Senior Engineer, Security

Collaborate with engineering, product, and operations teams to integrate security best practices into the software development lifecycle (SDLC) from design to deployment. Assess, and mitigate security vulnerabilities across our applications, systems, and infrastructure. Develop and implement security controls, tools, and automation to enhance our security posture. Stay up-to-date with the latest web security threats, vulnerabilities, and industry best practices. Champion security awareness and best practices across the engineering organization. Take ownership of security initiatives, driving them from conception to successful completion with minimal supervision. Bachelor's or Master's degree in Computer Science, Engineering, or a related field. 3-5+ years of professional software development experience, with a demonstrated focus or passion for security. Solid understanding of web application security principles (e.g., OWASP Top 10, common vulnerabilities like XSS, CSRF, SQLi). Proficiency in one or more programming languages (e.g., Python, Java, Go, JavaScript). Experience with secure coding practices, and code review processes. Strong problem-solving skills and the ability to think critically about security challenges. Excellent communication and collaboration skills. Proven ability to work independently, manage priorities, and deliver results in a fast-paced environment. A high sense of ownership and a proactive approach to identifying and addressing security concerns. Comfort and experience in making significant, potentially risky (though well-considered) changes to a live product environment. Experience with penetration testing tools and methodologies. Knowledge of cloud security (AWS, GCP, Azure). Experience with security technologies such as WAFs, IDS/IPS, SIEM, and vulnerability scanners. Familiarity with identity and access management (IAM) concepts and solutions. Contributions to open-source security projects or relevant certifications (e.g., CISSP, OSCP). Conduct security reviews, threat modeling, and risk assessments for new and existing products and features. Respond to and investigate security incidents, perform root cause analysis, and implement corrective actions. Experience our comprehensive benefits with family medical, vision and dental coverage, a competitive base salary, and eligibility for equity awards and discretionary bonuses or commissions.