Perform full stack security assessments including architecture and design reviews and penetration tests across various environments such as Web/SaaS applications, OS and hardware platforms, network infrastructure, authentication services, and public cloud infrastructure.
Develop automated processes and support tooling improvements.
Collaborate with engineering teams to ensure secure development practices.
Define technical security standards with business partners.
Research emerging threats and vulnerabilities for process improvements.

Requirements

2-4 years of experience in a security role focused on application and network security, penetration testing, security engineering, infrastructure engineering, threat modeling, red team operations, firewall/access control technologies, risk management, or endpoint security controls.
Knowledge of common network security models and protocols, application security, integrity resolution, confidentiality, operating systems internals and vulnerabilities, public key infrastructure and digital certificates, exploit mitigation techniques.
Hands-on experience performing security assessments with tools like BurpSuite, Nexpose, Nessus, Metasploit, and Nmap.
Experience performing code reviews (Java, JavaScript, Python, and others).
Experience designing solutions in cloud environments (AWS, Azure, Google Cloud).
Excellent communication skills, with the ability to collaborate effectively with diverse stakeholders.

Benefits

time off programs
medical, dental, vision
mental health support
paid parental leave
life and disability insurance
401(k)
employee stock purchasing program

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

penetration testingsecurity engineeringinfrastructure engineeringthreat modelingred team operationsfirewall technologiesaccess control technologiesrisk managementendpoint security controlscode reviews

Soft Skills

communicationcollaboration