Senior Application Security Engineer
Tallinn, Estonia
Applications have closed
CyberCube
Cybercube is a market-leading cyber risk analytics platform. We aim to solve cyber risk problems in insurance with world-class analytics and unrivalled data.1) The market leader in digital analytics with the mission of delivering the world’s leading cyber risk analytics on one of the most critical risks of today and the future.2) Exceptionally well-funded startup that has raised over $100MM of capital from top-tier investors that has no need for any additional capital in this current market environment3) Explosive team growth (from 15 employees in SF to >100 people globally).4) Explosive client base growth path with a >99% retention rate.5) An incredibly diverse, collaborative, and high-performing team of insurance industry professionals, data scientists, and engineers who love working here.6) CyberCube and its products win industry awards every year (eg. Cyber Risk Solution of the Year & Stress Scenario Software of the Year in 2023). We were recognized with 9 awards in 2022.7) Senior leadership has a continuous commitment to team members doing the best work of their careers.8) CyberCube is just a place where you can get things done!9) Ranked #11 on Forbes America's Best Startup Employers.
SummaryResponsible for aligning our Software Development Life Cycle with security best practices, conducting security assessments on code changes and in general maturing our application security framework, processes and toolsets.
Primary Responsibilities & Objectives● Own the application security capability● Drive the technical direction and roadmap of the application security program● Lead application security reviews and threat modeling, including code reviews and dynamic testing● Collaborate with development teams to prepare application security code fixes● Implement and scale automated security testing to validate that secure coding best practices are being used● Enable secure development practices through training Skills & Experience● Familiarity with common security libraries, security controls, and common security flaws● Development or scripting experience and skills. Node.js and Java are preferred● Experience with OWASP, static/dynamic analysis, and common security tools● Experience identifying security issues through code review● Experience working with developers● Familiarity with securing applications built on cloud computing environments (AWS preferred)● Understanding of authorization frameworks (OAuth and JWT)● Experience working with source control (git, github, bitbucket etc.)● Exposure to agile development practices● Experience integrating application security functions into CI/CD processes● 3-5 years of experience working in an Application Security Engineering capabilityWhy You'll Love It Here (US)● Play an instrumental role in reshaping one of the oldest industries in the world● Competitive salary, 4% match on 401(k), and unlimited PTO● Meaningful early-stage equity● Generous healthcare benefits with medical, dental and vision coverage● Fully stocked kitchen with healthy snacks and Ugly Juice for your enjoyment● Weekly catered lunches, happy hour, and discounted gym passes● Company paid learning and development assistance● Flexible working hours and the option to work from home when necessary● Dependent care assistance plan● Company supported mentorship program● Grow in a collaborative, respectful, and empathetic culture
CyberCube Analytics, Inc. is an equal opportunity employer. We don’t tolerate discrimination against age, gender, gender identity, gender expression, sexual orientation, race, color, nationality, ethnicity, religion, disability, veteran status, protected genetic information or political affiliation.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Analytics Application security AWS Bitbucket CI/CD Cloud GitHub Java Node.js OWASP Scripting SDLC Security assessment
Perks/benefits: 401(k) matching Career development Competitive pay Equity Flex hours Flex vacation Health care Insurance Lunch / meals Snacks / Drinks Startup environment Team events Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs