Senior Application Security Engineer
M&T BankSalary not specified
Full Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Communications Technology, Software DevelopmentIndustries
Requirements
Candidates must have 5+ years of experience in application security, secure software development, or related fields. Required experience includes hands-on work with SAST, SCA, DAST, Secrets Management, and API Security solutions, as well as securing containers, web, APIs, and cloud-native workloads (AWS, Azure, GCP). Strong knowledge of OWASP top 10s and modern attack vectors is essential, along with proficiency in at least one programming language such as Python, Go, Java, or TypeScript. Excellent communication and presentation skills are necessary to effectively engage with diverse stakeholders at various levels. Desired qualifications include application security certifications (OSCP, GWAPT, GCPN etc) and experience with Threat Modeling.
Responsibilities
The Senior Application Security Engineer will lead application security initiatives, design, build, and implement security best practices across different teams. They will implement and enhance security automation within CI/CD pipelines, maintain application security solutions, measure their effectiveness, and drive continuous improvement based on strategic priorities. This role involves developing and maintaining secure coding guidelines and security training for engineers, investigating security vulnerabilities, and supporting incident response as needed. Additionally, the engineer will research emerging threats, vulnerabilities, and attack techniques to proactively secure applications.
Skills
Application Security
CI/CD
Security Automation
Secure Coding
Vulnerability Management
Incident Response
Threat Research
Risk Assessment
Security Best Practices
Twilio
Cloud communications platform for developers
About Twilio
Twilio provides a cloud communications platform that enables developers to add various communication features like voice, messaging, video, and email to their applications. By using Twilio's APIs, developers can easily integrate these functionalities into their software, allowing for seamless communication with users. What sets Twilio apart from its competitors is its flexible pay-as-you-go pricing model, which charges clients based on their actual usage, making it suitable for businesses of all sizes, from startups to large enterprises. The company's goal is to empower businesses across different industries, such as healthcare, finance, retail, and education, to enhance their communication strategies and improve customer engagement.
San Francisco, CaliforniaHeadquarters
2008Year Founded
$243.9MTotal Funding
IPOCompany Stage
Consulting, Enterprise SoftwareIndustries
5,001-10,000Employees
Benefits
Vacation: Twilio offers generous annual time off in all countries for you to enjoy.
Healthcare: We are dedicated to helping our employees live longer and healthier lives through comprehensive health programs.
Retirement: Twilio cares about your retirement! We offer programs to help our employees plan for their retirement needs.
Family leave: At Twilio we recognize the importance of family. We offer generous maternity, paternity, and adoption leaves, as well as family medical care leave.
Earn your stripes: Build and present a Twilio app to earn your Twilio track jacket and receive $30 per month for e‑books for continued learning and education.
Catered meals: We provide a variety of snacks, drinks, and catered meals in each of our locations.
Risks
End-of-life for Programmable Video tool may lead to customer dissatisfaction.
Layoffs of 295 workers could decrease morale and affect service quality.
Engagement with Qatalyst Partners suggests potential internal conflicts and strategic shifts.
Differentiation
Twilio integrates voice, video, messaging, and email into applications, enhancing communication capabilities.
The pay-as-you-go pricing model offers flexibility and scalability for businesses of all sizes.
Twilio's APIs enable developers to build and scale communication solutions efficiently.
Upsides
Acquisition of SendGrid enhances Twilio's email API offerings, boosting market share.
Collaboration with Jack Henry strengthens Twilio's presence in the financial services sector.
Partnership with CareNote expands Twilio's reach into specialized markets like pastoral care.
Related Jobs
RemoteRemoteApplication Security Architect
WorkwaveSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Software Engineer, Secure Agents
Cohere$150,000 - $220,000/year
- Full Time
- Senior (5 to 8 years), Junior (1 to 2 years)
RemoteSenior Engineer, App Security
HealthieSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemotePrincipal DevSecOps Engineer
Second Front SystemsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteQA Automation Engineer, API / Security
Keeper SecuritySalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSecurity Engineer
Baseten$150,000 - $250,000/year
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteApplication Security Engineer (Senior level)
KustomerSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteEnterprise Security Engineer
OpenAI$260,000 - $325,000/year
- Full Time
- Senior (5 to 8 years)