We are looking for a talented Senior Application Security Engineer to develop, design and implement security touch points into the product and support the trajectory of our new unified cloud product while maturing the existing on-premise product.
This role will primarily focus on application security, and there will be plenty of opportunity to expand into other areas of Security Operations (Vulnerability management, Bug bounty and Incident response) and Security IT (Configurations, SaaS security tooling and overall automation).
What will you do?
Partner with the security team to understand the organizational mission, attack surface and helping define the appropriate risk-based security initiatives.
Spend time with the engineering and product team to get up-to-speed on our technology stacks and current security controls.
Requirements:
Experience working as a security engineer, consultant or similar position.
Security mindset as a business enabler and as part of the core security foundation.
Effective communication style and action driven abilities.
Hands-on experience in configuring and hardening cloud-based infrastructure (AWS, Google Cloud, Azure, etc.).
Experience with container technology (Kubernetes).
Strong experience in Python, Java, JavaScript, Go and Ruby on Rails.
Demonstrated capability in secure coding (input validation, session management, etc.) and performing automated or manual static analysis.
Hands-on experience in conducting penetration testing and vulnerability assessment at the network and application layers.
Ability to dissect new systems, product requirements, features to identify and develop security requirements.