Desired Skills and Experience
- Be a subject matter expert for application security
- Conduct internal security reviews and provide internal consulting
- Lead periodic external security audits
- Build and maintain security controls and instrumentation
- Threat modeling of new features
- Educate and advise our product teams on best practices
- Security incident response and forensics
- 6+ years total experience in application level vulnerability testing and auditing or application development
- 3+ years experience working with development teams that delivered consumer web applications
- 3+ years experience in application security
- Experience with the application of threat modeling or other risk identification techniques
- Experience with scripting and automation
- Detailed knowledge of security and penetration testing tools, mitigation techniques, and processes
- Deep understanding of common vulnerabilities in web and mobile applications and how to prevent them
- We are proud to be professional software developers building high quality, scalable, supportable solutions
- We embrace progressive engineering practices including a continuous deployment pipeline, automated testing and deployment. Our engineers just merge their branch and it ships.
- We’re serious about the quality of our production operation, and have thorough system, application and user interaction monitoring and anomaly detection.
- We’re thoughtful and focused on decision-making with split testing
- Our teams are integrated team with developers, product managers and designers working side-by-side.
- And, dogs in the office. Bring yours, too!
Apply