Staff Application Security Engineer (Security)
PhantomFull Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Candidates should have 8+ years of strong background in application security for both internal and external-facing web services. Proficiency in Python and/or JavaScript is required, along with experience with AWS, EKS, and Kubernetes. Expert-level knowledge of authentication methods for web and mobile applications and proficiency with security tools for static code analysis, vulnerability assessment, and application monitoring are essential. Proven ability to work closely with Development and DevOps teams to foster secure coding practices and DevSecOps culture is necessary. Desired certifications include CISSP, OSCP, CEH, or AWS Certified Security Specialty, and knowledge of compliance requirements like SOC 2, PCI-DSS, and GDPR is a plus.
The Staff Engineer will conduct comprehensive security assessments for web services, identify and drive remediation of vulnerabilities, and participate in design reviews to assess potential security risks. They will develop and implement security policies and best practices, manage quarterly security penetration testing, and collaborate with Development and DevOps teams to integrate security within CI/CD pipelines. Responsibilities also include performing static code analysis, enhancing cloud security posture in AWS, EKS, and Kubernetes, improving data security, maintaining documentation on security policies and protocols, administering tooling for detecting anomalous behavior, and devising a plan for testing compliance of edge networks across all SDLC environments.
Technology solutions for private investment partnerships
Juniper Square provides a comprehensive platform for managing private investment partnerships in sectors like commercial real estate, private equity, and venture capital. The platform supports all phases of the investment lifecycle, including fundraising, investor operations, and fund administration. It connects general partners (GPs) and limited partners (LPs), facilitating communication and collaboration throughout their investment journeys. By automating processes and making critical investment data easily accessible, Juniper Square helps reduce manual work and accelerates investment closings. Unlike its competitors, Juniper Square offers a universal system tailored specifically for private markets, accommodating firms of any size and complexity. The company's goal is to simplify and enhance the investment process, ensuring secure management and sharing of sensitive information.