Remote Application Security Engineer

Posted

This job is closed

This job post is closed and the position is probably filled. Please do not apply.  Automatically closed by a robot after apply link was detected as broken.

Description:

  • As an Application Security Engineer, you will join a small team of security engineers supporting the Product Engineering and Research and Development (RnD) departments.
  • You will work closely with product managers, engineers, and researchers to help shape and ship secure by default product features.
  • You will take the initiative to communicate effectively with product managers and teams, ensuring alignment and addressing potential issues promptly.
  • You will help set the strategy and direction for scaling the company-wide application security program.
  • Your role will involve building and maintaining partnerships with specific product engineering teams as a reasonable, friendly, and effective security advocate.
  • You will lead threat modeling of top engineering priorities with security impact, supporting engineers in reviewing pull requests, weighing in on security impacting implementations, and answering ad-hoc application security questions.
  • You will build guidance and implement secure by default patterns/paved roads.
  • You will contribute to improving and scaling the secure software development program.
  • You will coordinate penetration testing and bug bounty programs.
  • You will participate in product security incident response.
  • You will support the Corporate Security team who oversees general Security Operations on any area overlapping with application security.

Requirements:

  • You have 5+ years of application security experience including design level guidance/threat modeling, code review, and application security testing.
  • You have been part of the AppSec team for a fast-growing company and owned driving and scaling the program.
  • You have prior experience in understanding the unique security challenges posed by SaaS products.
  • You can read, and if required even write, production code in Python and Typescript, make iterative improvements, and identify and fix security vulnerabilities.
  • You have a track record of implementing automation in a security context.
  • You have built strong positive relationships with internal customer engineering teams as an application or product security engineer.
  • You have worked with product managers and engineers on balancing risks with product priorities such as velocity and user friction.
  • You have prior experience in understanding cloud security considerations for product engineering teams, particularly within AWS.

Benefits:

  • You will receive attractive compensation, which includes salary, stock options, and bonuses.
  • You will have a manager dedicated to upholding key management tenets.
  • The company offers a remote-first team and a flexible work/life balance culture.
  • You will have the option to join one of the offices in London, Amsterdam, Munich, or Zurich.
  • You will enjoy 25 days of annual leave plus public holidays.
  • You will work in a great company culture with the option to join regular planning and socials at the hubs, and company retreats.
  • There are strong opportunities for your career growth.
About the job
Posted on
Job type
Full-time
Salary
-
Location requirements
Europe - Remote
Position
Cybersecurity Engineer
Experience level
Senior
Technology stack
TypeScript AWS Software as a Service Stripe Generative AI Webflow Python
S
Synthesia's company logo
Synthesia
View company profile
Leave a feedback