Senior Security Engineer

DroneDeploy is the leading enterprise-grade drone data platform for managing complex job sites. Trusted by brands globally, we have over 5,000 customers across 200 countries. Our software automates everything from flight to insight, making the power of drone data accessible and productive for everyone. We’re transforming data collection across a variety of industries, including energy, construction, and agriculture, enabling teams to survey large areas and make informed decisions quickly, safely, and accurately. Recognized as a Best Place to Work nationally and locally, we have a winning culture where our employees span across the globe and are empowered to think big to meet our customer’s current and future needs.
We are looking for an experienced security engineer to join our team. We’re small, dynamic, fast-moving and developing on the cutting edge of drone technology and image processing. We build upon the most advanced infrastructure management and security tools to deliver best in class protection for our customers’ data. You will be responsible for leading and executing on our Security Engineering program as we grow our team and customer base internationally.  While this role is posted in Atlanta, GA, we are open to hiring across the U.S.

Responsibilities

• Collaborate with DevOps, Compliance, Engineering, and IT to streamline and uplevel our Security Engineering procedures and policies.
• Expand our automated security monitoring capabilities.
• Mitigate security vulnerabilities and architectural weaknesses by building security services, libraries, and integrating third party services.
• Perform design reviews to ensure projects do not introduce new security vulnerabilities.
• Educate and train security champions across the organization.
• Lead our bug bounty and external penetration testing programs.
• Develop security guidelines for common security issues, provide remediation guidance, and security baselines.
• Proactively introduce new controls into the infrastructure platform that improves our defense in depth.

Requirements

• 4 years of experience in Software Engineering, including time in a  Security Engineering role.
• Deep understanding of how to ensure high security without sacrificing user experience.
• Demonstrated ability to communicate technical security concepts to non-experts.
• Deep understanding of OWASP Top 10 vulnerabilities and mitigation strategies.
• Ability to prioritize, reproduce, recommend remediations and implement fixes for vulnerabilities
• Experience with automated security scanning software and their limitations.
• Experience performing formal threat modeling analysis in a real environment, and security triaging.
• Certifications such as CISSP, CCSP, GWAPT, OSCP, etc.
• Experience working in cloud computing environments such as GCP, AWS, Azure.
• Experience with common security compliance initiatives such as SOC2, ISO-27001, etc.

#LI-Remote
Life at DroneDeployWe believe in a global work environment that empowers everyone to explore, grow, and make a meaningful impact. We’re recognized as the # 1 Best Place to Work in the SF Bay Area and we work hard to maintain this status. Our team is creative, motivated, and committed to providing our customers the best drone software in the industry. We take feedback seriously, act with integrity, and constantly strive for improving our processes, benefits, products, and invest in our people.
Employee Programs & Benefits include:Flexible work schedulesRemote-friendly positions100% paid healthcare coverage for employees$1,000 development reimbursement$600 well-being reimbursementMonthly remote-utility stipendFlexible paid time offParental paid leaveWeekly virtual fitness classesEmployee referral bonusCommuter savings
DroneDeploy is an equal opportunity employer.All DroneDeploy employees are responsible for assisting in protecting the company and customer data by following information security policies and procedures.