Application Security Engineer - Federal / US Government

$130,000 - $280,000/Yr

Verkada - San Mateo, CA

posted 10 days ago

Full-time - Mid Level
San Mateo, CA
1,001-5,000 employees
Publishing Industries

About the position

The Application Security Engineer at Verkada will play a crucial role in ensuring the security of the company's applications throughout the software development lifecycle. This position involves collaborating with engineering and product teams to enhance product security, implementing security best practices, and facilitating a culture of security awareness within the organization. The engineer will also be responsible for conducting architecture analysis, threat modeling, and managing a bug bounty program, all while promoting innovative security solutions that support business objectives.

Responsibilities

  • Facilitate the security baked into our applications throughout the software development lifecycle
  • Evangelize software security best practices through training and information sharing
  • Partner closely with engineering and product teams to improve the security of Verkada's products and exceed customers' expectations
  • Explore innovative solutions to enable Verkada business instead of 'Security says No'
  • Collaborate with other engineering leaders to define, communicate, and execute on goals, priorities and process
  • Set up security tooling and secure defaults to ensure software security best practices
  • Perform architecture analysis, threat modeling and technical design reviews of sensitive features and infrastructure
  • Create and operate a bug bounty program
  • Triage and recommend solutions for security bugs from tools, third party assessments and bug bounties
  • Collaborate with the CISO and security team to grow the broader Verkada security program
  • Share your security experience with other teams internally and externally via security conferences and blogs
  • Help your peer engineers grow their own security reasoning and knowledge

Requirements

  • Ability to successfully pass a background screening in accordance with CJIS security standards
  • Eligibility to onboard into AWS GovCloud production environments
  • Bachelor of Science in Computer Science degree or equivalent
  • Strong experience with AWS, GCP or other cloud service provider
  • 7 - 10+ years of experience as a security engineer, software engineer, site reliability engineer, or security consultant
  • Understanding of security weaknesses, exploits, attacks and mitigations
  • Experience and enthusiasm for learning about new security products, features, and strategies
  • Coding ability in Python/Go for production code, security peer review, building proofs of concept or implementing automation scripts
  • Excellent collaborative skills
  • Outstanding written and verbal communication
  • Experience with Security Development Lifecycle, Threat Modeling, Architecture Analysis, Technical Design Review, Security Code Review, Open Policy Agent, SIEM

Benefits

  • Generous company paid medical, dental & vision insurance coverage
  • Unlimited paid time off & 11 companywide paid holidays
  • Wellness allowance
  • Commuter benefits
  • Healthy lunches and dinners provided daily
  • Generous paid parental leave policy & fertility benefits

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service