Senior Application Security Engineer

Coalition

Europe
  • Job Type: Full-Time
  • Function: IT
  • Post Date: 04/26/2021
  • Website: coalitioninc.com
  • Company Address: 1160 Battery St, San Francisco, California , 94111

About Coalition

Coalition is the leading provider of cyber insurance and security, combining comprehensive insurance and proactive cybersecurity tools to help businesses manage and mitigate cyber risk. Coalition’s unique product offerings combine best-in-class insurance and proactive cybersecurity tools to help keep businesses safe. Cyber losses cost the global economy upwards of $1.5 trillion each year, and yet the majority of businesses are under-insured and under-prepared to manage and mitigate the risks of an increasingly digital world.

Job Description

Our culture is one of character, humility, responsibility, purpose, authenticity, and no a-holes. We are growing rapidly and that growth is enabled by strong teamwork, communication, and mentorship. We want people who are passionate about becoming experts in both the business and the technologies that support it.
 
Our core platform is written mostly in Python with some services in Java and Go. We prefer to use the right tool for the job and make pragmatic decisions about how to scale and de-couple systems as we continue to grow. We’re looking for someone who can navigate a cloud environment (AWS) with many moving pieces and systems to help the team understand how they fit into the broader puzzle.
 

Responsibilities

      • Triage and prioritize application security vulnerabilities.
      • Develop internal application security testing pipeline and  review processes.
      • Build and conduct secure coding training for all developers.
      • Mentor and train engineers to build secure products
      • Implement automated, proactive security measures (e.g., SAST/DAST).
      • Develop Secure SDLC process and communicate process to Engineering.
      • Building Application security metrics
 

Your Background

    • At least 3-5 years of direct experience either working on or leading an application security team.
    • Experience conducting application security reviews.
    • Experience with building/measuring metrics and KPIs to track application security issues
    • Experience with source code repositories, CI/CD pipelines, and associated security tooling (e.g., GitHub, Drone, Buddy).
    • Experience developing SDLC processes.
    • Experience working with SAST/DAST and tools (e.g., Synopsys, Veracode, GitLab Secure, GitHub Advanced Security, etc.).
    • Experience with threat modeling methodologies (e.g., STRIDE).
    • Experience with Java, Go and Python secure coding assessments.
    • Experience in API design and system architecture

Bonus Points

      • Experience in bug bounty management
      • Teaching experience


Related Jobs

Senior Application Security Engineer

Coalition - Europe

Business Development - Canada

Coalition - Toronto, CARemote

Senior Frontend Engineer - Customer Security

Coalition - Remote

Risk Engineer (Underwriting) - Central/Eastern US

Coalition - Remote

Business Development

Coalition - Remote
Disclaimer: Local Candidates Only
This company does NOT accept candidates from outside recruiting firms. Agency contacts are not welcome.