Security Engineer, Application Security

New

United StatesFull-TimeMiddle

Salary100,000 - 200,000 USD per year

Apply NowOpens the employer's application page

Job Details

Required Skills: PythonJavascriptKotlinObjective-CRubySwiftTypeScriptC++GoRust

Application security assessment experience
Direct experience conducting low-level code security assessments of complex software, identifying and mitigating application and system-level vulnerabilities.
Hands-on experience performing manual code reviews to find vulnerabilities that automated tools miss.
Experience using static and dynamic analysis tools as part of a deeper review process, including knowledge of where these tools fall short and how to extend them.
Experience performing binary analysis and reverse engineering of compiled software.
Demonstrated experience identifying memory corruption vulnerabilities and reasoning about modern mitigations.
Deep experience reasoning about system internals, IPC, access control implementations, and platform security boundaries in complex software.
Experience performing architecture reviews and threat modeling of software systems and cloud environments.
Experience designing and building custom security tools for automated vulnerability detection.
Hands-on experience programming in two or more of Rust, Golang, Kotlin, Swift, Objective-C, JavaScript, TypeScript, Python, Ruby, C, or C++.
Experience translating complex security findings into clear, actionable recommendations for engineering and security teams.

Conduct comprehensive low-level code security assessments across applications, examining vulnerabilities in system services, access control implementation, inter-process communication, and platform security controls while developing mitigation strategies.
Design and implement custom security tools for automated vulnerability detection, focusing on both application-specific and general security testing needs to bridge the gap between vulnerability research and application security.
Perform detailed architecture reviews and threat modeling of complex software systems and cloud environments, identifying potential security weaknesses in areas such as data flows, authentication mechanisms, and API security while providing remediation guidance.
Work directly with industry-leading teams to review their application infrastructure and architecture, helping secure their environments through deep technical analysis and recommendations.
Contribute to the advancement of application security, developing new methodologies and tools while staying up to date with the latest security developments in both traditional and emerging technology ecosystems.

View Full Description & ApplyYou'll be redirected to the employer's site