Application Security Engineer

Who we are:

BigID is a data intelligence platform for privacy, security and governance - enabling customers to proactively discover, manage, protect, and get more value from their regulated, sensitive, and personal data across their data landscape. We're reimagining data management, empowering customers to drive business innovation, achieve compliance, build customer trust, make better decisions, and get more value from their data.

Headquartered in New York City with a worldwide presence, we are building a global team with a passion for innovation and next-gen technology with R&D in the heart of Tel Aviv. BigID has been recognized for its data intelligence innovation as a World Economic Forum Technology Pioneer, named to the 2021 Forbes Cloud 100, #19 on the 2021 Inc 5000 (the list of fastest growing private companies in America), and an RSA Innovation Sandbox winner.

At BigID, our team is the foundation of our success. Join a people-centric culture that is fast-paced and rewarding: you’ll have the opportunity to work with some of the most talented people in the industry who value innovation, integrity, and teamwork.

Who we seek:

An Application Security Engineer reporting to the Chief Security Officer to partner with the engineering organization as a consultant and SecOps subject matter expert.

What you’ll do:

• Participate in and support application security reviews and threat modeling, including code review and dynamic testing.
• Own and perform application security PenTesting and vulnerability management.
• Hands-on partnership with developers to securely develop new products and features..
• Identifies, reports, and resolves security violations.
• Articulate complex business terms to technical security language.
• Facilitate and support the preparation of product releases.
• Support and consult with product and development teams in the area of application security.
• Assist in creation of application security training.
• Assist in development of automated security testing to validate that secure coding best practices are being used.
• Investigating the security issues in BigID products and creating scalable long term solutions
• Training developers on security best practices and assisting in implementation
• Collaborating with architects, engineers, and other security practitioners to evaluate application and infrastructure.
• Form a strong relationship with developer teams and serve as point of contact and security SME for questions arising around secure development. 

What you’ll bring: 

• At least 5 years’ experience in a security role.
• Container orchestration and container platform security experience (Docker/K8).
• Experience with OWASP, static/dynamic analysis, and common security tools.
• Familiarity with cloud security controls and micro services
• Experience working with engineering and product teams.
• Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.
• Application Security experience including code review, threat modelling, and penetration testing.
• Development/Coding experience in multiple programming languages.
• Experience with Continuous Integration (CI) and Continuous Delivery (CD) platforms.

What’s in it for you?!

Our people are the foundation of our success, and we place a high priority on offering a wide range of benefits that make our team happier and healthier.

• Equity participation - everyone shares in our success
• Flexible work arrangements - for parents, for remote work days, etc.
• Office perks: dog-friendly environment, fully-stocked fridge, gym and exercise classes, weekly Happy Hours, free parking, evening meals
• Knowledge training & Career development tracks

Our Values:

We look for people who embody our values - Care, Do, Try & Shine.

• Care - We care about our customers and each other
• Do - We do what it takes to make a positive impact
• Try - We try our best and we don’t give up
• Shine - We shine and make it our mission to always stand out

Diversity & Inclusion: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying. Come as you are.

#LI-Remote

#LI-AB1