Principal Security Engineer, Ecosystem

San Diego

Atlassian logo
Atlassian
Apply now Apply later

Posted 2 weeks ago

Atlassian is continuing to hire with all interviewing and on-boarding done virtually due to COVID-19. Everyone new to the team, along with our current staff, will temporarily work from home until it is safe to return to our offices.
JOB DUTIES:RESPONSIBLE FOR ENSURING THE SECURITY I.E. CONFIDENTIALITY, INTEGRITY, AND AVAILABILITY OF ATLASSIAN’S DEVELOPER PLATFORMS, APIS AND APPLICATIONS LISTED IN THE ATLASSIAN MARKETPLACES. WORK CLOSELY WITH PRODUCT ECOSYSTEM AND ECOSYSTEM PLATFORM TEAMS IN EACH STAGE OF THE SOFTWARE DEVELOPMENT LIFECYCLE TO INCORPORATE SECURE DESIGN, DELIVER SECURE CODE, IDENTIFY VULNERABILITIES, AND DELIVER VULNERABILITY REMEDIATIONS. PERFORM THREAT MODELING, ARCHITECTURE/DESIGN REVIEW, STATIC ANALYSIS, AND PENETRATION TESTING TO ACHIEVE THESE OBJECTIVES. SERVE AS SUBJECT MATTER EXPERT FOR ANY ATLASSIAN EMPLOYEE AND MARKETPLACE APPLICATION DEVELOPERS WITH SECURITY QUESTIONS. ASSIST IN THE TRIAGE OF VULNERABILITIES THAT ARE FOUND INTERNALLY, PRIVATELY OR PUBLICLY DISCLOSED, OR REPORTED THROUGH COMPANY’S BUG BOUNTY PROGRAM. REVIEW THE SECURITY POSTURE OF ATLASSIAN INTEGRATION FRAMEWORK, APIS AND MARKETPLACE APPLICATIONS; WRITE AUTOMATION TO CONTINUOUSLY TEST MARKETPLACE APPLICATIONS AND THEIR SUPPORTING INFRASTRUCTURE TO IDENTIFY NEW VULNERABILITIES. PROVIDE ATLASSIAN ENGINEERS WITH WELL-RESEARCHED SECURITY ADVICE ON ATLASSIAN ECOSYSTEMS SAAS AND PAAS SECURITY MODELS. WORK WITH ATLASSIAN’S SUPPORT TEAMS TO ADDRESS CUSTOMER SECURITY CONCERNS AND REPORTS. WORK IN CONJUNCTION WITH THE SECURITY INTELLIGENCE TEAM TO INVESTIGATE THE ROOT CAUSE OF SECURITY INCIDENTS.
MINIMUM REQUIREMENTS:BACHELOR’S DEGREE IN COMPUTER SCIENCE, INFORMATION TECHNOLOGY, COMPUTER ENGINEERING, OR COMPUTER SECURITY AND FIVE (5) YEARS OF EXPERIENCE IN SOFTWARE ENGINEERING WITH EXTENSIVE BACKGROUND IN INFORMATION SECURITY CONSULTING, SECURITY ENGINEERING, APPLICATION SECURITY ENGINEERING AND PRODUCT SECURITY ENGINEERING INCLUDING SAAS AND PAAS SECURITY MODELS AT SOFTWARE COMPANIES, OR SECURITY FOCUS DEVELOPMENT AT SOFTWARE COMPANIES.
ALTERNATE REQUIREMENTS:MASTER’S DEGREE IN COMPUTER SCIENCE, INFORMATION TECHNOLOGY, COMPUTER ENGINEERING, OR COMPUTER SECURITY AND TWO (2) YEARS OF EXPERIENCE IN SOFTWARE ENGINEERING WITH EXTENSIVE BACKGROUND IN INFORMATION SECURITY CONSULTING, SECURITY ENGINEERING, APPLICATION SECURITY ENGINEERING AND PRODUCT SECURITY ENGINEERING INCLUDING SAAS AND PAAS SECURITY MODELS AT SOFTWARE COMPANIES, OR SECURITY FOCUS DEVELOPMENT AT SOFTWARE COMPANIES.
SPECIAL REQUIREMENTS:MUST PASS TECHNICAL INTERVIEW.More about Atlassian
Creating software that empowers everyone from small startups to the who’s who of tech is why we’re here. We build tools like Jira, Confluence, Bitbucket, and Trello to help teams across the world become more nimble, creative, and aligned—collaboration is the heart of every product we dream of at Atlassian. From Amsterdam and Austin, to Sydney and San Francisco, we’re looking for people who want to write the future and who believe that we can accomplish so much more together than apart. At Atlassian, we’re committed to an environment where everyone has the autonomy and freedom to thrive, as well as the support of like-minded colleagues who are motivated by a common goal to: Unleash the potential of every team.
Additional Information
We believe that the unique contributions of all Atlassians is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status.
All your information will be kept confidential according to EEO guidelines.
Job tags: Architecture Automation PaaS Penetration testing SaaS Vulnerabilities