SDE Security Professional

Job Description

Top Talent in Every Role Both a quest for greatness & shared values are important to us Owner not a Renter Proactive & radically responsible. Everyone is an owner Pro-Sports Team Strength-based, results driven with a "team-first" attitude Customer Obsession We exist to delight our customers Think Deeply & Exercise Good Judgement Clear mind, obsession to simplify & data-informed Build & Make Magic Courage to walk into the unknown and pioneer new fronts Be Insatiably curious & keep Improving Curiosity to acquire new perspectives, quickly Move Fast & Be Dynamic Ruthless prioritization & move fast Dream Big, Be Bold & Think Long Term Courage to climb big mountains Skills & experience were looking for 2-3 years of experience in application security with a strong focus on web and mobile application security. | Top talent in every role Managing and triaging bug bounty submissions, evaluating impact, and prioritizing fixes based on risk assessment. | Think Deeply & Exercise Good Judgement Hands-on experience in penetration testing, including API intercepting, and reverse engineering of APKs. | Top talent in every role Deep understanding of OWASP Top 10 vulnerabilities and mitigation techniques. | Think Deeply & Exercise Good Judgement Experience with SAST, DAST, and other application security tools. | Be Insatiably Curious & Keep Improving Awareness of cybersecurity trends, attack vectors, and best practices. | Top talent in every role Cloud security and network security knowledge, along with proficiency in scripting languages like Python, would be an added advantage | Top talent in every role You will be responsible for Strategy Design and implement secure application architectures aligned with business and security requirements. Strategy Develop and enforce secure coding standards across engineering teams. Strategy Automate security testing in CI/CD pipelines, including SAST, DAST, and dependency scanning. Strategy Perform threat modeling and risk assessments for applications and services. Operations Conduct regular security code reviews and vulnerability assessments. Operations Monitor and respond to application security incidents, working closely with engineering and DevOps teams. Operations Research and recommend new security technologies and best practices to improve application security. Operations Maintain security documentation and ensure compliance with internal policies and industry standards. Collaboration Partner with engineering teams to prioritize security fixes and integrate security best practices into the SDLC. Collaboration Communicate security risks and solutions effectively to both technical and non-technical stakeholders