Staff Application Security Engineer
Outreach
This job is no longer accepting applications
See open jobs at Outreach.See open jobs similar to "Staff Application Security Engineer" Techstars.Your Daily Adventures Will Include:
- Conduct security reviews and threat models and train engineers on threat modeling techniques and other standard evaluation practices to identify and prioritize risks of potential vulnerabilities and define possible mitigations.
- Develop, document and maintain the security standards and design patterns used by engineers to deliver consistent, secure code and features.
- Research the threat landscape, regulatory considerations, and customer requirements relevant to Outreach’s business, and recommend solutions to address known and potential threats by defining and applying appropriate security requirements.
- Review product code for security vulnerabilities, both manually and with the assistance of automated tooling such as SAST, DAST, and SCA tools.
- Participate in customer calls to provide guidance and education on how to securely use and deploy the Outreach platform.
- Ensure strong cross-company collaboration by fostering a close partnership between security and engineering teams with the goal of increasing customer trust in Outreach and its products.
Our Vision of You:
- A minimum of 3 years’ experience as a senior or principal application security engineer or architect.
- Deep experience in application security programs, including threat modeling, secure coding best practices, identifying vulnerabilities and secrets in code, and coordinating remediations in a cloud-native SaaS environment.
- Familiarity with modern application security issues and mitigation techniques is essential.
- Experience creating reference architectures, engineering specs, and data flow diagrams. Experience with customer-facing content is a plus.
- Experience performing code reviews to identify security vulnerabilities.
- Proven success working with engineers and technologies in cloud-native, DevOps environments (including CI/CD pipelines, microservices, and infrastructure as code).
- Strong track record of partnering and collaborating with engineers and producing formal documentation to communicate program effectiveness to leadership.
- Experience evaluating and implementing third-party tools and services to support an effective SDL program.
- Experience mentoring and training others in application security principles and practices.
- Excellent interpersonal and management skills.
- Strong written and verbal communication skills. Experience working with customers or customer-facing teams is a plus.
- Flexibility to have up to 2 hours per day in US Pacific time zone working hours to allow for interaction with Seattle and Prague-based teams
- Ability to work independently and flexibly to succeed within Outreach’s dynamic culture.
This job is no longer accepting applications
See open jobs at Outreach.See open jobs similar to "Staff Application Security Engineer" Techstars.