Staff Application Security Engineer
Description For Staff Application Security Engineer
SPAN is a mission-driven company focused on electrification and decarbonization through innovative home energy solutions. As a Staff Application Security Engineer, you'll play a crucial role in building and enhancing SPAN's application security program. The position offers an opportunity to work at the intersection of clean energy and cybersecurity, ensuring the security of applications that contribute to environmental sustainability.
The role demands expertise in application security, with responsibilities ranging from threat modeling and code reviews to implementing security controls and maintaining compliance. You'll work closely with development teams to integrate security best practices into the software development lifecycle, while staying current with the latest security threats and best practices.
The company offers a competitive compensation package including equity, comprehensive benefits, and a flexible work environment. Located in San Francisco's SoMa neighborhood, SPAN provides a collaborative atmosphere where creative thinking and teamwork are valued. The company is committed to diversity and equal opportunity, making it an ideal workplace for talented individuals passionate about both security and renewable energy.
Working at SPAN means joining a well-funded, venture-backed company with strong growth potential. The role offers technical challenges in securing critical infrastructure while contributing to the broader mission of environmental sustainability. The company culture emphasizes work-life balance with benefits like unlimited PTO, monthly social events, and various employee resource groups.
Responsibilities For Staff Application Security Engineer
- Developing comprehensive application security strategy
- Perform secure design and code reviews
- Lead and execute SAST/DAST/SCA efforts
- Collaborate with development teams to integrate security best practices
- Perform threat modeling on existing and upcoming feature sets
- Develop and enforce authentication and authorization posture
- Design, implement, and maintain application security controls
- Ensure compliance with regulatory requirements and industry standards
- Stay current with latest application security threats and best practices
Requirements For Staff Application Security Engineer
- Bachelor's Degree in Computer Science, Information Assurance, Cyber Security, or related field
- 7+ years of experience in security engineering or operations role
- Deep understanding of web and mobile application vulnerabilities and defenses
- Hands-on experience with application security scanning tools
- Expertise in web, mobile, and API security
- Effective communication with technical and non-technical audiences
- Proficient in writing production-quality code in Python, Kotlin or NodeJS
- Experience in developing threat models (e.g., STRIDE, DREAD)
Benefits For Staff Application Security Engineer
- Competitive compensation + equity grants
- 100% employee premiums for base plans on medical, dental, vision
- Parental leave up to six months
- Comfortable office space near BART and Caltrain
- Monthly social events
- Flexible hours
- One holiday per month
- Unlimited PTO
Jobs Related To SPAN Staff Application Security Engineer
