Senior Application Security Engineer
M&T BankSalary not specified
Full Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
$140,000 – $165,000Compensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Information Technology, SoftwareIndustries
Requirements
Candidates should have demonstrable experience leading application security design and architecture reviews, with a key focus on Ruby on Rails. Extensive experience working with developers and driving application security standards is required, along with expertise in owning software vulnerability management from triage to remediation. Experience securing CI/CD pipelines, deploying and automating security testing tools (SAST, DAST, SCA, IaC), and expertise in threat modeling frameworks are also necessary. Familiarity with IaaS/PaaS cloud infrastructure, infrastructure as code, and software-oriented architecture is expected.
Responsibilities
The Senior Application Security Engineer will design, evaluate, and implement software security standards, and build tools, processes, and solutions to improve the Huntress security platform. They will influence and guide teams on secure-by-design principles, act as a security subject matter expert, and provide final review on high-risk pull requests. Responsibilities include leading secure development training, collaborating with development teams to adopt security tools, advocating for security changes, assisting teams with vulnerability remediation, partnering with DevOps for secure code delivery, owning the Vulnerability Disclosure Program, and assisting in the development of security processes and automated tooling. They will also implement an auditable Application Security program.
Skills
Application Security
Software Security Standards
Secure-by-Design Principles
Vulnerability Remediation
Security Platform Development
Cybersecurity
Risk Mitigation
Huntress
Managed endpoint detection and response services
About Huntress
Huntress provides managed endpoint detection and response (EDR) services to protect businesses from cyber threats, particularly ransomware. Their service includes 24/7 monitoring of clients' systems to identify potential cyberattacks. When a threat is detected, their team of security experts verifies the activity and alerts the client only if necessary, reducing the number of false positives that can occur with other services. In addition to threat hunting, Huntress offers security awareness training and resources like eBooks and webinars to educate employees about cybersecurity risks. Their commitment to high customer support and personalized reporting distinguishes them from competitors in the cybersecurity field. The goal of Huntress is to enhance the security posture of businesses by providing effective monitoring and education against cyber threats.
Columbia, MarylandHeadquarters
2015Year Founded
$281.8MTotal Funding
SERIES_DCompany Stage
CybersecurityIndustries
501-1,000Employees
Benefits
100% remote work environment
Generous PTO including vacation, sick time, and paid holidays
12 weeks paid parental leave
Highly competitive and comprehensive medical, dental, and vision benefits plans
401(k) with 5% contribution regardless of employee contribution
Life and Disability insurance plans
Stock options for all full-time employees
One-time $500 stipend to build/upgrade home office
Annual allowance for education and professional development assistance
$75 USD/month digital reimbursement
Access to both Udemy and BetterUp platforms for coaching, personal, and professional growth
Risks
Exploitation of security flaws in data transfer tools could affect Huntress's clients.
Social engineering attacks may bypass AI security measures, posing a risk to Huntress.
Difficulty in finding specialized talent could hinder Huntress's expansion efforts.
Differentiation
Huntress offers a 24/7 Security Operations Center for continuous threat monitoring.
The company integrates with Microsoft 365, enhancing security for businesses using Microsoft tools.
Huntress eliminates false positives by verifying threats before alerting clients.
Upsides
Huntress raised $180 million to expand and accelerate product development.
Recognition in Inc.'s Power Partner Awards boosts Huntress's market credibility.
Increased demand for cybersecurity due to remote work benefits Huntress's growth.
Related Jobs
RemoteRemoteApplication Security Architect
WorkwaveSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Security Engineer, Application Security
Trail of BitsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Software Security Engineer
Muon SpaceSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteDevSecOps Engineer
OddballSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSecurity Architect
EarnestSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSenior Software Engineer, Secure Agents
Cohere$150,000 - $220,000/year
- Full Time
- Senior (5 to 8 years), Junior (1 to 2 years)
RemoteSenior Security Engineer, Application & Cloud
Rad AI$150,000 - $180,000/year
- Full Time
- Senior (5 to 8 years)
RemoteSenior Software Engineer (Ruby on Rails - Identity)
ScribdSalary not specified
- Full Time
- Senior (5 to 8 years)