04 Nov
Principal Application Security Engineer ( Full remote)
New York, Nycnewyork , 10001 Nycnewyork USA

Job Description:

Who you are You are an experienced application security engineer with a strong development background and a vision of how modern applications should be built and secured. You have a deep understanding of how a cloud native, containerized, multi-tiered application should be architected and are passionate about cutting edge technology. You have proven experience working across engineering teams to help drive security initiatives at all levels of the organization. You understand that application security is much more than using tools to identify vulnerable libraries and packages. You work well in demanding, fast-paced environments with rapidly changing requirements. You remain calm under pressure, and enjoy problem solving in complex situations.

Responsibilities
  • Provide technical leadership to help shape and research intelligent solutions for clients robust cybersecurity program with a commitment to continuous improvement.
  • Responsible for promoting, designing, and evaluating application security in all phases of the application life cycle.
  • Help drive the approach to application security, authentication, and secure development practices across a wide variety of distributed services.
  • Conduct security reviews and continuously build relationships across the engineering organization.
  • Provide reporting to executive leadership on current program/project status.
  • Identify risks and gaps within our current state platform and drive future state enhancements.
  • Help architect a big-data solution to meaningfully capture and surface security events across terabytes of event logs.

Skills & Experience
  • Humility and common sense.
  • A strong development background.
  • Expert understanding of authentication technologies, service mesh, OWASP attack TTPs, API design, modern web applications, and secrets management.
  • Expert knowledge of modern cloud infrastructure, containers, and SaaS applications.
  • Experience managing large projects involving numerous stakeholders and tight deadlines.
  • Understanding of common DevOps tools with ability to contribute to automated workflows and the desire to contribute to production Dev-Sec-Ops projects.
  • Expert knowledge of and experience in implementing SDLC best practices.

Why you should work here:
  • We recognize and reward hard work with:
    • company paid benefits for employees and their dependents, including medical, dental, vision, disability and life insurance
    • 401(k) savings plan with company matching
    • flexible spending account for out-of-pocket medical, transit, parking and dependent care expenses
  • We want you to be your best, authentic self by supporting you with:
    • a diverse, driven, and passionate team of coworkers who want you to succeed
    • individual learning and development fund and professional training
    • generous paid time off; including sick leave and 100% company paid parental leave
    • remote working friendly perks such as expanded telehealth options for mental and physical well being, virtual yoga, meditation and health and fitness app reimbursements
and this is just to name a few!


Related jobs

Report job