🔏 Application Security Engineer/Architect

Confirmed live in the last 24 hours

Locations

San Francisco, CA, USA • Oakland, CA, USA

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

Docker

JavaScript

Jenkins

C/C++/C#

Java

Terraform

Kubernetes

Python

Quality Assurance (QA)

Requirements

Bachelor degree in Computer Software, Information Science, Cybersecurity or equivalent
2+ years' experience in secure cloud application development
2+ years' experience as an application security engineer
Expert knowledge of security problems associated with modern web languages and frameworks, including but not limited to JavaScript (front and backend), Java, Go, Python and others
Expert knowledge of microservice architecture, containerization, cluster orchestration, Kubernetes, Docker, and/or Terraform
Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, and Whitebox exploitation
Excellent ability to discover, demonstrate flaws, and remediate common vulnerabilities in OWASP 10 and SANS 25
Thorough understanding of common security risks in cloud applications and web APIs
Solid understanding of security protocols, cryptography, authentication, authorization
Experience with testing methods such as SAST/DAST/IAST
Experience working in CI Systems such as Jenkins
Review and contribute to application designs and solutions
Excellent collaborative skills
Excellent written and verbal communication

Responsibilities

Work at a cutting edge conversational AI company
Work closely with the engineering teams to implement and enforce the security and privacy throughout all stages of the application development lifecycle
Identify and define application security requirements and security baselines
Perform application security reviews on architecture, threat model, coding, QA and deployment. Provide insights on security best practice throughout all phases of software development
Perform penetration tests and security scans including static code scans, dynamic web interface scans, open source package scans and dependency package scans
Develop and enhance new and existing security-focused tools, systems, and services
Develop new security solutions/tools to prevent security vulnerabilities and assist in addressing existing security problems
Help detect, highlight, and close security vulnerabilities that surface during the software development lifecycle
Create and maintain the application security documentation

Desired Qualifications

Experience at an early-stage startup
Working knowledge of Go, Python, Java Script or C++
Experience in one or more security frameworks: HIPAA, HITRUST, ISO, NIST, PCI, or similar

We are looking for a passionate application security engineer/Architect with hands-on experience in cloud application architecture, cloud application development and cloud application security to improve the overall application security posture. At Infinitus, we encourage all engineers to take ownership over technical and product decisions, closely interact with users to collect feedback, and contribute to a thoughtful, dynamic team culture.

At Infinitus, you will:

Work at a cutting edge conversational AI company.
Work closely with the engineering teams to implement and enforce the security and privacy throughout all stages of the application development lifecycle.
Identify and define application security requirements and security baselines
Perform application security reviews on architecture, threat model, coding, QA and deployment. Provide insights on security best practice throughout all phases of software development.
Perform penetration tests and security scans including static code scans, dynamic web interface scans, open source package scans and dependency package scans.
Develop and enhance new and existing security-focused tools, systems, and services.
Develop new security solutions/tools to prevent security vulnerabilities and assist in addressing existing security problems.
Help detect, highlight, and close security vulnerabilities that surface during the software development lifecycle.
Create and maintain the application security documentation.

We are looking for someone who:

Bachelor degree in Computer Software, Information Science, Cybersecurity or equivalent.
2+ years’ experience in secure cloud application development.
2+ years’ experience as an application security engineer.
Expert knowledge of security problems associated with modern web languages and frameworks, including but not limited to JavaScript (front and backend), Java, Go, Python and others.
Expert knowledge of microservice architecture, containerization, cluster orchestration, Kubernetes, Docker, and/or Terraform.
Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, and Whitebox exploitation.
Excellent ability to discover, demonstrate flaws, and remediate common vulnerabilities in OWASP 10 and SANS 25.
Thorough understanding of common security risks in cloud applications and web APIs.
Solid understanding of security protocols, cryptography, authentication, authorization.
Experience with testing methods such as SAST/DAST/IAST
Experience working in CI Systems such as Jenkins
Review and contribute to application designs and solutions
Excellent collaborative skills
Excellent written and verbal communication

Nice to have:

Experience at an early-stage startup.
Working knowledge of Go, Python, Java Script or C++.
Experience in one or more security frameworks: HIPAA, HITRUST, ISO, NIST, PCI, or similar.

What we can offer you:

Competitive salary and pre-IPO stock options
100% company-paid medical, dental and vision insurance (for employee)
Mental & Behavioral Health Benefits
Flexible paid time off
Leave programs for life events
401(k)
Team Building Events & Happy Hours
A great company culture with a strong emphasis on diversity, equity and inclusion

Infinitus Systems, Inc. is an early stage startup building a voice automation platform to enable businesses to communicate with each other efficiently. Infinitus has raised $51.4M to date and is backed by Kleiner Perkins, Coatue Management and Google Ventures. Healthcare is one of the biggest contributors to the US GDP and we are on a mission to reduce the complexity and spend on healthcare backoffices. At Infinitus, you will have a unique perspective on the development of cutting edge technology while working with major players across the healthcare industry in the US.

Infinitus is made up of engineers, product managers, AI trainers, and operations specialists who collaborate on all kinds of projects. We not only encourage each other to do our best work, we also share our pet pictures, our favorite recipes, and stories from our vacations.

At Infinitus Systems, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. Infinitus Systems believes that diversity and inclusion among our teammates is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool.

Website

Conversational AI technology