Application Security Engineer
Description For Application Security Engineer
BitGo, established in 2013, is at the forefront of digital asset infrastructure, providing comprehensive solutions including custody, wallets, staking, trading, financing, and settlement services. As the largest independent digital asset custodian and staking provider globally, BitGo is seeking an Application Security Engineer to strengthen their security practices.
The role offers an exciting opportunity to make a meaningful impact on the company's security infrastructure. The ideal candidate will focus on quality over quantity, emphasizing automation over manual processes. Working from the Bangalore office, this position requires 5+ years of application security experience and 1-2 years of software development background.
Key responsibilities include developing automated security testing, conducting security reviews and threat modeling, managing vulnerabilities, supporting the bug bounty program, and driving security projects. The role requires expertise in OWASP, static/dynamic analysis, and common security tools, along with knowledge of network protocols and cloud security best practices.
BitGo offers a competitive compensation package including medical insurance, meal and commute allowances, and well-being benefits. The company culture emphasizes open communication, collaboration, accountability, and craftsmanship. This is an excellent opportunity to join a team that's transforming the financial markets through blockchain technology and digital assets.
The position requires working from the Bangalore office Monday through Friday, with occasional evening meetings to coordinate with global teams. The successful candidate will contribute to BitGo's mission of delivering trust in digital assets while working with cutting-edge technologies in the cryptocurrency space.
Responsibilities For Application Security Engineer
- Develop automated security testing to validate secure coding best practices
- Create and deliver secure development training
- Participate in application security reviews and threat modeling
- Perform application security vulnerability management
- Support bug bounty program
- Facilitate and support secure releases
- Support engineering teams in application security and best practices
- Drive security projects from ideation to implementation
- Mature security program through NIST CSF
- Assist in incident response activities
Requirements For Application Security Engineer
- 5+ years of experience with application security
- 1-2 years of experience in software development
- Familiarity with common security libraries, controls, and flaws
- Experience with OWASP, static/dynamic analysis, and security tools
- Basic understanding of network and web protocols
- Experience in vulnerability management lifecycle
- Familiarity with cloud security controls and best practices
- Experience working with developers
- Excellent communication skills
- Knowledge of TypeScript, Go, Python, Java, or Kotlin preferred
Benefits For Application Security Engineer
- Competitive salary
- IT equipment support for work
- Meal & Commute allowance
- Medical Insurance
- Well-being allowance
- Office snacks
- Professional development opportunities
