Application Security Engineer (JavaScript Background)

Remote UK

Contrast Security

Contrast Security application security software unifies security and development with one DevSecOps platform and increases accuracy and productivity.

View company page

Contrast Security Ranked One of the Fastest-Growing Companies in North America on the 2021 Deloitte Technology Fast 500™
Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development to operations, to production.
Contrast is looking for a talented application security engineer with a background in full stack web app development to join our team, engineering a world-class static analysis engine for analyzing the security of front-end JavaScript single page web applications. The ideal candidate would be well-versed with the OWASP Top 10 and proficient in front-end JavaScript, ReactJS, TypeScript (Angular) well as server-side Java and/or Kotlin. 
At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. 

Responsibilities:

  • Build the policy and rules used by Contrast's static analysis engine to detect vulnerabilities.
  • Serve as a subject matter expert for application security, particularly web application security.
  • Help build simple web applications for our static analysis engine to analyze.
  • Perform forensic investigation when the results of the product's analysis don't meet expectations.
  • Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.
  • Be a team player. You love to work with others to find the right solutions.

About You:

  • You consider yourself an expert on web application security vulnerabilities such as cross-site scripting or DOM cross-site scripting.
  • You enjoy writing code.
  • You believe creating and maintaining accurate automated tests contributes to your success as a developer
  • You have experience working on a remote team.
  • Experience developing JavaScript single-page web apps using ReactJS, as well as, TypeScript (Angular)
  • Experience with server-side Java and/or exposure or interest in Kotlin
  • Experience with both JavaScript front-end development best-practices and tooling, as well as, Java/Kotlin development best-practices and tooling.
  • Comfortable working with GitHub for source control and continuous integration.
  • You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.
  • You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.
  • You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.

What we offer:

  • Competitive compensation package (salary + equity)
  • A fun and dynamic environment where you work with other like minded people on products which make a real difference to the security of our customers
  • Healthcare packages
#LI-CM1#LI-remote
We are changing the world of software security. Do it with us.  We believe in what we do and are passionate about helping our customers secure their business.If you’re looking for a challenge and want to enjoy where you work, you’ll love Contrast Security.
Contrast Security is committed to a diverse and inclusive workplace. Contrast Security is an equal opportunity employer and our team is comprised of individuals from many diverse backgrounds, lifestyles, and locations.
By submitting your application, you are providing Personal Information about yourself (cover letter, resume, email address, etc.) and hereby give your consent for Contrast Security, Inc. and/or our HR-related Service Providers, to use this information for the purpose of processing, evaluating and responding to your application for current and future career opportunities. If you are a resident of the European Economic Area or are applying for a position in the European Economic Area, Contrast’s Privacy Statement reflects our policies around compliance with the General Data Protection Regulation (“GDPR”) and your rights respective to GDPR as a California resident, you are entitled to certain rights under CCPA: The California Consumer Privacy Act of 2018 (“CCPA”) will go into effect on January 1, 2020. Under CCPA, businesses must be overtly transparent about the personal information they collect, use, and store on California residents. CCPA also gives employees, applicants, independent contractors, emergency contacts and dependents (“CA Employee”) new rights to privacy.* We could support remote work in most states except Colorado.
Recruitment Agencies: Although we value the services you provide, at this time we are not accepting resumes from agencies, headhunters, or other suppliers who have not signed a formal agreement with us.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security CCPA Compliance Full stack GDPR GitHub Java JavaScript Kotlin OWASP Privacy Scripting TypeScript Vulnerabilities XSS

Perks/benefits: Career development Competitive pay Equity

Regions: Remote/Anywhere Europe
Job stats:  3  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.