Outreach is seeking a Staff Application Security Engineer to secure cloud-native environments and define industry-leading standards and patterns.
The role involves working with product engineering teams to drive secure product design, conduct application security reviews, and shape the cloud-native, continuous-deployment application security program.
The ideal candidate should possess strong application security engineering skills, a background in development or engineering, and a deep understanding of application security vulnerabilities and mitigations.
This position focuses on building secure systems rather than penetration testing, emphasizing the application of current security mitigations to the service portfolio and Secure Development Lifecycle.
Responsibilities include conducting security reviews, developing security standards, researching the threat landscape, reviewing product code for vulnerabilities, and participating in customer calls for guidance on secure platform usage.
The role requires fostering collaboration between security and engineering teams to enhance customer trust in Outreach products.
Requirements:
A minimum of 3 years’ experience as a senior or principal application security engineer or architect is required.
Deep experience in application security programs, including threat modeling, secure coding best practices, and coordinating remediations in a cloud-native SaaS environment is essential.
Familiarity with modern application security issues and mitigation techniques is necessary.
Experience in creating reference architectures, engineering specs, and data flow diagrams is preferred, along with customer-facing content experience.
Proven experience in performing code reviews to identify security vulnerabilities is required.
A strong track record of collaborating with engineers and producing formal documentation to communicate program effectiveness to leadership is necessary.
Experience in evaluating and implementing third-party tools and services to support an effective SDL program is required.
The candidate should have experience mentoring and training others in application security principles and practices.
Excellent interpersonal, management, written, and verbal communication skills are essential, with customer-facing experience being a plus.
Flexibility to work up to 2 hours per day in US Pacific time zone is required for interaction with teams in Seattle and Prague.
The ability to work independently and adapt to Outreach’s dynamic culture is necessary.
Benefits:
The position offers a highly competitive salary.
Employees receive 25 days of annual vacation time, along with sick time and casual leave.
Group medical policy coverage is available for employees and up to 5 eligible family members.
An OPD benefit is covered up to INR 10,000.
Life insurance and personal accident insurance are provided at 3x annual CTC.
The company offers 26 weeks of maternity leave pay and 15 days of paternity leave pay.
Employees have the opportunity to participate in the company success via the RSU program.
Outreach promotes diversity and inclusion through various employee resource groups.
Employee referral bonuses are available to encourage the addition of new team members.
The company organizes fun outings to foster a balanced work environment.
