Security Engineer: App Sec Lead

Experience creating, building, or scaling an application security program in a cloud-first organization Primary Coding Language: Javascript (NodeJS/Typescript) and Python Experience with threat modeling and architecture reviews Experience working with engineering and technical leadership to build security processes like vulnerability management Deep understanding of web and API-based security vulnerabilities Experience architecting (and maybe even building) access management and authorization systems

Choose and roll out App Sec tools Create and mature security program processes (vulnerability management, architecture reviews, pentesting, threat modeling) Perform code reviews and bug fixing Build and POC secure coding methods Re-imagine user permissioning and authorization Balance business requirements with security controls Create a pentesting and/or bug bounty program Integrate security checks and tooling into developer workflows