Senior Security Software Engineer Job Description

View Senior Security Software Engineer jobs

Senior Security Software Engineer Job Description Template

Our company is looking for a Senior Security Software Engineer to join our team.

Responsibilities:

  • Be one of the security consultants for teams building new features in the next version of Edge;
  • Interact with the external security community, researchers and security conference presenters;
  • Monitoring new attack vectors, new exploits and sharing them with our development teams;
  • Work closely with our partners in the Chromium community to improve browser security;
  • Ability to manage time-sensitive challenges as they arise;
  • Ability to successfully balance security risk and business value;
  • Guide teams to build more secure products in a cloud environment;
  • Collaborate with developers to design and implement secure coding and security controls to enhance the security posture of our products/applications;
  • Improve the scalability, performance and usability of existing products;
  • Develop reference architecture code to guide engineering teams in the area of secure development life cycle;
  • Develop threat models for cloud applications and identity and access management;
  • Enforce good SCRUM practices like writing stories with clear acceptance criteria;
  • Act as support for products the team owns;
  • Object Oriented Programming and test driven development;
  • Develop, maintain and roll out Security requirements and best practices.

Requirements:

  • B.S., Computer Science or equivalent work experience or degree;
  • Interact with the external security community, researchers and security conference presenters;
  • Experience with object oriented design;
  • Work closely with our partners in the Chromium community to improve browser security;
  • Engineer with a minimum of 2+ years of security experience;
  • Relevant industry experience or a college degree;
  • Create, review, modify, and update Python, Perl, and Jenkins scripts;
  • Web based security testing;
  • Experience with public cloud platforms like AWS, Azure, or Google Cloud is a plus;
  • Previous experience as a core contributor on a large web project with dozens of microservices;
  • Experience with identity and access management processes and solutions is a plus;
  • Deep interest in protecting software systems from malicious actors both inside and out;
  • Familiar with attack frameworks like OWASP Top 10;
  • Focused on the customer experience;
  • Prior working experience with automation (Scripting languages).