Staff Security Engineer, Application Security
Description For Staff Security Engineer, Application Security
Trail of Bits, founded in 2012, is a premier security company that helps secure the world's most targeted organizations and devices. As a Staff Security Engineer in Application Security, you'll lead comprehensive security assessments focusing on cloud-native architectures and infrastructure security. The role involves evaluating complex distributed systems, from Kubernetes clusters to cloud platform configurations, while working alongside other security engineers to contribute to client projects and build impactful tools.
You'll be responsible for conducting detailed architecture reviews, developing custom security tools, and providing expert guidance on security implementations. The position offers opportunities to collaborate with the Research & Engineering team on government-funded security research projects that advance the industry's state of the art.
The role combines technical expertise with leadership, requiring strong programming skills in languages like Go, Python, Rust, or JavaScript, and extensive experience in application security. You'll work in a remote-first environment with over 100 global employees, enjoying comprehensive benefits including fully paid insurance, 401(k) matching, and various stipends for professional development.
Trail of Bits values diversity and inclusion, actively seeking different perspectives to strengthen their team. The company offers competitive compensation ($180,000-$230,000 base salary) plus performance bonuses, and maintains a culture built on autonomy and trust. This position presents an excellent opportunity for experienced security professionals to make a significant impact in the cybersecurity industry while working with cutting-edge technologies and leading client engagements.
Responsibilities For Staff Security Engineer, Application Security
- Lead comprehensive security reviews of cloud-native applications and architectures
- Design and implement custom security tools for automated vulnerability detection
- Perform detailed architecture reviews and threat modeling
- Work directly with industry-leading teams to review code and architecture
- Contribute to research and innovation in application security
- Evaluate cloud platform configurations across AWS, GCP, and/or Azure
- Review Infrastructure-as-Code implementations
- Analyze cloud IAM policies and network segmentation
Requirements For Staff Security Engineer, Application Security
- 8+ years of hands-on application security experience
- Extensive experience in application security
- Strong programming and code auditing skills
- Experience with fuzzing and/or static analysis tools
- Strong knowledge of Go, Python, Rust, and/or JavaScript
- Experience with systems programming and API development
- Strong communication skills
- Deep expertise in developing custom security testing solutions
Benefits For Staff Security Engineer, Application Security
- Fully company-paid insurance packages (health, dental, vision, disability, and life)
- 401(k) plan with 5% match of base salary
- 20 days paid vacation
- 4 months parental leave
- $5,000 relocation assistance to NYC
- $1,000 Working-from-Home stipend
- $750 annual Learning & Development stipend
- Performance-based bonuses
- Philanthropic contribution matching up to $2,000 annually
Jobs Related To Trail of Bits Staff Security Engineer, Application Security
