Staff Application Security Engineer
Remote - USA / CANADA
Wrapbook
Meet the unified platform for film, TV, and commercial production payroll, accounting, and cost-tracking. Wrapbook offers automated timecards, compliance, budget management, and much more.About Us:
Our mission at Wrapbook is to increase the prosperity of the project economy. A significant shift has occurred within the workforce recently and 50M Americans are now engaged in freelance or project-based work. The popularity of project based employment has introduced flexibility for both employers and employees but also added complexities from a compensation and administrative standpoint. Our vertical fintech platform enables companies to seamlessly onboard, pay and insure their workforces.
We’re building the best product for the entertainment industry but operate in a 50B market and have big goals we want to achieve. With over 127M USD raised from Andreessen Horowitz, Equal Ventures, Uncork Capital, Jeffrey Katzenberg and CAA co-founder Michael Ovitz, we are at an exciting stage of growth and there isn’t a better time to join!
The Opportunity - (Remote - USA / CANADA)
We are looking for a Staff Application Security Engineer who will play a hands-on role in driving our mission to build an outstanding technology company. You are a security-oriented engineering leader seeking to accelerate and expand our application security practices through innovation. You will be working as part of our Security & Compliance team driving application security engineering projects from start to finish.
What you’ll do:
- Drive the most difficult or highly complex application security reviews and threat modeling. Provide expert guidance and direction for other team members when they encounter challenges in their security reviews. Own documentation and procedures surrounding application security reviews as well as lead by example for what successful application security reviews look like
- Drive the technical direction, roadmap, and projected architecture of the Application Security program
- Take initiative and drive changes in our bug bounty program which position us as a leading authority amongst other programs
- Work in a leveraged manner influencing other teams across the organization with application security approaches and a focus on problem solving
- Champion recruiting activities
- Lead incident response and investigative efforts related to our applications
- Represent the Application Security team across and outside of Wrapbook as a subject matter expert in technology, development, and application security concepts
- Have significant ownership in and evangelize security training with development teams
- Drive initiatives which scale application security and holistically address multiple vulnerabilities
- Scale application security by developing automated security testing or centralized security libraries which scale directly with developers and enable them to more easily write secure code
- Strong development or scripting experience and skills. You're able to significantly and effectively contribute to the product and its security. Ruby on Rails is a plus
What you’ll have:
- 5+ years previous experience on a Security Operations, Software Development, Application Security team, or relevant education
- Experience securing applications and APIs
- Experience with OWASP, static/dynamic analysis, and common security tools
- Experience identifying security issues through code review
- Experience with GitHub Actions and CI/CD concepts
- Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner
- Experience leading efforts or managing application security teams working in the DevOps model
- Expert understanding of Internet security issues, application security technologies, cloud architectures, and threat landscape concepts
Our Tech Stack:
- Full stack Ruby on Rails (Frontend & Backend)
- StimulusJS
- Redis
- Sidekiq
- PostgreSQL
- Heroku
- AWS
Why Join Us
At Wrapbook, creativity meets technology — and not just in the product.
In addition to a competitive salary and all the benefits you can expect from a fast-growing technology company, you’ll get access to a team of creative problem solvers and the chance to see your contributions make large impacts. Benefits include:
- Unlimited Paid Time Off
- Work from anywhere in Canada and USA
- Health and Dental Benefits
- Up to $1500 towards IT set up for your home
- Up to 4% matching RRSP / 401K
- Learning and Development Allowance
- $150 Monthly Life Style Benefits
Our Pledge to Fostering an Inclusive and Safe Workplace:
Wrapbook pledges to be a harassment- and discrimination-free space for everyone, regardless of age, disability, ethnicity, gender identity or expression, nationality, neurotype, personal appearance, political affiliation, professional background, race, religion, or sexual identity or orientation.
Apply Now
Have we got your attention? Submit your application today and a member of our Talent team will be in touch with you shortly!
#LI-Remote
Tags: APIs Application security AWS CI/CD Cloud Compliance DevOps FinTech Full stack GitHub Heroku Incident response OWASP PostgreSQL Redis Ruby Scripting Vulnerabilities
Perks/benefits: Career development Competitive pay Health care Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs