Senior Application Security Engineer

About the Role

Requirements

• Bachelor’s or Master’s degree in Computer Science Engineering or a related field
• 5+ years of experience in application security or related fields
• Strong understanding of web mobile and cryptographic security fundamentals (e.g. OWASP Top Ten SANS/CWE Top 25)
• Hands on experience with security testing tools and methodologies (static dynamic analysis pen testing)
• Proficiency in programming and scripting languages (Java JavaScript Python preferred)
• Experience with cloud and containerized environments (AWS GCP Docker Kubernetes)
• Excellent communication skills and ability to influence and collaborate across teams

Responsibilities

• Partner with engineering and product teams to design and build secure systems across web mobile and backend environments
• Lead threat modeling code reviews and vulnerability assessments to identify and mitigate risks early in the SDLC
• Define and evolve secure development practices including tooling automation and developer education
• Investigate and respond to application security incidents drive root cause analysis and implement long term preventive measures
• Evaluate new security technologies and approaches to continuously raise application and protocol security
• Mentor engineers and foster a culture of security awareness and shared responsibility

Benefits

• Company paid medical dental and vision for you and your dependents
• Gym subsidy
• 401(k) with 4% employer contribution
• Annual $1,500 education stipend
• Unlimited and encouraged time off
• Up to 16 weeks paid parental leave
• Home office setup stipend for remote employees
• Daily lunches at New York headquarters
• Eligibility for equity and tokens (dependent on position type)

Skills