Staff Application Security Engineer
Description For Staff Application Security Engineer
Webflow, a leading Website Experience Platform (WXP), is seeking a Staff Application Security Engineer to strengthen their security infrastructure. This role combines technical expertise with leadership responsibilities, requiring 7+ years of application security experience. The position offers competitive compensation ranging from $154,160 to $247,690 USD, depending on location.
The ideal candidate will play a crucial role in elevating Webflow's secure development practices, working closely with engineering teams to implement and maintain robust security measures. Key responsibilities include conducting threat modeling, managing bug bounty programs, and mentoring junior security engineers. The role demands expertise in secure software design, penetration testing, and the ability to lead complex security projects.
Webflow offers an attractive benefits package including equity ownership, comprehensive healthcare coverage, generous parental leave, and flexible PTO. The company maintains a remote-first culture while fostering an environment of innovation and collaboration. They're committed to diversity and inclusion, ensuring equal opportunities for all qualified candidates.
This position is perfect for security professionals who are passionate about building secure, scalable web applications and want to make a significant impact in a growing company. The role offers the opportunity to shape security practices at a platform used by millions worldwide, from independent designers to Fortune 500 companies.
Responsibilities For Staff Application Security Engineer
- Collaborate with engineering team to secure web application platform and ecosystem
- Implement security best practices in software development lifecycle
- Champion security standards while balancing business requirements
- Support current and future compliance frameworks
- Find security vulnerabilities through grey-box techniques
- Contribute code and architecture improvements for security
- Cross-train entry and mid-level application security engineers
Requirements For Staff Application Security Engineer
- 7+ years of experience in application security
- 2+ years of software development focused on security
- Expertise in secure software design and web application security
- Experience with Threat Modeling and penetration testing
- Experience with software supply chain security and bug bounty programs
- Successfully implemented secure development lifecycle processes
- Led multi-quarter complex security projects
- Experience mentoring application security engineers
Benefits For Staff Application Security Engineer
- Equity ownership (RSUs)
- 100% employer-paid healthcare, vision, and dental insurance
- 12 weeks paid parental leave
- Flexible PTO
- Mental wellness and professional coaching
- Monthly stipends for work and wellness
- 401k plan or pension schemes
- Sabbatical program
- Family planning care and reimbursement
Jobs Related To Webflow Staff Application Security Engineer
