Quanata is seeking an Application Security Engineer to join the Product Security team within the Security & Privacy team.
This role is crucial for ensuring the security and integrity of applications and services within the B2B/E product suite.
Responsibilities include implementing application security measures, identifying and mitigating risks in the development lifecycle, and maintaining the overall security posture of the company.
The engineer will collaborate with development and product teams to integrate security solutions into business-critical applications.
The role involves creating and refining product security threat models, participating in secure code reviews, and responding to vulnerabilities identified through internal security testing.
The engineer will support initiatives to enhance security awareness within application development teams and work closely with compliance teams to ensure adherence to industry regulations.
Documentation of security procedures and best practices is also a key responsibility.
Requirements:
A Bachelor’s degree or equivalent relevant experience is required.
Candidates should have 3 to 5 years of experience in information security, with at least 2 years in application security engineering.
Experience working with software development teams to integrate security into complex application ecosystems is necessary.
Familiarity with security-by-design principles and a solid understanding of application security frameworks and standards is required.
Candidates should have experience with cloud-based hosting providers like AWS, Google Cloud, or Microsoft Azure.
Knowledge of OWASP and relevant standards such as the Top 10, ASVS, and MASVS is essential.
Proficiency in at least one programming language and relevant security tools is required.
Familiarity with threat modeling paradigms such as STRIDE or STRIPED is necessary.
Strong communication skills and the ability to collaborate effectively with development teams and stakeholders are essential.
Candidates must be able to work in a fast-paced environment, managing multiple tasks and priorities.
Benefits:
The position offers a wide variety of health, wellness, and other benefits, including medical, dental, vision, life insurance, and supplemental income plans for employees and their dependents.
A one-time payment of $2,000 will be provided for the purchase of in-home office equipment and furniture.
Employees will receive a MacBook Pro, fully provisioned before their first day.
All employees accrue four weeks of paid time off (PTO) in their first year, with new parents receiving twelve weeks of fully paid parental leave.
The company invests in personal and professional development, providing up to $5,000 each year for professional learning and career development, along with LinkedIn Learning subscriptions and coaching opportunities.
The role is remote-first, allowing employees to work from anywhere in the U.S., with occasional travel requested or encouraged.
Core meeting hours are maintained from 9 AM to 2 PM Pacific time for collaboration across time zones.
