Staff Application Security Engineer

USA Remote

Applications have closed
Kandji logo


The Apple device management and security platform for macOS, iOS, iPadOS, and tvOS. Apple MDM built for modern businesses.
About Kandji
Kandji is building the future of Apple Enterprise Management. The use of Apple devices in the enterprise is growing rapidly. Drawing on decades of experience in Apple IT, we saw a dire need for a modern Apple device management platform that could accommodate growing businesses and increasing regulatory demands. 
Kandji grew to hundreds of B2B customers within a few months of initial product launch in 2019, and secured a $100 million Series C in late 2021. Today, we have a 95% Customer Satisfaction rate and a rapidly growing community of customers, including names like Crunchbase, Belkin, Rackspace, Allbirds, FabFitFun, VSCO, and Turo.
Behind our business is a handful of the best investors in tech. Together, we are creating a new category of device management that can better serve modern businesses.
The Opportunity 
As a Staff Application Security Engineer, you will help our infrastructure and engineering teams build and maintain Kandji's Secure Software Development Lifecycle. In this role, you’ll build and mature security process gates and develop a series of standards to support our product at scale. You will have the opportunity to work alongside development teams, lead remediation efforts, define best practices through secure code reviews, architecture reviews, third-party package management, static code analysis, and spearhead our bug bounty initiatives. 

Day to Day

  • Lead the design of cyber security standards and controls on Kandji’s cloud platform, define secure development practices, identify threats and risks, lead a "secure by design" culture, and build security into Waters' Cloud Platform and multi-tenant SaaS applications
  • Collaborate closely with engineering and security teams on security-focused SDLC process gates and implementation of security best practices. 
  • Drive adoption of Policy as Code, adherence to software security metrics, lead vulnerability management efforts 
  • Implement Cloud Platform and Application Security Blueprint and drive adoption of standardized methodologies, libraries, and Tools
  • As a security SME, own identification and remediation of vulnerabilities within applications codebase, as well as 3 rd party dependencies, with a focus on maturing Security Engineering beyond OWASP Top Ten
  • Define secure coding practices and guidance, conduct security reviews, and drive down security-related technical debt
  • Develop scripts and tooling to “shift-left” common security tasks to DevSecOps;
  • Participate in and support security feature reviews and threat modeling;
  • Contribute to a secure/compliant cloud-native service catalog
  • Collaborate with engineering and operations teams to implement and automate security controls and processes cloud-native security monitoring, tooling, and reporting

Minimum Qualifications

  • Extensive experience in SaaS product development and the application security space; securing complex interconnected web applications and their architectures using Python, Go, or any other modern object-oriented language. 
  • A documented history of finding high-impact vulnerabilities or participating in the creation of tools to do the same 
  • A track record of developing projects from design to implementation and maintenance A broad and practical understanding of security fundamentals and their application Experience using a variety of static and dynamic security tools 
  • Practical knowledge and experience working in public cloud environments & IAM solutions (AWS, GCP, etc.) 
  • An interest in building creative solutions to challenging security problems with a focus on SaaS and product engineering
Benefits & Perks • Competitive salary • 100% individual and dependent medical + dental + vision coverage • 401(k) with 4% company match • 20 days PTO + Kandji Wellness Week off the first week of August • 14 paid holidays per year • 10 sick/wellness days per year • Equity for full-time employees • $1,000 virtual card for comfortable remote working equipment • 12 weeks paid leave for new parents • Cell phone & Internet stipend • Work from anywhere in the United States and Canada! • Exciting opportunities for career growth • An outstanding, inclusive culture
We are excited to be serving a significant need for a fast-growing market, and are proud of the high-performing team we have brought together so far. If you’re someone who wants to engage in new, exciting projects that will challenge your skills in the best way possible, we would love to connect with you.
At Kandji we believe in fostering an inclusive environment in which employees feel encouraged to share their unique perspectives, leverage their strengths, and act authentically. We know that diverse teams are strong teams, and welcome those from all backgrounds and varying experiences.

Tags: Application security AWS C Cloud Code analysis DevSecOps GCP Go Monitoring OWASP Python SaaS SDLC Vulnerabilities Vulnerability management

Perks/benefits: 401(k) matching Career development Cell phone stipend Competitive pay Equity Health care Home office stipend Medical leave Startup environment Wellness

Regions: Remote/Anywhere North America
Country: United States
Job stats:  10  2  0

Other jobs like this

Explore more Cyber Security career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cybersecurity in general, filtered by job title or popular skill, toolset and products used.