Senior Product Security Engineer, Assessments
Coinbase
CloudCyber SecurityGoJavaScriptOpen SourcePythonRubyWeb3
Associate Security Engineer, Application Security
GitLab
full-time
Posted on:
Origin: • 🇺🇸 United States
Visit company websiteSalary
💰 $82,900 - $125,800 per year
Job Level
JuniorMid-Level
Tech Stack
GoJavaScriptRubyRuby on RailsSDLCTypeScript
About the role
- The Application Security team works with GitLab engineers and product teams to anticipate and prevent the introduction of vulnerabilities during design and development, ensuring delivery of high quality software GitLab customers can trust.
- The individual will assist with security-focused code reviews and threat models under guidance from senior team members
- Manage triage of inbound new issues
- Support product and development teams in basic application security activities
- Help reproduce and document application security vulnerabilities clearly and constructively
- Participate in bug bounty program triage and initial assessment
- Support security release preparation activities
- Contribute to documentation and security process improvements
Requirements
- Ability to use GitLab effectively
- Basic development or scripting experience (Ruby, Ruby on Rails, TypeScript, JavaScript, and/or Go preferred), and an ability to read and understand code for security review purposes
- Foundational understanding of common security vulnerabilities and security impact frameworks (e.g., OWASP Top 10, STRIDE)
- Basic familiarity with security tools and concepts
- Strong written and verbal communication skills, and a collaborative mindset that enables you to work well with software development teams
- Ability to learn quickly and adapt to new technologies
- Bachelor's degree in Computer Science, Information Security, or related field, or equivalent practical experience
- 0-2 years of experience in application security, software development, or related field
- Basic understanding of software development lifecycle processes
- Familiarity with common security frameworks and standards (CVE, CWE, CVSS, etc)
Similar jobs on JobTailor
Application Security Engineer
Lumin Digital
AWSCyber SecurityJavaJavaScriptSDLCSwiftTypeScript
Application Security Engineer, AppSec
AND Digital
SDLC
Staff Cybersecurity Engineer
PayPal
AndroidAWSAzureCloudCyber SecurityGoJavaJavaScriptNoSQLPythonRubySDLC+1 more
Senior Security Engineer, AppSec
Xero
CloudGoJavaJavaScriptJenkinsMicroservicesPythonSDLC