← All jobs

Security Engineer

 

We are looking for an experienced Security Engineer with a strong background in application security. Your responsibilities will include analyzing, reviewing, and developing secure applications, contributing to secure architecture designs, and recommending security measures and best practices to support a robust cloud platform.

Responsibilities

Drive awareness and education around secure coding practices
Perform security code reviews including secure library assessment
Audit and tune threat models
Perform vulnerability assessments. 
Write tests to ensure secure properties of an applications
Design, develop, and validate remediations for security issues
Lead security tooling adoption
Design and develop secure applications including cryptography, authentication, identity management, secret storage, and PKI
 
Minimum Qualifications

Experience with OWASP top ten and familiarity with CVEs
Experience building threat models
Experience performing vulnerability assessments. 
Experience with security scanning tools like: Nessus, Qualys, Metasploit
Experience with Intrusion Detection and Intrusion Prevention tools like: Snort, StackRox, CrowdStrike, Aporeto, Neuvector
Experience with microservices and cloud environments
Knowledge of data structures, algorithms, run-time optimization
Knowledge of OOP principles, knowledge of various languages such as NodeJS, Java C++, Python
Degree in Computer Science or related field (or in lieu of degree, 4 years of relevant work experience)
 
Preferred Qualifications

In depth and proven experience identifying and remediating security vulnerabilities
Experience with Docker or Rocket, Kubernetes or Swarm, and containers
Experience with penetration testing
Experience with Test Driven Development (TDD)
Experience with React and Node.JS
Experience with database security
Knowledge of Continuous Integration & Delivery methodologies
Knowledge of agile development methodology