Senior Security Professional
The Application Security team works with engineers and product teams to anticipate and prevent the introduction of vulnerabilities during design and development, ensuring delivery of high quality software customers can trust.
Key Responsibilities:
* Conduct security-focused application design and architecture reviews, threat modeling, code review, and security testing assessment.
* Prioritize and propose secure development practices, identify and develop paved roads and security standards that support Product and Engineering teams to deliver secured features at a high velocity.
* Help secure software supply chain and improve security workflows and controls of our supply chain security.
What You'll Bring:
You have a solid understanding of computer code and how to detect and remediate classes of security defects, race condition based logic vulnerabilities etc.
You are comfortable using Git and experience with standard web application security tools such as Brakeman and BurpSuite.
You have professional experience in a computer technology field including IT, technical support, or engineering and strong knowledge of application security concepts such as OWASP Top 10 bug types, the STRIDE model, CVSS scoring, and Threat Modeling assessments.
You are able to provide subject matter expertise on software architecture design and system security and communicate effectively with both technical and nontechnical audiences across multiple teams.
We Offer:
* Benefits to support your health, finances, and well-being.
* Flexible Paid Time Off.
* Team Member Resource Groups.
* Equity Compensation & Employee Stock Purchase Plan.
* Growth and Development Fund.
* Parental leave.
* Home office support.