Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Application Security Engineer

S

SourceDirect Talent

Application Security Engineer

San Francisco, CA
Full Time
Paid
Similar Jobs
  • Responsibilities

    Our client is a fast pace Silicon Valley-based startup with over $100 million in venture financing and is currently experiencing exceptional growth due to both industry growth and covid19. They are in the business of replacing obsolete equipment with technology that's smart, secure, and easy to manage in the cloud. They are now seeking to hire an Application Security Engineer to be part of the new exciting security team reporting into the CISO directly.

    Responsibilities:

    • Facilitate the security baked into our client's applications throughout the software development lifecycle
    • Evangelize software security best practices through training and information sharing
    • Partner closely with engineering and product teams to improve the security of products and exceed customers' expectations
    • Collaborate with other engineering leaders to define, communicate, and execute on goals, priorities and process
    • Set up security tooling and secure defaults to ensure software security best practices
    • Perform architecture analysis, threat modeling and technical design reviews of sensitive features and infrastructure
    • Create and operate a bug bounty program
    • Triage and recommend solutions for security bugs from tools, third party assessments and bug bounties
    • Collaborate with the CISO and security team to grow the broader security program
    • Share your security experience with other teams internally and externally via security conferences and blogs
    • Help your peer engineers grow their own security reasoning and knowledge

    Qualifications:

    • Bachelor of Science in Computer Science degree or equivalent
    • Strong experience with AWS, GCP or other cloud service provider
    • 5+ years of experience as a security engineer, software engineer, site reliability engineer, or security consultant
    • Understanding of security weaknesses, exploits, attacks and mitigations
    • Experience and enthusiasm for learning about new security products, features, and strategies;
    • Coding ability. You will sometimes write production Python/Go code, security peer-review code, build proofs of concept or implement automation scripts
    • Excellent collaborative skills
    • Outstanding written and verbal communication
    • Experience with most of the following: Security Development Lifecycle, Threat Modeling, Architecture Analysis, Technical Design Review, Security Code Review, Open Policy Agent, SIEM

    Our client is an equal opportunity employer and values diversity. We and our client do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status, and encourage all qualified applicants to apply