Application Security Engineer

About VerkadaAt Verkada, we’re rethinking what it means to be physically safe. Today, we build security cameras that detect action, identify danger and help keep people and places safe and secure. Using a combination of software and hardware, we’re transforming an industry that has seen little innovation for decades—and we already support thousands of customers. But this is just the beginning. We envision a world in which security systems feel as seamless and modern as the organizations they protect and our enterprise solution becomes a model for not just business security, but public security as well.

Responsibilities:

• Facilitate the security baked into our applications throughout the software development lifecycle
• Evangelize software security best practices through training and information sharing
• Partner closely with engineering and product teams to improve the security of Verkada’s products and exceed customers’ expectations
• Explore innovative solutions to enable Verkada business instead of “Security says No”
• Collaborate with other engineering leaders to define, communicate, and execute on goals, priorities and process
• Set up security tooling and secure defaults to ensure software security best practices
• Perform architecture analysis, threat modeling and technical design reviews of sensitive features and infrastructure
• Create and operate a bug bounty program
• Triage and recommend solutions for security bugs from tools, third party assessments and bug bounties
• Collaborate with the CISO and security team to grow the broader Verkada security program
• Share your security experience with other teams internally and externally via security conferences and blogs
• Help your peer engineers grow their own security reasoning and knowledge

Qualifications:

• Bachelor of Science in Computer Science degree or equivalent
• Strong experience with AWS, GCP or other cloud service provider
• 5+ years of experience as a security engineer, software engineer, site reliability engineer, or security consultant
• Understanding of security weaknesses, exploits, attacks and mitigations
• Experience and enthusiasm for learning about new security products, features, and strategies;
• Coding ability. You will sometimes write production Python/Go code, security peer review code, build proofs of concept or implement automation scripts
• Excellent collaborative skills
• Outstanding written and verbal communication
• Experience with most of the following: Security Development Lifecycle, Threat Modeling, Architecture Analysis, Technical Design Review, Security Code Review, Open Policy Agent, SIEM

About our teamBehind the scenes, we’re a team of computer scientists, hardware engineers and experienced founders who saw a chance to make a real impact. We’re united by the challenge of building beautiful products, designed for real people—and by our commitment to using technology responsibly. We believe keeping data private and secure is core to our safety as individuals, businesses and communities and we put great care into building systems that embody our values as people. Likewise, many of Silicon Valley’s top investors believe in us: we’re backed by Sequoia Capital, FirstRound, Meritech and Siemens (Next47).
Verkada is an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status, and encourage all qualified applicants to apply.