Application Security Engineer
London
Snyk
Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.Snyk is looking for an
Snyk is looking for an Application Security Engineer with experience in the areas of application security, cloud native services and developing reusable security libraries. We are building out a world class Product Security function within Snyk’s global Information Security & Risk team to support the company’s rapid growth.
You will have a unique opportunity to help build and shape the technical capabilities and the overall product security programme from an early stage. This role will report into the Application Security Lead.
You'll spend your time:
- Building innovative solutions that extend Snyks capabilities
- Working with architecture, product and engineering teams ensuring security is at the heart of what we do
- Collaborating with your peers to define software/infrastructure guardrails and security abstractions
- Engineering solutions that enable teams to self-serve on meaningful security metrics leading to faster, safer code in production environments
- Performing threat models and code reviews for products and services
- Building out a best-in-breed application security pipeline for real time event monitoring and response
You should apply if you have:
- 3+ years of experience working in security teams
- The ability to articulate security as a business enabler
- 2-3 years of experience writing battle tested production-level code
- Strong understanding of cloud native ecosystems (AWS, GCP, or Azure)
- Experience writing solid test cases and documentation
- Experience doing content development for secure coding standards
- Ability to work independently in a remote setting
- Strong written and verbal communication skills
We'd especially love to hear from you if you have:
- 5+ years of experience working in product security/ application security
- 5+ years of experience working in securing cloud platforms
- Practical knowledge of common threats and exposures to web apps and services
- Strong interest and experience in offensive security techniques
- Experience working with architecture teams establishing common good practices
- Information security certifications (OSCP, OSCE, AWAE, CKS, SANS)
- Experience with either Golang, Python, Scala, Rust, TypeScript
- Familiarity with data analysis / data science techniques
- Bachelor’s degree in computer science, information security, or Information Technology
We value diversity at Snyk, and would particularly encourage applications from those who are traditionally underrepresented in tech. If you like the sound of this role but are not totally sure whether you're the right person, please apply anyway!
#LI-KT1
#LI-Remote
with experience in the areas of application security, cloud native services and developing reusable security libraries. We are building out a world class Product Security function within Snyk’s global Information Security & Risk team to support the company’s rapid growth.
You will have a unique opportunity to help build and shape the technical capabilities and the overall product security programme from an early stage. This role will report into the Application Security Lead.
You'll spend your time:
- Building innovative solutions that extend Snyks capabilities
- Working with architecture, product and engineering teams ensuring security is at the heart of what we do
- Collaborating with your peers to define software/infrastructure guardrails and security abstractions
- Engineering solutions that enable teams to self-serve on meaningful security metrics leading to faster, safer code in production environments
- Performing threat models and code reviews for products and services
- Building out a best-in-breed application security pipeline for real time event monitoring and response
You should apply if you have:
- 3+ years of experience working in security teams
- The ability to articulate security as a business enabler
- 2-3 years of experience writing battle tested production-level code
- Strong understanding of cloud native ecosystems (AWS, GCP, or Azure)
- Experience writing solid test cases and documentation
- Experience doing content development for secure coding standards
- Ability to work independently in a remote setting
- Strong written and verbal communication skills
We'd especially love to hear from you if you have:
- 5+ years of experience working in product security/ application security
- 5+ years of experience working in securing cloud platforms
- Practical knowledge of common threats and exposures to web apps and services
- Strong interest and experience in offensive security techniques
- Experience working with architecture teams establishing common good practices
- Information security certifications (OSCP, OSCE, AWAE, CKS, SANS)
- Experience with either Golang, Python, Scala, Rust, TypeScript
- Familiarity with data analysis / data science techniques
- Bachelor’s degree in computer science, information security, or Information Technology
We value diversity at Snyk, and would particularly encourage applications from those who are traditionally underrepresented in tech. If you like the sound of this role but are not totally sure whether you're the right person, please apply anyway!
#LI-KT1
#LI-Remote
About Snyk
Snyk is the leader in developer security. We empower the world's developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture.
At Snyk, we envision an inclusive technology industry powering a more sustainable and secure world. Since our founding, Snykers have cared deeply for one another and the developer and security communities as well as the larger world around us. Learn more about our Snyk Impact social and environmental mission and take action with us here.
Snyk's Developer Security Platform automatically integrates with a developer's workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.
Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure Cloud Computer Science GCP Golang MongoDB Monitoring Offensive security OSCE OSCP Product security Python Rust SANS Scala TypeScript
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs