Open Opportunity

Application Security Engineer

Downtown Los Angeles, CA

Share This Career Opportunity

If you know someone who fits this opportunity description, you can share this opportunity with this link: https://bit.ly/2JpT2Qp

Position available in Downtown Los Angeles (Arts District) with a very hot, well funded closed a $65 Million Dollar, pre-IPO client doing cutting edge Hardware / Software company doing next generation workplace collaboration products. Founded by former MIT Labs Researcher and 2015 National Smithsonian Design Award winner who envisioned the future of workplaces from such films as Minority Report and Iron Man is now bringing those to life with visual collaboration solutions that link locations, teams, content and devices already being used by Boeing, IBM, NTT, NASA and others. Company has grown 50% year over year in both revenue and employees for last several years. Please take a look at the description below and let me know if you or anyone you know might be interested in finding out more. More than willing to pass on finder’s fees for referrals.

What would you do:

We are looking for a Security Engineer responsible for keeping our core product, and its cloud services, secure. This is a high-impact role in charge of writing new security related code, auditing existing code and architectures for security flaws, and reviewing new features for security and privacy.

You will work with the team to support compliance efforts with security standards (SOC 2 Type II, GDPR, FISMA) while collaborating closely with many parts of the organization, as well as interacting with customers occasionally. Clear communications skills are crucial for this role.

Responsibilities:

  • Develop production-quality code while applying security best practices
  • Architect and develop security requirements for Mezzanine and our cloud services
  • Improve and maintain current Mezzanine security policies and communicate them to other parts of the company
  • Keep up-to-date with software vulnerabilities, and provide and implement recommendations
  • Evaluate third-party security updates
  • Integrate automated security scans into our CI/CD pipelines

Requirements:

  • 2+ years of professional experience delivering production-quality, security-related code
  • Formal education and/or training in software security
  • Proficiency in Ruby, Python, or C/C++
  • Expertise with Linux systems programming
  • Deep knowledge of OWASP Top Ten
  • Experience with vulnerability scanning tools like Metasploit, Nessus, Qualys, or equivalent
  • Experience with WAF, integrating and monitoring IDS, incident response protocols, and other cloud security tools
  • Proven ability to design security policies and specifications
  • Good understanding of cryptography (symmetric and asymmetric ciphers) and secure protocols (TLS, SRTP)
  • Excellent written and verbal communications

Nice to have:

  • Experience working with Open Source projects
  •  DOD 8570 compliant certification such as CISSP, CISM, CISA, or equivalent
  • Knowledge of containerization technology and container orchestration system (Kubernetes, Docker)

Benefits and perks:

  • Competitive compensation package of salary and stock options
  • Fully covered medical, dental, and vision insurance
  • Unlimited PTO policy
  • 401K plan
  • Opt-in gourmet in-house lunch program available 3 days/week