Senior Security Engineer - Application Security
New York City
Applications have closed
Spotify
Spotify is a digital music service that gives you access to millions of songs.
Security engineers at Spotify protect the security of Spotify’s platform and of our 400+ million users. We are looking for an experienced engineer to join us in securing the most important engineering initiatives at Spotify.
You will be working in the application security consulting team. We’re a distributed team supporting autonomous development teams with application security expertise. We aim to constantly improve the security posture for our fast-paced, rapidly-changing environment in a manner that will keep up with our scale. We’re experts in many domains of security, willing to teach and learn from anyone at the company.
You are a seasoned security, systems or software engineer with a passion for software security. Above all you have an insatiable appetite for learning new things and honing your existing skill set. In this role you are expected to represent security in various engineering and business contexts so we expect you to be comfortable communicating with diverse audiences both verbally and in writing.
Spotify transformed music listening forever when we launched in 2008. Our mission is to unlock the potential of human creativity by giving a million creative artists the opportunity to live off their art and billions of fans the chance to enjoy and be passionate about these creators. Everything we do is driven by our love for music and podcasting. Today, we are the world’s most popular audio streaming subscription service with a community of more than 381 million users.
This role is not eligible for hire in Colorado, USA.
Global COVID and Vaccination DisclosureSpotify is committed to safety and well-being of our employees, vendors and clients. We are following regional guidelines mandating vaccination and testing requirements, including those requiring vaccinations and testing for in-person roles and event attendance. For NYC, we have mandated that all employees and contractors be fully vaccinated in order to work in our offices and externally with any third-parties.For all other locations, we strongly encourage our employees to get vaccinated and also follow local COVID and safety protocols.
You will be working in the application security consulting team. We’re a distributed team supporting autonomous development teams with application security expertise. We aim to constantly improve the security posture for our fast-paced, rapidly-changing environment in a manner that will keep up with our scale. We’re experts in many domains of security, willing to teach and learn from anyone at the company.
You are a seasoned security, systems or software engineer with a passion for software security. Above all you have an insatiable appetite for learning new things and honing your existing skill set. In this role you are expected to represent security in various engineering and business contexts so we expect you to be comfortable communicating with diverse audiences both verbally and in writing.
What You'll Do
- Champion security with development teams through threat modeling design and code reviews.
- Consult, evangelize, and teach theoretical and practical security to groups of varying sizes, disciplines, and experience levels.
- Drive cross-disciplinary initiatives to improve the security of our engineering ecosystem and the products developed at Spotify.
Who You Are
- 4+ years of hands-on technical experience with software security.
- Experience in securing distributed systems at scale.
- Interest and experience in defending against attacks in several areas of security.
- Skill and enthusiasm for communicating technical solutions to both technical subject matter experts and business stakeholders.
- You have experience from working in agile environments and easily adapt to change, enjoy challenges and thrive in ambiguity.
- Ability to read and analyze code in languages such as Java, Python, Scala, C++ and TypeScript.
- Programming skills in at least one programming language.
- Experience with topics such as fuzz testing, static code analysis and applied cryptography.
- Expertise in backend, mobile, web and machine learning security is a big advantage.
Where You'll Be
- We are a distributed workforce enabling our band members to find a work mode that is best for them!
- Where in the world? For this role, it can be within the Americas region in which we have a work location and is within working hours.
- Working hours? We operate within the Eastern Standard time zone for collaboration and ask that all be located that time zone.
- Prefer an office to work from home instead? Not a problem! We have plenty of options for your working preferences. Find more information about our Work From Anywhere options here.
Spotify transformed music listening forever when we launched in 2008. Our mission is to unlock the potential of human creativity by giving a million creative artists the opportunity to live off their art and billions of fans the chance to enjoy and be passionate about these creators. Everything we do is driven by our love for music and podcasting. Today, we are the world’s most popular audio streaming subscription service with a community of more than 381 million users.
This role is not eligible for hire in Colorado, USA.
Global COVID and Vaccination DisclosureSpotify is committed to safety and well-being of our employees, vendors and clients. We are following regional guidelines mandating vaccination and testing requirements, including those requiring vaccinations and testing for in-person roles and event attendance. For NYC, we have mandated that all employees and contractors be fully vaccinated in order to work in our offices and externally with any third-parties.For all other locations, we strongly encourage our employees to get vaccinated and also follow local COVID and safety protocols.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security C Code analysis Cryptography Java Machine Learning Python Scala TypeScript
Perks/benefits: Home office stipend
Region:
North America
Country:
United States
Job stats:
26
3
0
Categories:
AppSec Jobs
Security Engineering Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open DevSecOps-related jobs