Our dedicated security team is new… really new. So, if you want to join a team that you’d be able to influence security practices, processes, and technologies at the infrastructural level, this role is for you. Application Security Engineers  are responsible for working with engineers to design, build, advise and review security concerns across a diverse variety of projects.  

You will be relied upon to provide engineering and product teams with the security expertise necessary to make confident product decisions. You will be finding security vulnerabilities through manual review, tools you build or 1:1s with other engineers. You will write code to systemically fix and track security issues across the codebase. You will advise teams on the best way to build something to prevent future security issues.

WHAT YOU'LL BE DOING:

• Investigate and understand our newest projects and technologies and give security guidance to ensure that they are as robust as possible.

• Perform code and design reviews of internally developed applications.

• Develop security tools to find or fix security issues en masse.

• Create automated tests to encourage and enforce security standards.

• Develop security training and education for our software engineers.

• Ensure that identified issues are prioritized and addressed in an appropriate timeframe.

• Interact directly with the security community regarding vulnerabilities and threats

• Ultimately being A champion for security across the whole business

PROGRAMMING LANGUAGE FOCUS:

• Java, AngularJS

HERE ARE THE KINDS OF SKILLS WE'RE LOOKING FOR:

• You enjoy both breaking and building.

• Strong knowledge of web application security issues.

• Willing to compromise when it's necessary and hold firm when it's essential.

• You are interested in teaching security since we’re all in this together.

• Excellent communication skills.