Remoote.app

Work from anywhere. Start here.

JobsFree resume builderCompaniesLog in
Apply

Senior Application Security Engineer

Posted 2024-08-30

View full description

πŸ’Ž Seniority level: Senior, Two or more years of application security experience

πŸ“ Location: Australia, Austria, Bangladesh, Belgium, Brazil, Canada, Colombia, Costa Rica, Croatia, Czech Republic, Denmark, Egypt, Estonia, Finland, France, Germany, Ghana, Greece, India, Indonesia, Ireland, Israel, Italy, Kenya, Mexico, Netherlands, Nigeria, Peru, Poland, Singapore, South Africa, Spain, Sweden, Switzerland, Uganda, United Arab Emirates, United Kingdom, United States of America, Uruguay

πŸ’Έ Salary: 109047 - 169455 USD per year

πŸ” Industry: Nonprofit, Technology, Open Source

πŸ—£οΈ Languages: English

⏳ Experience: Two or more years of application security experience

πŸͺ„ Skills: PHPSoftware DevelopmentBashCybersecurityJavaJavascript*NixOAuthC (Programming language)Linux

Requirements:
  • Two or more years of application security experience, with knowledge of OWASP Top Ten and CWE Top 25
  • Strong understanding of modern, object-oriented PHP development
  • In-depth experience developing or auditing JavaScript
  • Demonstrated ability to exploit and mitigate application-level vulnerabilities
  • Experience conducting software security reviews using source code inspection, manual testing, and automated scanning
  • Ability to explain security issues to non-technical audiences
  • Sensitivity to security challenges in large, international projects
  • Strong understanding of cryptography in web application security
  • Experience using Linux for web application development and deployment tasks
  • Ability to maintain focus while working remotely
Responsibilities:
  • Triage and remediate reported security issues
  • Review and deploy features developed by the Foundation and community members
  • Work with other development teams to ensure safe architectural and implementation choices
  • Test and evaluate software to find bugs before attackers do
  • Provide application security concept reviews and promote application security best practices
  • Provide support for application security incidents and operations
Apply

Related Jobs

Apply
πŸ”₯ Senior Application Security Engineer (Remote)
Posted 2024-11-13

πŸ“ United States

🧭 Full-Time

πŸ” Dating products

  • Technical background in security with experience in writing security-adjacent code.
  • Creative approaches in performing quick and impactful work.

  • Help ensure the highest standard of security for Match Group products.
  • Work spans across applications, infrastructure, devices, vendors, and anything else potentially at risk.

PythonSoftware DevelopmentCybersecurityCommunication SkillsAnalytical SkillsCollaborationProblem SolvingAttention to detailOrganizational skillsTime ManagementWritten communicationDocumentation

Posted 2024-11-13
Apply
Apply
πŸ”₯ Senior Product Security Engineer
Posted 2024-11-07

πŸ“ US

🧭 Full-Time

πŸ’Έ 188000 - 230000 USD per year

πŸ” Mental healthcare technology

🏒 Company: Headway

  • 5+ years experience in security and/or software engineering roles with a focus on security-related projects.
  • Strong cross-functional collaboration skills.
  • Technical experience in building secure platforms and products.
  • Ability to tackle ambiguous problems in a fast-paced environment.
  • Drive innovation in security and privacy technologies.

  • Partner with Product and Engineering teams to implement secure features and conduct security reviews.
  • Develop and improve automated tooling for application security.
  • Define and build application guardrails for secure development.
  • Assist in ongoing security operations including incident response and vulnerability management.

AWSPythonKafkaTypeScriptFastAPIPostgresProduct designRedisReactSpark

Posted 2024-11-07
Apply
Apply
πŸ”₯ Senior Application Security Engineer
Posted 2024-10-25

πŸ“ New York City, California, Colorado, Washington

πŸ’Έ 160000 - 200000 USD per year

πŸ” Visual collaboration software

  • 5+ years experience in a product security focused role.
  • Experience with product security at a multi-tenant SaaS company preferred.
  • Experience with vulnerability management.
  • Deep understanding of web application and mobile application security risks.
  • Deep understanding of Linux, Networking, Cryptography, and Cloud Architecture fundamentals.
  • Software development experience with Node.JS or other frameworks like React, Angular, etc. is preferred.
  • Familiarity with MongoDB, Node.JS, Ruby, and/or Python is preferred.
  • Excellent command of English, both written and verbal.

  • Performing security reviews of Mural product features and architecture.
  • Manage and operate our bug bounty program.
  • Lead penetration testing and manage any risks to remediation.
  • Implementation and operation of SAST and DAST technologies in the CI workflow.
  • Working closely with Engineering teams to track and manage product risks to remediation.
  • Working closely with Engineering to increase coverage of security testing.
  • Communicating and nurturing relationships with security researchers, customers, and other stakeholders.
  • Producing metrics to help track the health of our product vulnerability management strategy.
  • Educating and evangelizing secure coding best practices.

Node.jsSoftware DevelopmentMongoDBRubyStrategyAngularReactLinux

Posted 2024-10-25
Apply
Apply
πŸ”₯ Senior Application Security Engineer
Posted 2024-10-20

πŸ“ Brazil

πŸ” Corporate wellness

🏒 Company: Wellhub

  • Experience designing and implementing security controls for CI/CD pipelines and micro-services infrastructure.
  • Experience with SAST, DAST, and Vulnerability Scanners.
  • Experience with Code Review.
  • Background as a Software Developer.
  • Experience with Public Cloud infrastructure (preferably AWS).
  • Knowledge in Linux, containers, and networking.
  • Proficiency in modern programming languages (Java, Go, Python, etc.).
  • Knowledge of cybersecurity frameworks like OWASP and Mitre’s ATT&CK.
  • Knowledge of Security Champions programs.
  • Experience with Infrastructure as Code.
  • Fluency in English and Portuguese.

  • Help define the DevSecOps strategy and security architecture eliminating vulnerabilities within applications from early development stages.
  • Ensure successful deliveries and promote long-term technical health of projects.
  • Provide security practices at all stages of the software development process.
  • Develop and implement tools and processes that facilitate collaboration between developers, security experts, and operations teams.

AWSPythonSoftware DevelopmentCybersecurityJavaStrategyGoCollaborationCI/CD

Posted 2024-10-20
Apply