Remote Senior Application Security Engineer

Description:

• Hypori Inc is a leading provider of SaaS cybersecurity solutions, transforming secure mobility for government and commercial customers.
• As a Senior Application Security Engineer, you will focus on AppSec and related automation (DevSecOps) responsibilities.
• You will enable multiple software engineering teams to improve the security posture of products and operational SaaS environments.
• Responsibilities include integrating and automating security tooling in CI/CD pipelines and developing security patterns for compliance with standards.
• You will serve as a subject matter expert for secure development and deployment of Kubernetes-based microservices and cloud-based infrastructure.
• You will maintain a deep understanding of the security aspects of Hypori's product/system architecture and participate in design and architecture reviews.
• You will be the go-to AppSec expert for technical software engineering, security, and compliance team members.
• You will develop and maintain software security patterns for secure coding and configuration standards.
• You will lead automation and integration of vulnerability management tooling across various components of development and build pipelines.
• You will triage vulnerability and compliance testing results and generate user stories for remediation efforts.
• You will contribute to technical compliance strategies and hardening efforts of development and QA environments.
• You will maintain architecture-/engineering-level threat models and identify application-specific security monitoring use cases.
• You will propose updates to security and privacy controls documentation and participate in ceremonies across multiple scrum teams.

Requirements:

• You must be a US Citizen or US Permanent Resident.
• You should have 5+ years of experience in software engineering, focusing on backend development.
• You must be proficient in understanding software vulnerabilities and their potential impact.
• You should be proficient in at least one programming language and one scripting language.
• You must have experience in managing cloud infrastructure services and container-based deployments, preferably AWS and Kubernetes.
• You should be proficient in managing software supply chain security and software security vulnerabilities.
• You must be able to express concepts related to identity & access management, applied cryptography, and network security.
• You should be able to articulate technical risks and the pros & cons of proposed solutions.
• You must have experience with modern CI/CD pipelines and scrum-based software engineering practices.
• You should have experience in automating security and compliance processes and integrating security tooling across development lifecycles.
• You must have experience interpreting security and compliance frameworks and standards.
• You should have experience with application security testing tools and techniques.

Benefits:

• Hypori Inc offers a generous benefits package that includes medical, dental, and vision insurance.
• The company provides parental leave and life and disability packages.
• Employees are offered a 401(k) plan with employer-matching contributions that vest starting from the first day of employment.
• Hypori is dedicated to investing in the tools and skills required for employees to be strong, collaborative colleagues and people managers.
• The company is committed to creating and promoting an inclusive workplace that embraces differences and perspectives.