Senior App Security Engineer

We’re looking for a collaborative and self-motivated Senior App Security Engineer to join our quickly growing team and make a big impact.

As a Senior App Security Engineer on the Security Team, you’ll work closely with software engineers, product managers, and designers, to ensure that our infrastructure is secure. You’ll work on major technical projects with large data volumes, lead the building of new features, and help shape our engineering culture and processes. You will help to perform in-house vulnerability identification, triaging and remediation. You will help to automate our security processes and build out new alerting and detection mechanisms. Our tech stack includes Python, Django, Celery, MySQL, Elasticsearch, Vue, and Webpack. Our technology team is focused on scale, quality, delivery, and thoughtful customer experience. We ship frequently without sacrificing work/life balance.

To be set up for success in this role, you’ll need to have:

• 5+ years total professional experience as an application security engineer
• 5+ years experience in penetration testing and vulnerability remediation
• Python or significant web experience in a similar framework
• Experience in risk analysis and security frameworks

If the details below describe you, you could be a great fit for this role:

• Worked on a complex, high-traffic site at a startup or software-as-a-service company, ideally with large amounts of data
• Experience with MySQL (or Postgres) and/or ElasticSearch
• Any combination of the following: experience with Celery, Luigi or Airflow, Kafka, AWS, NLP, data model performance tuning, content extraction, application performance tuning
• Interest in journalism, news, media or social media

In addition, we’re always looking for candidates who:

• Have excellent communication skills, with an ability to explain ideas clearly, give and receive feedback, and work well with team members
• Exhibit a willingness to learn in areas where they have less experience with our tech stack
• Take pride in the quality of their code. (Your code should be readable, testable, and understandable years later. You adhere to the Zen of Python)
• Work well in a fast-paced development environment with testing, continuous integration and multiple daily deploys
• Have the ability to manage complexity in a large project, and incur technical debt only after considering the tradeoffs
• Take a logical approach to problem solving that combines analytical thinking and intuition

Interview Overview

• 30 min interview with a member of our Talent Team
• 1 hour zoom interview with the hiring manager
• Take-home coding assignment (2 hours max)
• Peer interviews, including a 30 min code review discussion
• Final call(s) with executive team member(s)

Salary

The starting salary for this role is between $140,000 - $170,000, depending on skills and experience. We take a geo-neutral approach to compensation within the US, meaning that we pay based on job function and level, not location. For all other countries, we have competitive pay bands based on market standards.

Individual compensation decisions are based on a number of factors, including experience level, skillset, and balancing internal equity relative to peers at the company. We expect the majority of the candidates who are offered roles at our company to fall healthily throughout the range based on these factors. We recognize that the person we hire may be less experienced (or more senior) than this job description as posted. If that ends up being the case, the updated salary range will be communicated with you as a candidate.