Quero Emprego

Senior Application Security Engineer

Receber anúncios semelhantes por e-mail

Coalition’s Insurance and Cybersecurity offerings come together to provide a comprehensive shield from cyber risk. We believe the task of locking down every system and keeping up with every vulnerability is challenging and while being proactive is important, it’s not enough because breaches and other compromises happen, even to the vigilant.

While we proactively help our customers understand active risks and shut them down, when all else fails, we are there for them financially and with services to help mitigate damage and come back stronger after an incident.

Help us protect the world against cyber risk and give business owners a trusted support system and fighting chance.

We have over 25,000 customers, ranging from small and mid-sized businesses to Fortune 500 companies. Founded in 2017, Coalition has raised $125M from a number of top tier global investment firms including Ribbit Capital, Greenoaks Capital, Valor Equity Partners, Felicis Ventures, and Vy Capital.  Headquartered in San Francisco, Coalition’s team is distributed across more than 15 locations globally, including Austin, Washington DC, Denver, Canada and Portugal.

Coalition Engineering

Our culture is one of character, humility, responsibility, purpose, authenticity, and no a-holes. We are growing rapidly and that growth is enabled by strong teamwork, communication, and mentorship. We want people who are passionate about becoming experts in both the business and the technologies that support it.

Our core platform is written mostly in Python with some services in Java and Go. We prefer to use the right tool for the job and make pragmatic decisions about how to scale and de-couple systems as we continue to grow. We’re looking for someone who can navigate a cloud environment (AWS) with many moving pieces and systems to help the team understand how they fit into the broader puzzle.


  • Triage and prioritize application security vulnerabilities.
  • Develop internal application security testing pipeline and review processes.
  • Build and conduct secure coding training for all developers.
  • Mentor and train engineers to build secure products
  • Implement automated, proactive security measures (e.g., SAST/DAST).
  • Develop Secure SDLC process and communicate process to Engineering.
  • Building Application security metrics

Main requirements

  • At least 3-5 years of direct experience either working on or leading an application security team.
  • Experience conducting application security reviews.
  • Experience with building/measuring metrics and KPIs to track application security issues
  • Experience with source code repositories, CI/CD pipelines, and associated security tooling (e.g., GitHub, Drone, Buddy).
  • Experience developing SDLC processes.
  • Experience working with SAST/DAST and tools (e.g., Synopsys, Veracode, GitLab Secure, GitHub Advanced Security, etc.).
  • Experience with threat modeling methodologies (e.g., STRIDE).
  • Experience with Java, Go and Python secure coding assessments.
  • Experience in API design and system architecture

Nice to have

  • Experience in bug bounty management
  • Teaching/mentoring experience

  • Enjoy a highly fulfilling, mission-driven culture
  • Flexible working hours
  • Open vacation days
  • We embrace distributed work; some benefits will vary by location
Pixel tracking

Software Development
Cyber Security

Contrato:Contrato permanente
Categoria:Engenheiro de segurança

Este anúncio de emprego foi adicionado automaticamente pelo nosso sistema. Se houver alguma confusão com a descrição, aconselhamos a ver a oferta original, no website de origem


Coalition Inc.

Coalition Inc.

Ver mais anúncios

O tempo é o teu bem mais valioso

Descobre como a nossa lista é ordenada e como melhora a tua experiência