Senior Application Security Engineer (JavaScript/TypeScript)

View full description

Requirements:

• Excellent written and verbal communication skills in English.
• Deep technical knowledge in web application security.
• Experience in developing and/or securing web applications written in JavaScript/TypeScript.
• Basic knowledge of Docker and container security.
• Previous experience with threat modeling, testing, and analyzing server-side applications.
• Ability to identify flaws in software and effectively communicate solutions.
• Experience working closely with engineering teams throughout the Software Development Life Cycle.
• Team player with a hands-on and can-do attitude.

Responsibilities:

• Be part of a dedicated application security team responsible for enhancing the product security of LastPass.
• Work closely with engineering and platform teams to understand their application security needs.
• Utilize knowledge of security architecture to ensure secure product development.
• Conduct application security design reviews, threat modeling, and code reviews.
• Debug and troubleshoot complex server-side applications written in JavaScript/TypeScript.
• Apply penetration testing skills to strengthen internal and external applications.
• Support the bug bounty security researcher community.