Senior Application Security Engineer
Seattle, Washington, United States
Applications have closed
Qualtrics
Know what your customers and employees need, when they need it, and deliver it every time with powerful, AI driven Experience Management (XM) software.The Challenge
As Qualtrics continues to extend the Experience Management (XM) platform, we must ensure that we’re protecting our customers and their data by delivering and operating secure systems. Hundreds of software engineers contribute to Qualtrics XM every day. We require an outstanding application security program which enables developers to deliver secure code, effectively identifies and remediates security vulnerabilities, and keeps up with our growing scale. Qualtrics is looking for an experienced software developer with a passion for security who is ready to bring our appsec program to the next level.
A Day in the Life
- Review source code & software/system designs, and consult with software engineers across the organization to identify and/or avoid security issues through alignment to security standards.
- Build reusable libraries and components which implement common security functionality for use across the Qualtrics XM platform
- Document and improve secure SDL processes and standards
- Deliver training and provide mentoring to software engineers on security topics
- Facilitate threat modeling exercises to ensure accurate security design decisions are being made
- Coordinate with security champions and other software engineers to ensure successful and timely remediation of vulnerabilities
- Automate redundant tasks related to detection and reporting of vulnerabilities, suspicious application activity, coordination of response activities, etc.
- Implement security testing tools and methodologies (e.g., SAST, DAST) in collaboration with other engineering teams
- Participate in on-call rotation for security operations responsibilities, including security incident response
- Use penetration testing techniques to identify or validate vulnerabilities in Qualtrics products
The Expectation for Success
You will work effectively with the Qualtrics engineering organization, providing reliable technical security expertise on application security issues and applying a team-based approach to solving problems and prioritizing security work. You will seek to streamline and automate processes in order to deliver maximum results with minimal effort.
Skills That Will Lead to Success
- Bachelor’s degree in Computer Science or a related field
- At least four years developing web or backend applications
- Sound understanding of app security vulnerabilities, defense techniques and security best practices, including language-specific security measures and present-day threats
- Experience with modern application development languages and frameworks
What differentiates us from other companies
- Work life integration is deeply important to us - we have frequent office events, team outings, and happy hours.
- We take pride in our offices design by encouraging creativity through our rooftop views to an open and transparent work space.
- On top of standard benefits package (medical, dental, vision, life insurance, etc) we provide snacks, drinks, and free lunches in our office.
- We believe in sharing Qualtrics success which is part of the compensation for all employees.
Tags: Application security Computer Science DAST Incident response Pentesting SAST Vulnerabilities
Perks/benefits: Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs