Full-Time

Senior Application Security Engineer

Posted on 8/6/2024

Wikimedia Foundation

Wikimedia Foundation

501-1,000 employees

Operates Wikipedia and free knowledge projects

Social Impact
Education

Compensation Overview

$109k - $169.5kAnnually

Senior

Remote in USA

Hiring available in multiple countries including the USA.

Category
Cybersecurity
IT & Security
Required Skills
JavaScript
Linux/Unix
Requirements
  • Two or more years of application security experience, including thorough understanding of issues documented in the OWASP Top Ten and CWE Top 25
  • Strong understanding of modern, object-oriented PHP development
  • In-depth experience developing or auditing JavaScript
  • Demonstrated ability to exploit and mitigate application-level vulnerabilities
  • Experience conducting software security reviews using a combination of source code inspection, manual testing, and automated scanning
  • Patience in explaining security issues and their implications on privacy to non-technical audiences
  • Sensitivity to the security challenges faced by participants in a large, international project
  • Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation
  • Experience using Linux at the command line for tasks related to web application development and deployment
  • Ability to maintain focus when working remotely
Responsibilities
  • Triage and remediate reported security issues
  • Review and deploy features developed by the Foundation and community members
  • Work with other development teams to ensure that they make safe architectural and implementation choices
  • Test and evaluate our software to find bugs before attackers do
  • Provide application security concept reviews and help socialize application security best practices
  • Provide support for application security incidents and operations

The Wikimedia Foundation operates Wikipedia and other free knowledge projects, aiming to create a world where everyone can freely access and share knowledge. It provides a platform for users to read, contribute, and share content, while also supporting the volunteer communities that help maintain these projects. The foundation is funded by donations from individuals and institutions, emphasizing its nonprofit status. Unlike many other organizations, it focuses on making knowledge accessible to all without charge, advocating for policies that support free knowledge initiatives. Its goal is to empower individuals to contribute to and benefit from a collective pool of knowledge.

Company Stage

Grant

Total Funding

$145.9M

Headquarters

San Francisco, California

Founded

2003

Simplify Jobs

Simplify's Take

What believers are saying

  • Nvidia's NeMo Retriever tech reduced Wikipedia processing time from 30 days to 3 days.
  • Holistic AI's audit under the DSA enhances Wikimedia's platform safety and accountability.
  • Collaboration with Open Foundation West Africa combats misinformation during Ghana's elections.

What critics are saying

  • Reliance on Nvidia's AI tech may affect Wikimedia's data processing autonomy.
  • DSA audit could reveal vulnerabilities requiring significant resources to address.
  • Decentralized platforms like Mastodon may divert users from Wikipedia.

What makes Wikimedia Foundation unique

  • Wikimedia Foundation operates the world's largest free online encyclopedia, Wikipedia.
  • It supports a diverse range of projects like Wiktionary and Wikisource.
  • The Foundation is a non-profit, relying on global donations for funding.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Remote Work Options

INACTIVE