Product Security Engineer
Remote
Posted on 5/23/2023
INACTIVE
Enova

1,001-5,000 employees

AI-powered financial lending platform
Company Overview
Enova is a mission-driven organization helping hardworking people get access to fast, trustworthy credit.
AI & Machine Learning
Data & Analytics
Financial Services

Company Stage

N/A

Total Funding

$400M

Founded

2004

Headquarters

Chicago, Illinois

Growth & Insights
Headcount

6 month growth

2%

1 year growth

8%

2 year growth

30%
Locations
Chicago, IL, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Kubernetes
Python
JavaScript
React.js
Ruby
SQL
Java
Postgres
AWS
CategoriesNew
DevOps & Infrastructure
Software Engineering
Requirements
  • Experience with security testing tools such as Kali, Metasploit, Burp Suite, OWASP ZAP, etc
  • Proficiency with application pen testing and vulnerability assessments
  • Experience with OWASP security concepts and discovering vulnerabilities such as XSS, XSRF, SQL Injection, Cookie Manipulation, etc
  • Understanding of static code analysis products
  • Experience with Python, Go, Java, Ruby, JavaScript, PostgreSQL, React etc
  • Experience in Container security and cloud security/architecture patterns
  • OSCP, OSWE, SANs, AWS Security Speciality Certification, Certified Kubernetes Security Specialist (CKS)
  • Experience with threat modeling and attack surface design
Responsibilities
  • Be a DevSecOps Evangelist
  • Conduct code reviews and security testing for new projects and initiatives
  • Knowledge of Integrating Security Testing into the CI/CD Pipeline
  • Expertise in API Security testing
  • Automate security testing and embed security testing into the SDLC
  • Collaborate with architects, product managers, and other teams to deliver high quality secure product
  • Provide and Guide Secure Architecture Reviews
  • Perform internal/external application penetration tests
  • Lead projects independently while working collaboratively with the team to ensure its success
  • Run annual application security training for software developers