Application Security Engineer

United States

Applications have closed
We’re looking for an Application Security Engineer (levels 1-3) ready to play a ground floor role in our growing security team. In this role, you will work closely with our entire security team and get exposed to all areas within the offensive and defensive security domains. We’re looking for an individual who’s either passionate about security or is looking to transition their career into the information security domain.
This role will at first be focused on assisting our existing application security team in developing tooling and automation workflows that will help our team grow and be more efficient. You will help monitor and optimize our application security controls such as SAST, DAST and Bug Bounty Program. As our organization grows, so will our team and we expect you to branch out and specialize in an area of expertise in which you have a passion. In other words, this is a great opportunity for you to grow with us and advance in your career.
Our clients entrust FloQast with their financial data and as such it is our mission to deliver features that provide resilience, confidence, and trust in our platform. We believe in scaling security through software engineering best practices and automation.  You'll play a fundamental role in shaping the future of security at FloQast and your work will have a significant impact and visibility.
FloQast is headquartered in Los Angeles, CA and we are seeking US Based REMOTE Engineers.
*Visa sponsorship is NOT available at this time

What you’ll do…

  • Engineer, implement and monitor security measures for the protection of computer systems, networks, and information.

  • Prepare, maintain and document standard operating procedures and protocols.

  • Configure and troubleshoot security infrastructure systems.

  • Develop and maintain technical solutions and security tools to help mitigate security vulnerabilities and automate repeatable tasks.

  • Work closely with technical leads to collate, drive and deliver on a technical strategy and roadmap that encompasses product, cloud, and enterprise security.

  • Assist with security reviews, threat modeling, code reviews.

  • Assist with our vulnerability management efforts across functional teams (enterprise and application security) to ensure we meet our SLAs and help mitigate risks.

  • Be an advocate for security best practices and the point of contact throughout the company.

We’re looking for someone with…

  • 1+ years of security engineering experience or software engineering experience with a passion for cybersecurity.

  • Experience working on teams using Agile methodologies and an iterative process.

  • Ability and proven experience using at least one high-level programming language e.g. Node.js, Python, Go, Java, Ruby (Python experience is a plus)

  • Problem-solving ability, making sound routine or complex decisions in a fast-paced technical environment.

  • Technical understanding of foundational security concepts or mechanisms such as the principle of least privilege, HTTP, DNS, VPN, Load Balancing, SAML, OAuth, OpenID etc.

  • Experience with cloud environments AWS, GCP, or Azure.

  • An understanding of best security practices and how to implement them at a business-wide level.

  • Critical thinking skills and the ability to solve problems as they arise.

Nice to have attributes…

  • Experience with AWS and/or Azure.

  • Experience with Node.js, Python, React.

  • Experience securing multi-tenant enterprise SaaS products.

  • Knowledge of common compliance frameworks e.g. SOC, SOX, PCI and ISO standards.

  • Security certifications e.g. CISSP, OSCP, OWSP
About FloQast    www.floqast.com
Recognized as a 2020 Technology Fast 500 by Deloitte, FloQast is the leader in accounting workflow automation created by accountants for accountants to work smarter, not harder. The cloud-based, AI-enhanced software is trusted by more than 1,000 accounting teams, including those at Lyft, Twilio, Instacart, Zoom and The Golden State Warriors—and proud to be rated #1 across all user review sites. By automating common accounting workflows and helping to streamline and make them more efficient, FloQast is the place where accounting teams want to work so they can focus on what matters most, even when that’s just going home on time. Whether automating reconciliations, documentation requests or other workflows such as the month-end close, financial reporting or payroll, FloQast enhances the way accounting teams already work to help them work smarter. Learn more at floqast.com.
- What is engineering working on? Our FQ Engineering Blog showcases a number of our recent efforts straight from the engineers working on them. Check it out!- We are fanatics about the success of our customers.  Check us out on G2 Crowd - We are equally fanatic about creating and maintaining a fabulous culture of support and success for all employees.  Check us out on Glassdoor- We are moving quickly and there is a huge upside opportunity in terms of career growth- FloQast offers competitive compensation, stock options, full benefits, and a positive and supportive work environment   - Named among Best Places to Work by LA Business Journal in 2017, 2018 and 2019- Ranked #10 on The SaaS 1000  
FloQast, Inc is committed to operating fair and unbiased recruitment procedures allowing all applicants an equal opportunity for employment, free from discrimination on the basis of religion, race, sex, age, sexual orientation, disability, color, ethnic or national origin, or any other classification as may be protected by applicable law. We aim to recruit the right people for the jobs we have to offer, and to assess applications on the basis of relevant skills, education, and experience. We welcome people of different backgrounds, experiences, abilities and perspectives. We are an equal opportunity employer and strive to provide a professional and welcoming workplace for all employees.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Agile Application security Automation AWS Azure CISSP Cloud Compliance DAST DNS GCP Java Node.js OpenID OSCP Python Ruby SaaS SAML SAST SLAs Strategy VPN Vulnerabilities Vulnerability management

Perks/benefits: Career development Competitive pay Equity Startup environment

Region: North America
Country: United States
Job stats:  5  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.