Senior Security Engineer, AppSec
Poland
ClickUp
Our mission is to make the world more productive. To do this, we built one app to replace them all - Tasks, Docs, Goals, and Chat.ClickUp is the world's only all-in-one productivity platform that flexes to the way people want to work. It replaces all individual workplace productivity tools with a single, unified platform including project management, document collaboration, spreadsheets, chat, goals, and more. On a mission to make the world more productive, ClickUp is headquartered in San Diego and scaling remotely and internationally. As one of the fastest-growing SaaS companies in the world, ClickUp helps millions of users to be more productive and save at least one day every week. 🦄
We're looking for a Security Engineer, AppSec for a brand-new, engineering-focused security team. We partner with and embed inside of existing engineering teams at ClickUp. The security team at ClickUp works to build and share technology including defensive security features and functionality, secure infrastructure and operational tools, security response tooling and processes, and security guidelines and guardrails. You will work to build a culture of security enablement. Your focus on our product engineers will allow them to build and ship secure products based on Angular, Node.js, and PostgresSQL, all hosted in AWS. You'll be a strategic partner working directly with various engineering teams helping to design, develop and guide teams to secure solutions. We're scaling quickly, and are looking for Security Engineers who aren't afraid of this challenge! The Role: Perform some or all of the following, depending on skill-set:- Design, develop and build security features and defenses that protect the entire scope of the ClickUp platform.
- Perform threat models, implementation reviews, and security testing; review requirements and designs.
- Design and build tools to help with all stages in security prevention, detection, and response; across the full SDLC from code and test, through to deploy and operate.
- Embed yourself into existing engineering and product teams, acting as a "security player-coach".
- Build security automation for and into the ClickUp platform; design and build secure-by-default infrastructure and applications.
- Monitor and analyze production security events and, as needed, provide in-depth incident analysis.
- Build relationships with other engineers, product managers, data engineers, operators, and security team members to enable shipping a secure product.
- Multiple years of experience in technology / software development.
- Experience with Angular, Node.js, and PostgresSQL; or similar technologies.
- An ability to identify and provide a basic assessment of security threats.
- An understanding of security problems, paired with an ability to suggest solutions to software design problems.
- Cloud and SaaS experience.
- Ability to mentor others on technical topics, including security.
- Past experience with pushing technical initiatives; team, project, or indirect management of technology.
- Can facilitate a conversation rather than dictate it.
- 5+ years of software development experience and 1+ year of security-specific experience.
- Experience with security tools; SAST, DAST, RASP, dependency checkers, SIEM.
- 2 years of AWS experience; IAM and least-privilege architectures.
ClickUp was founded on a culture of hard work, consistent growth, and a desire to break norms. We’re a values-driven company and hire based on ambition, merit, and a willingness to do what it takes to succeed. We don’t care where you’re from, what you look like, or who you’re in a relationship with—we hire the best people for the job, and create an environment that supports employees on their journey to do the most exciting work of their lives! ClickUp is an Equal Opportunity Employer, and qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS Cloud DAST IAM Node.js SaaS SAST SDLC SIEM
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Manager Pentest H/F jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Engineer jobs
- Open Senior Cyber Security Specialist jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs