Application Security Engineer

$165,000 - $185,000/Yr

Genius Sports Group - New York, NY

posted 4 days ago

Full-time - Mid Level
New York, NY

About the position

The Application Security Engineer at Genius Sports will play a crucial role in enhancing the security posture of the organization by embedding security practices into the software development lifecycle (SDLC). This position focuses on secure software architecture, secure coding, and the development of internal tools to improve security practices. The engineer will collaborate with cross-functional teams to identify security gaps, conduct threat modeling, and provide training to software engineers, all while contributing to the overall application security strategy.

Responsibilities

  • Design and implement internal tools to improve security practices in the SDLC.
  • Work closely with engineering, product, and operational teams to identify security gaps and propose improvements.
  • Perform threat modeling exercises with engineering teams to identify threats and remediation strategies.
  • Conduct security code reviews for critical system components, evaluating non-compliance issues and software standards deviations.
  • Create and execute training sessions for software engineers to enhance their security knowledge.
  • Support the setup of CI/CD for security tools developed by the application security team.
  • Design and execute security assessments for various software and hardware, including desktop and mobile applications, IoT devices, and web APIs.
  • Contribute to the successful execution of the Application Security strategy.
  • Communicate effectively with other engineers to address security issues.
  • Research security trends related to secure architecture and secure coding to continuously improve security practices.

Requirements

  • Experience with multiple programming languages, including mobile applications.
  • Understanding of software architectures and deployment strategies.
  • Knowledge in Cloud Security, particularly with AWS.
  • Expertise in Kubernetes Security.
  • Knowledge of secure coding and defensive programming practices.
  • Proficiency in offensive and defensive security technologies.
  • Understanding of software development practices and cloud environments.

Nice-to-haves

  • Experience in a technology and software engineering-led organization working with Agile methodologies.
  • Knowledge of applicable laws, regulations, and standards including Data Protection Laws, SOX, ISO 27001, SOC 2, and NIST.

Benefits

  • Health insurance
  • Skills training
  • Social events throughout the year
  • Monthly team building events
  • Sports tournaments
  • Charity days
  • Wellbeing activities

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service