Job Title: Sr. Application Security Engineer Location: Seattle, WA or Vancouver, CN Duration: Full Time
DESCRIPTION As a senior security leader, you will
Solve security challenges at a massive scale in a security-first, infrastructure as code, 100% AWS environment Partner closely with our development teams to produce innovative and secure solutions Proactively perform security assessments to prevent security vulnerabilities Perform security testing before release Conducting trainings and hackathons to raise developer awareness of security best practices Be expected to be strong in multiple domains and will be sought out for advice on technical issues, Have excellent time management skills along with the ability to deliver results in the face of uncertainty, and Foster strong team culture A successful candidate will be a deeply curious individual who brings technical and leadership expertise, and ability to work within a fast-paced start-ups culture in a large company that has broad business impact. This is a rare opportunity to get in on the ground floor and start on the Payments innovation as a security leader.
BS in computer science, networking, information systems, computer engineering, or 6+ years equivalent experience Minimum of 6 years experience in identifying security issues and risks, and developing mitigation plans Minimum of 4 years experience in software architecture, design, implementation Minimum of 4 years experience in areas such as cryptography, application security, threat modeling, penetration testing Minimum of 4 years scripting or programming experience in Java, Python, Perl, Scala, or other languages Experience performing secure code review Hands-on experience using and/or securing AWS or other cloud computing environments Experience in executive communications or technical writing; clear, concise, and thorough written and oral communication skills. Results oriented, high energy, self-motivated
Experience with multiple programming languages (such as, Java, Python, C++, Scala, etc.) Experience with vulnerability risk and impact assessment Experience in driving large, cross-organization initiatives Ability to make concrete progress in the face of ambiguity and imperfect knowledge (avoid analysis paralysis) Strong information security risk-based prioritization abilities