We’re looking for an experienced Security Engineer with at-least 5+ years of experience to join our Product Engineering teams to help keep our products secure.
Responsibilities:
Perform manual and automated application penetration tests and provide suggestions to harden our products
Participate regularly in development and release process to identify and report security vulnerabilities in the code being shipped
Conduct regular audits on all Features/APIs of the product and reports vulnerabilities to the development team
Keep up with industry trends in the security space
Triage inbound vulnerability reports with appropriate level of urgency and track them until they are resolved by Engineering teams
Should be able to understand different elements of our NodeJS, Python and similar stacks and provide guidance on secure software development practices to the team
Scale our application security engineering team
Requirements:
Strong verbal and written communication skills
Has worked on Web Application Security Testing for a reasonably complex application. Mobile experience is a plus
Good knowledge of secure software development guidelines from authoritative bodies like NIST, OWASP, SANS
Hands on experience in performing manual / automated security assessments with open-source / commercial security tools