Desired Skills and Experience
- Create secure design patterns and libraries for cloud applications in areas such as data protection, key management, authentication and authorization
- Define and design security code analysis tools and framework
- Perform penetration testing and static code analysis.
- Conduct architecture reviews and white box security testing to assess and validate application security
- Monitor and track progress of found vulnerabilities and maintain the history
- Explain and demonstrate vulnerabilities to application/system owners, and provide recommendations and solution prototypes for mitigation
- Issue reports on assigned application and system scans
- Define, maintain and enforce application security best practices
- Experience in application-focused security: authN/authZ, identity management, PKI, encryption
- Experience in penetration testing and static code analysis.
- Understanding of major applications security threats and most common vulnerabilities.
- Expertise in JAVA and/or Python
- Hands on experience with security tools.
- Experience in working with cloud development teams in the area of vulnerability management.
- Good understanding of SaaS development and deployment process
- Flexible vacation - take time off when you need it
- Exceptional medical benefits with 100% employer paid premiums
- Commuter benefits for public transit and bicycle commuters
- A stipend, reissued every 3 years, to buy whatever workplace tools (computer, screens, wireless headphones, desks, chairs, etc) you like
- Free lunches, dinners, and fully stocked snacks & beverages
- Lounge areas with ping pong, foosball, pinball, and arcade games
- Company ski trips, boat parties, BBQs, happy hours, game nights… just to name a few!