Software Engineer – Security


The Role:

Sailthru is looking for a Software Engineer – Security in our US based office who will be a  key member of our engineering team, working hands on with our team and code base to not just fix security issues, but also design and architect secure solutions to help us “shift left” on security and improve the overall security posture of the platform. You will have an understanding of application security, secure software architecture and design principles, the software development lifecycle, and the cloud to join our growing Engineering team. 

What You’ll Do:

  • Actively engage in remediating vulnerabilities that exist in the code base.
  • Apply your knowledge of the programming languages used to implement secure and durable code. 
  • Collaborate with engineering teams to perform code reviews on potentially sensitive code and improve the security posture of new features in their design phase (shifting left on security)
  • Work hands on with our engineering teams to resolve security issues and harden the platform from potential security vulnerabilities such as from the OWASP Top Ten
  • Manage and automate security processes involved in the SDLC (CI/CD, static code analysis tools, etc.).
  • Partner with our global security team, product team and outside vendors, participating in security assessments of networks, systems and applications delivered internally and externally.
  • Deliver education on secure coding practices to product engineering teams. Be an advocate for security best practices in engineering and the broader org.

About You:

You are smart, autonomous, confident, personable and friendly, and you communicate clearly and respectfully. You have a background in secure software design, software engineering, and security / cloud operations. You live and breathe security best practices and are passionate about learning new security challenges and trends.

  • Familiarity with the quirks and behaviours of PHP, Java, and/or JavaScript.
  • Confidence with building and maintaining production web applications and services in at least one of the following languages: PHP, Java or JavaScript.
  • Strong understanding of web application security architecture and the ability to articulate best practices in web application security.
  • Ability to work autonomously and as part of a global team, communicating and coordinating regularly with our Sydney, Australia-based security team.
  • BA/BS degree in Computer Science, or equivalent experience preferred.
  • Excellent communication skills with a demonstrated ability to explain complex technical issues to all audiences.
  • Strong, proven experience integrating application security into SDLC and CI/CD processes including automated workflows.
  • Familiarity with creating, maintaining and securing cloud based services.
  • Good understanding of how web applications work, from the underlying network protocols (HTTP, TCP) through to web server (IIS, nginx, Apache), browser behavior and everything in between.
  • Passion for security and automation.
  • While the team is based in NY, this role is open to remote.
READ:   Survey/Civil/Construction Applications Engineer, Rotational Development Program


  • Seniority level

    Mid-Senior level

  • Employment type


  • Job function


  • Industries

    Marketing and Advertising


Related Jobs
  • Brainnest
    Full Time
    Port Elizabeth, Eastern Cape, South Africa

    TITLE: Junior Business Analyst – Industry TrainingLOCATION: RemoteSCHEDULE: Flexible part-time (10-15h/week)JOB LEVEL: Entry levelAbout BrainnestThe business management and training company headquartered in Bremen, Germany. We are a succ
  • World Food Programme
    Full Time
    Bridgetown, Saint Michael, Barbados

    ABOUT WFPThe United Nations World Food Programme is the world's largest humanitarian agency fighting hunger worldwide. The mission of WFP is to help the world achieve Zero Hunger in our lifetimes. Every day, WFP works worldwide to ensu
  • Full Time

    WE ARE HIRING !! (3 days a week WORK FROM HOME SETUP & 2 days a week at Office Site)** We Are Conducting PHONE INTERVIEW ***** OFFICE SITE: MAKATI CITY ***Training and Marketing Professionals, Inc. (TMPI) is in need of TELESALES SPECIALIST
  • Pezesha
    Full Time
    Western, Ghana

    Role: Collections OfficerLocations: Western Region or Ashanti RegionStarting date: As soon as possibleRemuneration: Commensurate with experienceEnd date: 10/07/2021About company: Pezesha is an online marketplace for business loans. We con
Guías Online