Application Security Engineer
WHO WE ARE
GreenSlate is the fastest growing provider of payroll, financial and tax credit services to the Film & TV industry. For more than 10 years, we've helped production executives, line producers, and production accountants streamline the process of managing their projects with responsive, innovative, transparent and reliable solutions.
WHAT WE'RE LOOKING FOR
We are looking for a skilled Application Security Engineer to analyze software designs and implementations from a security perspective, and identify and resolve security issues.
You will include the appropriate security analysis, defenses, and countermeasures at each phase of the software development lifecycle, to result in robust and reliable software.
Here are the requisites to apply for this position :
Proven work experience as an application security engineer.
Detailed technical knowledge of techniques, standards and state-of-the-art capabilities for authentication and authorization, applied cryptography, security vulnerabilities, and remediation.
Adequate knowledge of web-related technologies and of network / web related protocols.
Interest in all aspects of security research and development.
You are a thinker. A doer. Someone who can't sleep because you figured out how to solve that problem from earlier in the day.
Passionate. Innovative. You know that your ideas are what get things done. Driven. You don't do things half-way. You know that if a task isn't done well, it's not worth doing at all.
WHAT YOU WILL DO
Perform static security code analysis (SAST) of the codebase on a regular basis and provide relevant recommendations to developers.
Perform dynamic application security testing (DAST) using open source and commercial tools before applications are deployed in production.
Perform threat modeling on existing and upcoming features so that appropriate security controls can be built from the ground up.
Review security alerts and reports on a daily basis and work closely with the DevOps team in any follow-up investigation or remediation.
Perform code review to improve software security.
Design and advocate for new software enhancements to help mitigate security vulnerabilities.
Contribute directly to the code base implementing security features like MFA.
Impart ongoing secure code and application security best practices training to developers.
Be a thought-leader for security in code, architecture, hosting, and company-wide.
Work with CISO to support security audits and certifications.
Work with application support to define protocols that prevent "social engineering" and verify their soundness by testing the team.
WHAT YOU WILL GET FROM US
A competitive salary and benefits
Two weeks of paid time off per year plus an additional PTO day per year
A very flexible work-from-home policy, starting at three days per week
Monthly team-building activities, like parties, poker nights, and soccer matches
Access to a powerful laptop workstation with a docking station and dual monitors
Be employed directly by a US-based company you will be a part of GreenSlate