Senior Security Software Engineer Job Description Template
Our company is looking for a Senior Security Software Engineer to join our team.
Responsibilities:
- Be one of the security consultants for teams building new features in the next version of Edge;
- Interact with the external security community, researchers and security conference presenters;
- Monitoring new attack vectors, new exploits and sharing them with our development teams;
- Work closely with our partners in the Chromium community to improve browser security;
- Ability to manage time-sensitive challenges as they arise;
- Ability to successfully balance security risk and business value;
- Guide teams to build more secure products in a cloud environment;
- Collaborate with developers to design and implement secure coding and security controls to enhance the security posture of our products/applications;
- Improve the scalability, performance and usability of existing products;
- Develop reference architecture code to guide engineering teams in the area of secure development life cycle;
- Develop threat models for cloud applications and identity and access management;
- Enforce good SCRUM practices like writing stories with clear acceptance criteria;
- Act as support for products the team owns;
- Object Oriented Programming and test driven development;
- Develop, maintain and roll out Security requirements and best practices.
Requirements:
- B.S., Computer Science or equivalent work experience or degree;
- Interact with the external security community, researchers and security conference presenters;
- Experience with object oriented design;
- Work closely with our partners in the Chromium community to improve browser security;
- Engineer with a minimum of 2+ years of security experience;
- Relevant industry experience or a college degree;
- Create, review, modify, and update Python, Perl, and Jenkins scripts;
- Web based security testing;
- Experience with public cloud platforms like AWS, Azure, or Google Cloud is a plus;
- Previous experience as a core contributor on a large web project with dozens of microservices;
- Experience with identity and access management processes and solutions is a plus;
- Deep interest in protecting software systems from malicious actors both inside and out;
- Familiar with attack frameworks like OWASP Top 10;
- Focused on the customer experience;
- Prior working experience with automation (Scripting languages).