Senior Application Security Engineer
Description For Senior Application Security Engineer
Tide is seeking a Senior Application Security Engineer to join their Product Security team. The ideal candidate will be passionate about security and resilient software development processes, with expertise in hunting for vulnerabilities in web and mobile applications. You'll work closely with engineering teams to remediate security issues and explain concerns to various stakeholders. Key responsibilities include performing threat modeling, securing cloud-native applications, and integrating security into CI/CD pipelines. The role requires deep knowledge of AppSec, proficiency with tools like Burp Suite, and excellent communication skills. You'll be part of a collaborative security team that includes Product Security, Threat Detection & Response, and Identity functions. Tide offers a flexible workplace model, competitive salary, and comprehensive benefits package. The company values diversity and inclusion, welcoming candidates from all backgrounds to contribute to their mission of empowering small businesses.
Responsibilities For Senior Application Security Engineer
- Regularly dive deep into mobile and web app technologies to understand feature development and proactively hunt for vulnerabilities
- Secure cloud-native applications, ensuring best practices are applied consistently
- Perform threat modeling and guide developers in secure design principles
- Help remediate vulnerabilities through strategic initiatives, writing patches, or creating actionable vulnerability tickets
- Serve as a subject matter expert across a wide range of security areas, particularly in Application Security
- Make security invisible when possible, enabling secure development rather than gatekeeping
- Mentor and coach junior engineers to raise the security bar across the organization
- Leverage automation and security tools to integrate security into CI/CD pipelines
Requirements For Senior Application Security Engineer
- Broad and deep knowledge across AppSec, including topics like secure key storage, URL schemes, presigned URLs, and browser storage mechanisms
- Expert proficiency with Burp Suite or similar attack proxy tools
- Excellent spoken and written communication skills
- Demonstrated passion for security through blog posts, public speaking, bug bounty profiles, or Git repositories
- Ability to write proof-of-concept (POC) scripts to demonstrate findings
- Hands-on experience with securing cloud-native applications
Benefits For Senior Application Security Engineer
- Competitive salary
- Self & Family Health Insurance
- Term & Life Insurance
- OPD Benefits
- Mental wellbeing support through Plumm
- Learning & Development Budget
- WFH Setup allowance
- 15 days of Privilege leaves
- 12 days of Casual leaves
- 12 days of Sick leaves
- 3 paid days off for volunteering or L&D activities
- Stock Options
Jobs Related To Tide Senior Application Security Engineer
