About the Role
This role involves identifying, analyzing, and mitigating security risks in software applications throughout the development lifecycle while collaborating with engineering teams to embed security best practices.
Responsibilities
- Evaluate codebases for security flaws using static and dynamic analysis tools
- Collaborate with developers to resolve vulnerabilities in a timely manner
- Design and implement secure coding standards and guidelines
- Conduct threat modeling for new and existing systems
- Support incident response efforts related to application-level breaches
- Lead security reviews during system design and architecture planning
- Develop automation to streamline security testing processes
- Assess third-party libraries and dependencies for risks
- Deliver security training tailored to development teams
- Stay current with emerging threats and vulnerabilities in web technologies
- Integrate security checks into CI/CD pipelines
- Perform manual penetration testing on critical applications
- Advocate for privacy-by-design principles in product development
- Work with compliance teams to meet regulatory requirements
- Analyze security scan results and prioritize remediation efforts
- Contribute to the creation of security policies and frameworks
- Partner with infrastructure teams to ensure secure configurations
- Review API designs for potential security weaknesses
- Assist in the evaluation of vendor security postures
- Promote a culture of security awareness across engineering functions
- Help define metrics to measure application security posture
- Respond to security queries from internal and external stakeholders
- Support red team exercises and vulnerability assessments
- Ensure secure handling of authentication and authorization mechanisms
- Guide teams in mitigating OWASP Top Ten risks
Compensation
Competitive salary and benefits package
Work Arrangement
Hybrid work model with flexibility based on location and role
Team
Part of the global security team focused on protecting scalable cloud platforms
Why This Role Matters
- The platform handles billions of interactions annually, making proactive security essential.
- Engineers in this position directly influence the trust customers place in the service.
- Security is integrated early in development, not treated as an afterthought.
What We Value
- Ownership of security outcomes across teams and systems.
- Clear communication when addressing complex technical issues.
- Curiosity and persistence in uncovering hidden risks.
Available for qualified candidates where permitted by law
