Previous Job
Previous
Application Security Engineer
Ref No.: 18-00026
Location: NYC, New York
Position Type:Full Time/Contract
Start Date: 08/16/2018

Key Responsibilities
  • Guide product and engineering teams to building secure features through security architecture design reviews and threat modeling
  • Evangelize secure coding practices across all engineering teams
  • Build security into continuous integration and delivery pipelines
  • Use attack driven techniques to defend our applications and systems by discovering weaknesses in our web and mobile application portfolio
  • Participate in incident response and vulnerability remediation efforts.
  • Manage relationships with external security researchers
  • Build a security conscious engineering culture
  • Take a leadership role in driving security and privacy initiatives
 
Experience required
  • Detailed understanding of various web development frameworks
  • Minimum of 5 years of experience with any combination of the following: threat modeling, secure software development, application security
  • Experience with multiple programming languages (e.g., Scala, Java, Node, C#, Swift)
  • Substantial knowledge of web application attacks and defense strategies (e.g., the OWASP Top 10 and CWE Top 25)
  • Understand the people aspects of security and enjoy collaborating with others to build secure things
  • Contributions to the security community (e.g., research, CVEs, bug bounties, open source projects)