Application Security Engineer
2 days ago
🏢 In-office - San Francisco
Description
• Drive security into design and development through performing application security reviews, architecture and design reviews, threat modeling, including code reviews and application security testing. • Partner and collaborate with development teams to support application vulnerability remediation efforts. • Develop automated security testing to validate secure coding best practices. • Perform application security testing to identify vulnerabilities in the core platform and services. • Support Airtable’s bug bounty program. • Support and consult with product and development teams in the area of application security. • Promote security awareness through developing and delivering security training. • Improve security frameworks, tools, processes and methodologies.
Requirements
• 3+ years of experience • Experience with OWASP best practices, SAST, DAST, and other common security tools • Strong understanding and experience with common web application security flaws, security controls, and common security libraries • Experience identifying security issues in applications through code review, threat modeling, pen testing, manually and with tools • Development experience and skills, preferably with TypeScript and Node.JS • Basic understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols) • Strong interpersonal skills and experience working with developers to promote secure SDLC • Be a subject matter expert (SME) of at least 1 technical area impacting the security of the product
Benefits
• Opportunity to receive benefits • Restricted stock units • May include incentive compensation
Apply Now
