Security Engineer, Ecosystem
Bengaluru, India
Applications have closed
Atlassian
Atlassian's team collaboration software like Jira, Confluence and Trello help teams organize, discuss, and complete shared work.Atlassian can hire people in any country where we have a legal entity. Assuming you have eligible working rights and a sufficient time zone overlap with your team, you can choose to work remotely or return to an office as they reopen (unless it’s necessary for your role to be performed in the office). Interviews and onboarding are conducted virtually, a part of being a distributed-first company.
We have an office in Bengaluru but as we continue to expand our footprint in India, we can hire eligible candidates remotely anywhere in India.
The Ecosystem Application Security team is responsible for guiding the security strategy and initiatives for third-party apps which customers can use with their Atlassian products. We are looking for a Security Engineer who is excited at the prospect of enabling thousands of developers to improve the security of their apps and ultimately improve the security of millions of users.
In this role, your responsibilities will include defining security app review and auditing processes for Marketplace apps, building security tools and automation to scale our Cloud Fortified apps review process, and work closely with external Atlassian Marketplace partners and our internal security teams to make tooling available for third-party developers and engage in technical discussions with them. Working with the Ecosystem application security team in the USA, you will also define security policies, perform source code auditing, and penetration testing for third-party apps.
Since a lot of our work involves building security tools and performing security reviews, the ability to read, understand, and write code is very important. Our products and third party apps are built using a number of different languages but Java, Go, and Python are the most common. As part of the focus on learning at Atlassian, you'll be able to spend up to 20% of your time on independent research.
Basic Qualifications
- 5+ years working in an application security role
- Experience with penetration testing with a focus on web application security.
- Experience working with Static application security testing (SAST) and Dynamic application security testing (DAST) tools
- Experience coding in Java, Python, or Go, and at least one scripting language
- An ability to reason about security decisions
- Experience leading projects from start to finish and mentoring other security practitioners
- An ability to communicate ideas clearly and effectively to engineers who know way more than you about their code
Preferred Qualifications
- Published contributions to the security community
- Presentation experience at industry events
- Experience working with compliance, privacy, IT, networking or related functions
- Experience building security programs to achieve security risk management of third parties like corporate vendors, marketplace/app store vendors and apps built by third parties
We are an equal opportunity employer and value diversity and belonging at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Our perks & benefits
To support you at work and play, our perks and benefits include ample time off, an annual education budget, paid volunteer days, and so much more.
About Atlassian
The world’s best teams work better together with Atlassian. From medicine and space travel, to disaster response and pizza deliveries, Atlassian software products help teams all over the planet. At Atlassian, we're motivated by a common goal: to unleash the potential of every team.
We believe that the unique contributions of all Atlassians create our success. To ensure that our products and culture continue to incorporate everyone's perspectives and experience, we never discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. All your information will be kept confidential according to EEO guidelines.
To learn more about our culture and hiring process, explore our Candidate Resource Hub.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Audits Automation Cloud Compliance DAST Java Open Source Pentesting Privacy Python Risk management SAST Scripting Security strategy Strategy
Perks/benefits: Career development Conferences Team events Travel Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs