Senior Application Security Engineer
Description For Senior Application Security Engineer
Tide, a rapidly growing finance platform for small businesses, is seeking a Senior Application Security Engineer to join their Product Security team. This role is part of the larger Security Engineering team, which includes Product Security, Threat Detection & Response, and Identity.
As a Senior Application Security Engineer at Tide, you'll be passionate about security and resilient software development processes. Your primary responsibilities will include hunting for vulnerabilities in web and mobile applications, working with engineering teams to remediate issues strategically, and explaining security concerns to various stakeholders. You'll be at the forefront of applying new industry trends, tools, and automations to enhance the security posture of Tide's products.
Key responsibilities include:
- Diving deep into mobile and web app technologies to proactively hunt for vulnerabilities
- Securing cloud-native applications and ensuring best practices are applied consistently
- Conducting threat modeling and guiding developers in secure design principles
- Remediating vulnerabilities through strategic initiatives and actionable solutions
- Serving as a subject matter expert in Application Security
- Mentoring junior engineers and raising the security bar across the organization
- Integrating security seamlessly into CI/CD pipelines
The ideal candidate will have extensive knowledge of AppSec, expertise in tools like Burp Suite, excellent communication skills, and a demonstrated passion for security. Experience with cloud-native application security is crucial.
Tide offers a competitive compensation package, including health insurance, mental wellbeing support, learning and development budget, and stock options. The company supports a flexible workplace model, encouraging both remote work and regular in-person gatherings to foster collaboration and team spirit.
Join Tide in their mission to empower small businesses and help them save time and money while being part of a diverse and inclusive team that values innovation and collaboration.
Responsibilities For Senior Application Security Engineer
- Regularly dive deep into mobile and web app technologies to understand feature development and proactively hunt for vulnerabilities
- Be proficient in securing cloud-native applications
- Be proficient in threat modelling and guide developers in secure design principles
- Help remediate vulnerabilities through strategic initiatives, writing patches, or creating actionable vulnerability tickets
- Be the subject matter expert across a wide range of security areas, particularly in Application Security
- Make security invisible when possible, enabling secure development
- Mentor and coach junior engineers
- Leverage automation and security tools to integrate security into CI/CD pipelines
Requirements For Senior Application Security Engineer
- Breadth and depth of knowledge across AppSec
- Expertise in Burp Suite or similar attack proxy tools
- Excellent spoken and written communication skills
- Passion for security demonstrated through blog, public speaking, bug bounty profile, or Git repository
- Ability to write proof-of-concept (POC) scripts
- Hands-on experience with securing cloud-native applications
Benefits For Senior Application Security Engineer
- Competitive salary
- Self & Family Health Insurance
- Term & Life Insurance
- OPD Benefits
- Mental wellbeing through Plumm
- Learning & Development Budget
- WFH Setup allowance
- 15 days of Privilege leaves
- 12 days of Casual leaves
- 12 days of Sick leaves
- 3 paid days off for volunteering or L&D activities
- Stock Options
Jobs Related To Tide Senior Application Security Engineer
