Senior Security Engineer
Ontario or British Columbia
Applications have closed
Greenhouse
Einstellungssoftware, die mehr als nur ein Bewerbermanagementsystem ist. Wir bieten HR-, Recruiting- und Talentakquise-Teams die Tools und die…We believe in the power of hiring. Because the potential for people to do something outstanding has everything to do with being in the right role, on the right team, at the right time. That’s where Greenhouse comes in – from recruiting to on-boarding, we make software to help every company be great at hiring.
We are hiring a Senior Security Engineer to contribute to the growth of our security program and partner with our product engineering teams on proactively identifying and addressing security issues in our products. As a member of our distributed security team, you will support and scale our application security practices by improving automation, holistically remediating security issues, and promoting secure-by-default principles.
Security at Greenhouse is critical to our success and for building & maintaining customer trust. From influencing how we write our software, deploy our infrastructure, and make architecture decisions, security is a primary focus.
Who will love this job:
- A security lover, you keep up with the latest security research and love finding security issues in the newest technology across various security fields
- A problem solver, you can tackle complex security problems while still balancing good usability and mitigating security risk
- A doer, you get things done with attention to detail and are motivated to improve on the status quo
- A people-person, you shine when collaborating with others and are eager to contribute across the organization
What you'll do:
- Penetration testing and source code review
- Leverage security tooling to proactively detect security vulnerabilities and promote security awareness to developers
- Design frameworks/controls to promote ‘secure by default’ practices and break apart a monolith application
- Participate in high-level architecture decisions that impact the entire code base as well as new product features
- Voice support for product security by promoting security development standard methodologies and partnering with software engineering as a security domain expert
- Respond to vulnerability reports by figuring out risk and providing practical remediation advice to our product engineering teams and other partners
- Supervise security vulnerabilities and prioritize remediations with teams according to our SLA requirements
- Improve automation around product-focused security detection, vulnerability triaging, patching and many other security processes
- Respond to security incidents related to our products
You should have:
- Experience pen-testing web applications, security architecture and design reviews, and security code reviews
- Deep understanding of web security with a focus on providing practical technical recommendations to engineering teams
- Knowledge industry-standard authentication protocols such SAML SSO and OAuth2
- Proficiency in at least one programming language and be capable of quickly picking up new languages
- Your own unique talents! If you don't met 100% of the qualifications outlined above, tell us why you'd be a great fit for this role in your cover letter
Applicants must be currently eligible to work in Canada.
For purposes of processing or administering your employment relationship, personal information that you provide to the Company may be transferred to and accessed by an affiliate in the United States or elsewhere, or to agents and contractors (such as payroll companies, insurance companies, information technology consultants, etc.) that provide services to the Company.
#LI-MB1
Who we are
At Greenhouse, we celebrate having a diverse group of hardworking employees and it hasn’t gone unnoticed. We’ve won numerous awards including Inc. Magazine Best Workplace (2018-2022), Glassdoor #1 Best Place to Work, Forbes Cloud 100, Deloitte Technology Fast 500, Inc. 5000, Crain’s Best Places to Work NYC, Fortune’s Great Place to Work (2019 - 2022), and Mogul’s Top 100 Workplaces for Diverse Representation (2022). We pride ourselves on fostering a collaborative culture throughout every step of a Greenhouse employee's journey. From day one of our interview process to executive "Ask Me Anything" sessions, we consistently cultivate an inclusive environment.
For all our employees, we offer a full slate of benefits from competitive salaries, stock options, fully paid option(s) for health coverage (medical, dental and vision), disability coverage, employer paid life insurance, mental health resources, financial wellness benefits, and a fully paid parental leave program. For US-based employees, we offer flexible vacation and a 401(k) matching program. For Dublin-based employees, we offer 25 days' vacation and an employer matching pension program.
Our success in making companies great at hiring depends on our ability to create a diverse, equitable and inclusive environment. To that end, we’re committed to attracting, developing, retaining and promoting a diverse workforce, and infusing DE&I throughout all of our internal practices. By ensuring that every Greenie is able to bring a diversity of talents to our work, we’re increasingly capable of living out our mission and providing real insight from our products to support our customers. We encourage people from underrepresented backgrounds and all walks of life to apply. Come grow with us at Greenhouse, where we’re building a team to face the world’s increasingly complex and diverse hiring needs.
Want to learn more about our interviewing process? Check out our interviewing at Greenhouse page
**We are a distributed company and do our best work where it works best for us - as individuals and as teams. At this time, all employees are working remotely due to COVID-19.**
Our Talent Acquisition (TA) team at Greenhouse has recently been notified of a phishing scam targeting candidates applying for our open roles. Scammers have been posing as hiring managers and recruiters in an effort to access candidates’ personal and financial information. Please note that any communication from our hiring teams at Greenhouse regarding a job opportunity will only be made by a Greenhouse employee with an @greenhouse.io email address. We would never ask you as part of our interview process to provide personal or financial information, including but not limited to your social security number, online account passwords, credit card numbers, passport information and other related banking information. If you believe you’ve been a victim of a phishing attack, please mark the communication as “spam” and alert us right away at talentacquisition@greenhouse.io.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation Banking Cloud Pentesting Product security SAML SSO Vulnerabilities
Perks/benefits: Career development Competitive pay Equity Flex hours Flex vacation Health care Insurance Medical leave Parental leave Startup environment Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs