Remote Senior Application Security Engineer

Description:

• The Senior Application Security Engineer at Glassdoor will be responsible for improving the application security posture and ensuring the safety of the platform for millions of customers worldwide.
• The role involves analyzing, testing, and triaging application vulnerabilities, managing the public bug bounty program, participating in code and product security reviews, and assisting developers in integrating security into their workflows.
• Collaboration with Product and Engineering teams, vendors, and external testers is essential, requiring strong interpersonal skills.
• This position offers the opportunity to advance an application security program and address security weaknesses with a broad enterprise-wide impact.

Requirements:

• A commitment to enhancing Glassdoor's culture of Diversity, Equity, and Inclusion (DEI).
• Minimum 5 years of experience in web application penetration testing or a security-focused application development role.
• Preferred certifications include AWS Security, CISSP, CEH, GWEB, GCIH, or equivalent.
• Deep knowledge of cybersecurity frameworks such as NIST 800-53, NIST CSF, CIS Top 20, MITRE ATT&CK, and OWASP Top Ten.
• Proficiency in crypto, authentication, and authorization protocols like SSL/TLS, SAML, OAuth, JWT Tokens.
• Ability to communicate attack scenarios and mitigation options based on standard frameworks.
• Proficiency in Java, JavaScript, and Python.
• Experience automating tasks using Python or other scripting languages.
• Strong collaboration skills in a diverse, fast-paced environment.
• Excellent written and oral communication skills for technical and non-technical audiences.

Benefits:

• Base salary range: $112,200.00 - $149,000.00, with Glassdoor aiming to pay at the market 75th percentile for technical roles and the 65th percentile for non-technical roles.
• Annual bonus target of 10%, paid in 6-month intervals aligned with performance reviews.
• Generous Restricted Stock Units (RSU) awarded at hire and potentially refreshed annually for exceptional performers.
• 100% employer-paid premiums for employee medical, dental, vision, life, short and long-term disability, and select well-being programs, with 80% employer-paid premiums for dependents.
• Generous paid time off programs for parents, injury/illness leave, and family emergency leave.
• Open Paid Time Off policy and 15-20 paid company holidays per year for work/life balance.
• 401(k) plan with a company match up to $5,000 per year, subsidized fertility and family planning services, and discounted legal assistance services.
• Commitments to diversity, career growth, supportive work environment, and flexibility in work hours and location.