Senior Security Engineer

See more jobs from Greenhouse

almost 2 years old

This job is no longer active

We believe in the power of hiring. Because the potential for people to do something outstanding has everything to do with being in the right role, on the right team, at the right time. That’s where Greenhouse comes in – from recruiting to on-boarding, we make software to help every company be great at hiring.

We are hiring a Senior Security Engineer to contribute to the growth of our security program and partner with our product engineering teams on proactively identifying and addressing security issues in our products. As a member of our distributed security team, you will support and scale our application security practices by improving automation, holistically remediating security issues, and promoting secure-by-default principles.

Security at Greenhouse is critical to our success and for building & maintaining customer trust. From influencing how we write our software, deploy our infrastructure, and make architecture decisions, security is a primary focus.

Who will love this job:

  • A security lover, you keep up with the latest security research and love finding security issues in the newest technology across various security fields
  • A problem solver, you can tackle complex security problems while still balancing good usability and mitigating security risk
  • A doer, you get things done with attention to detail and are motivated to improve on the status quo
  • A people-person, you shine when collaborating with others and are eager to contribute across the organization

What you'll do:

  • Penetration testing and source code review
  • Leverage security tooling to proactively detect security vulnerabilities and promote security awareness to developers
  • Design frameworks/controls to promote ‘secure by default’ practices and break apart a monolith application
  • Participate in high-level architecture decisions that impact the entire code base as well as new product features
  • Voice support for product security by promoting security development standard methodologies and partnering with software engineering as a security domain expert
  • Respond to vulnerability reports by figuring out risk and providing practical remediation advice to our product engineering teams and other partners
  • Supervise security vulnerabilities and prioritize remediations with teams according to our SLA requirements
  • Improve automation around product-focused security detection, vulnerability triaging, patching and many other security processes
  • Respond to security incidents related to our products

You should have:

  • Experience pen-testing web applications, security architecture and design reviews, and security code reviews
  • Deep understanding of web security with a focus on providing practical technical recommendations to engineering teams
  • Knowledge industry-standard authentication protocols such SAML SSO and OAuth2
  • Proficiency in at least one programming language and be capable of quickly picking up new languages
  • Your own unique talents! If you don't met 100% of the qualifications outlined above, tell us why you'd be a great fit for this role in your cover letter

Applicants must be currently eligible to work in Canada.

For purposes of processing or administering your employment relationship, personal information that you provide to the Company may be transferred to and accessed by an affiliate in the United States or elsewhere, or to agents and contractors (such as payroll companies, insurance companies, information technology consultants, etc.) that provide services to the Company.

#LI-MB1

 

 

Who we are

At Greenhouse, we celebrate having a diverse group of hardworking employees and it hasn’t gone unnoticed. We’ve won numerous awards including Inc. Magazine Best Workplace (2018-2022), Glassdoor #1 Best Place to Work, Forbes Cloud 100, Deloitte Technology Fast 500, Inc. 5000, Crain’s Best Places to Work NYC, Fortune’s Great Place to Work (2019 - 2022),  and Mogul’s Top 100 Workplaces for Diverse Representation (2022). We pride ourselves on fostering a collaborative culture throughout every step of a Greenhouse employee's journey. From day one of our interview process to executive "Ask Me Anything" sessions, we consistently cultivate an inclusive environment.

For all our employees, we offer a full slate of benefits from competitive salaries, stock options, fully paid option(s) for health coverage (medical, dental and vision), disability coverage, employer paid life insurance, mental health resources, financial wellness benefits, and a fully paid parental leave program. For US-based employees, we offer flexible vacation and a 401(k) matching program. For Dublin-based employees, we offer 25 days' vacation and an employer matching pension program.

Our success in making companies great at hiring depends on our ability to create a diverse, equitable and inclusive environment. To that end, we’re committed to attracting, developing, retaining and promoting a diverse workforce, and infusing DE&I throughout all of our internal practices. By ensuring that every Greenie is able to bring a diversity of talents to our work, we’re increasingly capable of living out our mission and providing real insight from our products to support our customers. We encourage people from underrepresented backgrounds and all walks of life to apply. Come grow with us at Greenhouse, where we’re building a team to face the world’s increasingly complex and diverse hiring needs.


Want to learn more about our interviewing process? Check out our interviewing at Greenhouse page


**We are a distributed company and do our best work where it works best for us - as individuals and as teams. At this time, all employees are working remotely due to COVID-19.**

Our Talent Acquisition (TA) team at Greenhouse has recently been notified of a phishing scam targeting candidates applying for our open roles. Scammers have been posing as hiring managers and recruiters in an effort to access candidates’ personal and financial information. Please note that any communication from our hiring teams at Greenhouse regarding a job opportunity will only be made by a Greenhouse employee with an @greenhouse.io email address. We would never ask you as part of our interview process to provide personal or financial information, including but not limited to your social security number, online account passwords, credit card numbers, passport information and other related banking information. If you believe you’ve been a victim of a phishing attack, please mark the communication as “spam” and alert us right away at [email protected].