Search Jobs

Software Engineer - Application Security


This role has been filled.

Thanks for your interest. Please return to our Development page for other positions you may be interested in, or submit your resume now for future openings.

 


 

A successful Senior Security Engineer candidate is passionate about, and has experience in, application development with a focus on security, experience with Cloud-based solutions (SaaS), and knowledge of vulnerability management practices and standard application controls.

Responsibilities:

  • Working with engineering teams to implement security features in the product
  • Supporting overall product security architecture
  • Promoting secure coding practices
  • Performing security focused code reviews
  • Evaluating and assessing security technologies and tools to support the engineering effort
  • Demonstrating and championing standards and best practices
  • Writing code that is as secure as it is functional and testable
  • Working with engineering teams to deliver product features
  • Owning the development and delivery of application security initiatives
  • Raising the security awareness throughout engineering
  • Communicating effectively and friction-free to peers and across the organization
  • Demonstrating flexibility and quickly adapting to change
  • Thriving on being accountable for results
  • Quickly earning and maintaining the trust of others
  • Respectfully challenging ideas, decisions, and the status quo

Requirements: 

  • 5+ years in application development with a focus on security
  • Experience in Java/C# and/or web technologies and frameworks eg, Javascript, React
  • Passionate about application security
  • Experience with Cloud based solutions (SaaS)
  • Familiar with Agile/Scrum software development
  • BS or MS degree in computer science or mathematics, or relevant experience
  • Knowledge of OWASP Top 10 and/or SANS Top 20 application controls
  • Strong verbal and written communication skills

Preferred Skills:

  • Experience with OAuth, SAML or OpenID Connect implementations
  • Experience with Cryptographic APIs
  • Experience working with PKI, X509 Certificates and Certificate Authorities
  • Experience with Threat Modeling
  • Experience with security in microservice architectures
  • Awareness of US Federal certification on products eg NIST, FIPS, Common Criteria, FedRamp, SOC2
  • Experience with C/C++, systems programming
 

Apply for this job