[Remote] Principal Security Engineer, Application Security at Trail of Bits

United States

Apply Now
Trail of Bits Logo
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
CybersecurityIndustries

Requirements

  • Experience with AI Security Innovation, leveraging LLMs for code analysis and vulnerability pattern recognition
  • Experience conducting comprehensive security assessments across diverse technology stacks (web applications, cloud-native architectures, mobile platforms, system-level software)
  • Experience identifying critical vulnerabilities in authentication systems, API security, access controls, and platform security mechanisms
  • Experience leading sophisticated threat modeling exercises and architecture security reviews for complex distributed systems
  • Experience with code review across multiple languages (JavaScript/TypeScript, Python, Go)
  • Experience working with C-level executives and engineering leaders

Responsibilities

  • Lead complex and high-impact client engagements within the Software Assurance practice
  • Drive comprehensive security assessments
  • Mentor team members
  • Shape the strategic direction of application security initiatives
  • Serve as the technical authority on engagements involving sophisticated software systems
  • Conduct threat modeling exercises
  • Perform architecture reviews of complex distributed systems
  • Perform deep code analysis across modern and legacy codebases
  • Develop methodologies for the Application Security team
  • Build tooling to scale the impact of the team
  • Represent Trail of Bits at the forefront of application security innovation
  • Translate complex security findings into business impact and actionable roadmaps
  • Collaborate with the Research & Engineering team to secure funding for advanced security research
  • Contribute to publications

Skills

Key technologies and capabilities for this role

Application SecurityThreat ModelingCode AnalysisArchitecture ReviewSecurity AssessmentsMentoringDistributed Systems

Questions & Answers

Common questions about this position

What is the salary for this Principal Security Engineer role?

The salary is $10,000.

Is this position remote?

Yes, the position is fully remote.

What key skills are required for this role?

The role requires expertise in leading security assessments, threat modeling, architecture reviews of distributed systems, deep code analysis, and providing technical leadership in application security.

What is the company culture like at Trail of Bits?

Trail of Bits fosters a culture of bold innovation by security experts, combining novel research with practical solutions, democratizing security information through blogs, tools, and community engagement, and staying at the forefront against attackers.

What makes a strong candidate for this position?

Strong candidates will have deep expertise as a technical authority in sophisticated software systems, experience leading high-impact client engagements, mentoring teams, and innovating in application security including AI.

Trail of Bits

Cybersecurity consulting and security research services

Website

About Trail of Bits

Trail of Bits provides cybersecurity services focused on high-end security research and consulting for organizations facing complex security challenges. They specialize in areas such as reverse engineering, cryptography, virtualization, malware, and software exploits. Their services include security audits, secure deployment consulting, and developing solutions to address security vulnerabilities. The company caters to a diverse clientele, including major tech companies and government agencies, and generates revenue through consulting fees and training courses aimed at enhancing the skills of security teams. Trail of Bits distinguishes itself from competitors with its tailored consulting services and a strong emphasis on workplace culture, recognized as one of the best places to work. The goal of Trail of Bits is to help organizations effectively protect their systems and data from security threats.

New York City, New YorkHeadquarters
2012Year Founded
$5.2MTotal Funding
SEEDCompany Stage
Consulting, CybersecurityIndustries
51-200Employees

Risks

AI model unreliability in critical areas poses a risk for cybersecurity applications.
Emergence of pickle file attacks highlights vulnerabilities in machine learning models.
Focus on mobile security may divert resources from other critical cybersecurity areas.

Differentiation

Trail of Bits specializes in high-end security research and consulting services.
The company serves tech giants and government agencies with robust security measures.
Trail of Bits combines human intellect with computational power for meaningful security gains.

Upsides

Recognition as a leader in cybersecurity consulting boosts Trail of Bits' market credibility.
Partnerships with companies like Discord and Hugging Face expand their client base.
Involvement in iVerify's funding round shows strategic interest in mobile security.

Related Jobs

United States
Remote iconRemote

Senior Application Security Engineer

M&T Bank
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
San Francisco
Remote iconRemote

Security Architect

Earnest
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Application Security Lead

Accurate Background
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Senior Security Engineer, Application Security

1Password
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States
Remote iconRemote

Software Engineering Architect - Game Security

Bungie
Salary not specified

Land your dream remote job 3x faster with AI

Try Jobo Free