 mos · Victoria, British Columbia, Canada · Remote

• Specializing in live, virtual security training for software developers and security professionals, Tanya Janca injects a captivating blend of expertise and humour into her secure coding education. Her newly updated and expanded training, inspired by the content from her new book "Alice and Bob Learn Secure Coding," covers a wide array of topics including how to secure web apps, APIs, mobile, serverless, and an extensive list of programming languages and frameworks (list below).
• With a keen focus on learnings that help students do their jobs more securely (rather than 'hacking', exploits, or other trendy topics), Tanya's sessions integrate in-depth lectures, lively discussions, and extensive code reviews to analyze the spectrum of "bad, better, and great code." Some classes include hands-on time with various security tools, depending on the needs of the organization.
• As a former professional entertainer, Tanya brings an element of fun and humour to her classes, ensuring that learning is engaging and enjoyable. Tanya's training is designed to ensure long-term knowledge retention via several well-known learning strategies, which include micro breaks, recall exercises, cheat sheets, quizzes, and special opportunities to apply recently learned concepts, to guarantee practical knowledge retention, regardless of the timeframe.
• Unlock a realm of dynamic and effective secure coding training with She Hacks Purple Consulting – where learning is far from standard and definitely not boring!
• Deep dives available into the following topics:
• · API Security
• · Javascript
• · HTML/CSS
• · Python
• · SQL
• · Node.js Framework
• · Java
• · TypeScript
• · C# & .Net Framework
• · PHP
• · C/C++
• · Express
• · React.js
• · Angular
• · Vue.js
• · .Net CORE
• · Spring Boot
• · Flask
• · Mobile (both IOS and Android)
• · Serverless
• · Iot
• · Web Sockets

Feb 2020 – Feb 2024 · 4 yrs · Victoria, British Columbia, Canada

• We Hack Purple was a learning platform dedicated to teaching Application Security, DevSecOps, and Cloud Security.
• Acquired by Semgrep.

Jan 2020 – Jul 2023 · 3 yrs 6 mos

Oct 2019 – Nov 2025 · 6 yrs 1 mo · West Coast, Canada

Oct 2019 – Dec 2019 · 2 mos · Canada, West Coast

• A short-lived product startup aimed at solving the software inventory problem.

Feb 2018 – Oct 2019 · 1 yr 8 mos · Ottawa, Canada Area

• Evangelizing software security
• Advocating for developers
• Contributing to the open source community
• Security research
• Working hard to ensure the easiest way to do something is also the most secure way.

Jul 2014 – Feb 2018 · 3 yrs 7 mos · Gatineau, Quebec

• --

Nov 2004 – Jul 2014 · 9 yrs 8 mos · Ottawa, Canada Area

Apr 2003 – Nov 2004 · 1 yr 7 mos · Ottawa, Canada Area