Information Systems Security Engineer
Northstrat Incorporated
CloudOpen SourceTCP/IPTypeScript
Senior Application Security Engineer
GlossGenius
full-time
Posted on:
Origin: • 🇺🇸 United States • California, New York
Visit company websiteSalary
💰 $180,000 - $230,000 per year
Job Level
Senior
Tech Stack
CloudTCP/IP
About the role
- Act as the initial security point of contact for engineering and product teams; conduct security-focused architectural reviews and threat modeling to identify and address vulnerabilities, working directly with development teams to find and fix issues.
- Contribute to the development of security policies and standards; create secure coding guidelines, build automated tools to prevent common security issues, and collaborate to embed security into CI/CD pipelines.
- Own end-to-end vulnerability management program; deploy scanning tools, triage security vulnerabilities, and support development of program tools and processes.
- Evaluate security vendors: run evaluations, coordinate demos, pilot tools internally, and recommend solutions.
Requirements
- 5+ years of experience in application or product security roles, preferably in high-growth, cloud-native environments
- Strong ability to collaborate effectively with software development teams
- Experience performing architecture reviews/threat models for custom software
- Excellent communication skills, both written and verbal, with the ability to clearly explain complex topics.
- Familiarity with common security libraries and tools, such as static analysis and penetration testing tools.
- Understanding of common security vulnerabilities and mitigation strategies (e.g., OWASP Top 10).
- Basic development or scripting skills.
- Fundamental knowledge of network and web protocols (e.g., TCP/IP, HTTP, HTTPS).
- Willingness to participate in on-call rotations as needed.
- A proactive approach to managing projects from start to finish with a focus on outcomes.
