Facebook pixel

🔏 Application Security Engineer/Architect
Confirmed live in the last 24 hours
San Francisco, CA, USA • Oakland, CA, USA
Experience Level
Desired Skills
Quality Assurance (QA)
  • Bachelor degree in Computer Software, Information Science, Cybersecurity or equivalent
  • 2+ years' experience in secure cloud application development
  • 2+ years' experience as an application security engineer
  • Expert knowledge of security problems associated with modern web languages and frameworks, including but not limited to JavaScript (front and backend), Java, Go, Python and others
  • Expert knowledge of microservice architecture, containerization, cluster orchestration, Kubernetes, Docker, and/or Terraform
  • Knowledge of penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, and Whitebox exploitation
  • Excellent ability to discover, demonstrate flaws, and remediate common vulnerabilities in OWASP 10 and SANS 25
  • Thorough understanding of common security risks in cloud applications and web APIs
  • Solid understanding of security protocols, cryptography, authentication, authorization
  • Experience with testing methods such as SAST/DAST/IAST
  • Experience working in CI Systems such as Jenkins
  • Review and contribute to application designs and solutions
  • Excellent collaborative skills
  • Excellent written and verbal communication
  • Work at a cutting edge conversational AI company
  • Work closely with the engineering teams to implement and enforce the security and privacy throughout all stages of the application development lifecycle
  • Identify and define application security requirements and security baselines
  • Perform application security reviews on architecture, threat model, coding, QA and deployment. Provide insights on security best practice throughout all phases of software development
  • Perform penetration tests and security scans including static code scans, dynamic web interface scans, open source package scans and dependency package scans
  • Develop and enhance new and existing security-focused tools, systems, and services
  • Develop new security solutions/tools to prevent security vulnerabilities and assist in addressing existing security problems
  • Help detect, highlight, and close security vulnerabilities that surface during the software development lifecycle
  • Create and maintain the application security documentation
Desired Qualifications
  • Experience at an early-stage startup
  • Working knowledge of Go, Python, Java Script or C++
  • Experience in one or more security frameworks: HIPAA, HITRUST, ISO, NIST, PCI, or similar
Conversational AI technology