Senior Security Engineer - Application Security

Who we are

Rokt is expanding rapidly and globally – operating in 16 markets worldwide, with its headquarters in NYC, and a major R&D hub in Sydney. As the global leader in eCommerce technology, Rokt powers the Transaction Moment™ of best-in-class companies including Live Nation, Groupon, Staples, Lands' End, Fanatics, GoDaddy, Vistaprint, and HelloFresh. Our mission: To make eCommerce smarter, faster, and better.

With annual revenues of more than US$100M and vibrant company culture, Rokt has been listed in ‘Great Places to Work’ in the US and Australia. Our four core values guide our award-winning culture: Smart with Humility, Customer Obsessed, Conquer New Frontiers and Enjoy the Ride. These values help us attract, engage, and develop the right talent around the globe and ensure we have the right conditions to do our best work.

The Rokt engineering team builds best-in-class eCommerce technology that provides personalised and relevant experiences for customers globally and empowers marketers with sophisticated, AI-driven tooling to better understand consumers. Our bespoke platform handles millions of transactions per day and considers billions of data points which gives engineers the opportunity to build technology at scale, collaborate across teams and gain exposure to a wide range of technology. We are expanding rapidly in our major R&D centres in NYC and Sydney. We are passionate about using intelligent systems to improve the Transaction Moment™ for retailers everywhere. Come join us and build the future!

Requirements

The role

As an Application Security Engineer, you will innovate and engineer systems and tools that help scale our security processes and controls through automation and orchestration. You will partner with various engineering teams to ensure any security concerns are addressed while reducing friction and increasing observability. You will guide and assist in making design decisions, performing risk assessments, code reviews, and implementing security testing.

Responsibilities

• Partner with engineering teams and security engineers who are responsible for risk assessments, secure design reviews, threat models and security testing
• Lead initiatives to develop in-house systems and tools to automate security best practices
• Conduct vulnerability research and/or exploit development
• Mentor the team to become SMEs across multiple technologies and security domains
• Develop strategies on how to reduce security risks across engineering teams
• Share your knowledge by giving brown bags, tech talks, and evangelising appropriate tech and security best practices

Requirements

• 5+ years of relevant software engineering experience including modern languages (Python, Go, JavaScript, C#, etc.)
• Proven experience building cutting-edge software solutions
• Strong understanding of web application vulnerabilities and API security
• Experience with secure design reviews, threat modelling and engineering platforms
• You have designed capabilities that scale to support a large set of teams and built production-ready services
• Passionate about building products that engineers love and that drive efficiency through automation, orchestration, and partnerships with external teams

Benefits

• Work with the greatest talent in town. Our recruiting process is tough. We hold a high bar because we have a high-performing, high-velocity culture - we only want the brightest and the best.
• Join a community. We believe the best things happen when we come together to solve complex problems and make meaningful connections with each other through interest groups, sports clubs, and social events.
• Accelerate your career. Develop through our global training events, ‘Level Up’ investment, online training courses, and our fantastic people leaders. Take your career to Rokt’speed - Grow your career in our rapidly growing company.
• Take a break. When you work hard, we know you also need to rest. We offer generous time off and parental leave policies, as well as mental health and wellness days for all employees. We also believe taking time off in sync with one another is important. As such, we shut down our offices every year in late December/early January for two weeks, partially sponsored by the company. We also offer a paid Rokt’star Sabbatical for employees who have been with us for 3 years or more.
• Stay happy and healthy. Enjoy catered lunch 3 times a week and healthy snacks in the office. Plus join the gym on us! Rokt offers a monthly allowance to use on a gym membership or online fitness classes. We also provide all Rokt'stars access to free 1:1 coaching, therapy and digital mental wellness resources.
• Become a shareholder. All Rokt’stars have stock options. If we succeed, everyone enjoys the upside.
• See the world! Along with our global all-staff events in amazing locations (Phuket, Thailand in January 2020), we also offer generous relocation packages for those interested in moving to another Rokt office. We have cool offices in great cities - Tokyo, New York, Singapore, and Sydney.
• We believe in equality. Rokt is an Equal Opportunity Employer and recognises that a diverse workforce is crucial to our success as a business. We would love you to apply for one of our open roles - irrespective of socio-economic status or background, age, gender identity, race, religion, sexual orientation, colour, pregnancy, carer/family responsibilities, national and social origin, political opinion, marital, veteran, or disability status.

We require all Rokt’stars as well as anyone else who will be onsite at the Rokt Sydney office to show proof of vaccination and booster shot.

#LI-Hybrid

Salary $140,000 - $170,000