Security Engineer - Remote at SemanticBits () (allows remote)
Desired Skills and Experience
- Collaborating with various teams to secure new platforms/applications
- Implementing platform security and framework improvements
- Implementing analysis and monitoring tools
- Working with engineering and QA teams to build tools and scale security in a continuous deployment environment
- Assessing the security of applications, APIs and platforms via penetration testing and code reviews
- Penetration testing
Static Analysis/Static Application Security Testing Vulnerability Assessment/Scanning Dynamic Analysis/Dynamic Application Security Test (DAST)
- Static Analysis/Static Application Security Testing
- Vulnerability Assessment/Scanning
- Dynamic Analysis/Dynamic Application Security Test (DAST)
Malicious Software Analysis
- Malicious Software Analysis
- Strong foundation in one or more of the following:
Data management security Authentication Applied cryptography Linux security Network & Cloud security
- Data management security
- Authentication
- Applied cryptography
- Linux security
- Network & Cloud security
- Strong engineering background preferred
- Application architecture experience preferred
- Advanced knowledge of Linux platforms
- Advanced knowledge of application mobile security tools
- Strong technical acumen securing software and hardware
- Understanding of software development and working experience with any one of the higher level programming languages or scripting
- A Bachelor’s degree or higher in Computer Science, Electrical Engineering, Information Assurance, Network Security Computer Engineering or related field, or equivalent experience
- Familiarity and experience with security technologies such as security engineering, security architecture, cryptography, data security, risk management, identity and access management, communication and network security, security assessment and testing, software development security, security operations
- Familiarity and experience with popular open source security projects such as jptables and Snort
- Thorough understanding of issues documents in the OWASP Top Ten and CWE Top 25
- Demonstrated ability to exploit and mitigate application-level vulnerabilities
- Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation
- Experience using Linux/Unix at the command line for tasks related to web application development and deployment (DevOps)
- Generous base salary
- Three weeks of PTO
- Excellent health benefits program (Medical, dental and vision)
- Education and conference reimbursement
- 401k retirement plan. We contribute 3% of base salary irrespective of employee’s contribution
- 100% paid short-term and long-term disability
- 100% paid life insurance
- FSA
- Casual working environment
- Flexible working hours
- Generous base salary
- Three weeks of PTO
- Excellent health benefits program (Medical, dental and vision)
- Education and conference reimbursement
- 401k retirement plan. We contribute 3% of base salary irrespective of employee’s contribution
- 100% paid short-term and long-term disability
- 100% paid life insurance
- FSA
- Casual Working Environment
- Flexible Office Hours
- Unlimited Coffee & Snacks