Security Engineer, Product Security
Chainlink LabsSalary not specified
Full Time
Mid-level (3 to 4 years), Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Entertainment, TechnologyIndustries
Requirements
- Expertise in building and securing modern software development environments
- Strong foundation in secure coding practices, threat modeling, and vulnerability management
- Hands-on experience in automating security testing within CI/CD pipelines
- Proficiency with tools like SAST, DAST, RASP, SCA for vulnerability identification and remediation
- Experience with DevSecOps pipelines, infrastructure-as-code, and secure configurations for containerized and cloud-based environments
- Skills in scripting, APIs, and automation workflows for security operations
- Ability to conduct application security assessments, including code reviews, threat modeling, and penetration testing
- Passion for tackling complex security challenges and implementing proactive solutions
Responsibilities
- Conduct application security assessments, including code reviews, threat modeling, and penetration testing
- Develop, maintain, and implement secure coding guidelines and best practices for development teams
- Identify and remediate vulnerabilities in applications using tools like SAST, DAST, and RASP
- Collaborate with development teams to ensure security is integrated into the design and architecture of new applications
- Respond to and manage application-level security incidents
- Design and implement DevSecOps pipelines to automate security testing (e.g., SCA, SAST, DAST) in CI/CD workflows
- Advocate for “security as code” by integrating security controls into infrastructure-as-code and deployment scripts
- Work with DevOps teams to ensure secure configurations of containerized and cloud-based environments
- Continuously evaluate and improve DevSecOps tools and processes to reduce friction and optimize developer productivity
- Develop and implement scripts, APIs, and automation workflows to improve security operations and reduce manual effort
- Automate vulnerability management, patching, and reporting processes
- Monitor and enhance security tools through custom scripting or integrations with other platforms
- Build automated security metrics dashboards to track risk and compliance
- Partner with cross-functional teams to foster a culture of security awareness and shared responsibility
- Provide training and mentoring to developers and engineers on secure coding practices and security tools
Skills
Application Security
DevSecOps
Automation
SDLC
CI/CD
Secure Coding
Threat Modeling
Vulnerability Management
Security Testing
Cast & Crew
Digital solutions for entertainment production management
About Cast & Crew
Cast & Crew provides a range of digital solutions tailored for the entertainment industry, focusing on production management for film, television, and live events. Their tools help streamline administrative tasks such as payroll, human resources, and production management, making it easier for production companies, studios, and independent filmmakers to operate efficiently. The company's offerings include payroll management tools, purchase order management, screenwriting software, and digital onboarding solutions, all designed to simplify complex processes. Unlike many competitors, Cast & Crew emphasizes a comprehensive suite of services that integrate various aspects of production management, ensuring accurate and timely payments, efficient document handling, and insightful data reporting. The goal of Cast & Crew is to enhance the operational efficiency of entertainment productions while supporting the industry, including initiatives for the Canadian entertainment sector.
Burbank, CaliforniaHeadquarters
1976Year Founded
ACQUISITIONCompany Stage
Data & Analytics, Enterprise Software, EntertainmentIndustries
1,001-5,000Employees
Benefits
PTO
Family-leave time off
401(K)
Hybrid & remote work flexibility
Health, dental, & vision insurance
Employee referral program
Tuition reimbursement
Health and wellness programs
Risks
Shift towards blockchain solutions may disrupt traditional services like Cast & Crew.
WGA strike in 2023 causes production delays, impacting Cast & Crew's revenue.
AI-driven scriptwriting tools threaten traditional software like Final Draft.
Differentiation
Cast & Crew offers 24/7 online support and electronic payroll interfacing.
PSL3 software integrates internet convenience into production accounting.
Cast & Crew's staff expertise is a hallmark of their service quality.
Upsides
Increased demand for remote production tools boosts Cast & Crew's digital solutions.
Expansion of tax incentive programs enhances demand for tax credit management services.
Rise of independent creators increases need for scalable production management solutions.
Related Jobs
RemoteRemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemotePrincipal DevSecOps Engineer
Second Front SystemsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Software Engineer, Secure Agents
CohereSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSoftware Engineer, Security
Render$193,000 - $265,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSr. Vulnerability Management Engineer (Remote)
CrowdstrikeSalary not specified
RemoteSales Engineer - Federal
SpyCloudSalary not specified
- Full Time
- Expert & Leadership (9+ years)