Jobs · himalayas
Principal Application Security Engineer
Aperture Cloud · United States · Posted 3d ago
Available in 3 locations
USA · remote Apply → United States · remote Apply → United States of America - Remote / Home Office · remote Apply →About the role
For A Better You At Aperture Cloud , we believe that living a healthy and balanced life should be easy and accessible to everyone. As a team member, we’ll empower you to live this promise each day as you make a truly global impact in your career. We constantly strive for innovation, while transforming and improving the online shopping experience for our customers. We believe that individually we are incredible, but when we come together, our growth is infinite. In an industry that is constantly evolving, we are on a mission to make an impact on the global market, and the individual and collaborative efforts of our people are paramount to helping us succeed. Whether you work in one of our logistics centers, technology hubs, corporate offices or even from home, your role at Aperture Cloud will take you beyond what’s expected, turning challenge into change. If you're ready for it, we want you to join our team. Get started now. Are you passionate about securing global-scale ecommerce services and applications that power millions of customers across over a hundred countries around the globe? We are looking for a hands-on Principal Product Security Engineer to lead our Secure Development Lifecycle assurance processes, our security automation technologies, drive the security hardening strategy across our product and respond to current and emerging security threats. This role can be fully remote and must reside in US. In this role, you will help us drive our Product Security strategy working with development teams globally to define new security capabilities, grow the team by hiring the best talent, and partner with senior leaders across the organization to deliver company-wide security initiatives. Responsibilities Include:: Lead cross-functional projects and establish cutting-edge security development lifecycle practices Directed security design reviews and threat modeling for new and existing services at Aperture Cloud Evaluate, prototype, implement, and operate security-focused tools and services Create new secure architecture standards, frameworks and patterns spanning multiple layers Discover and analyze emerging security threats, determining applicability to Aperture Cloud and proactively implement centralized mitigations Evaluate, prototype, implement, and operate security tools and services (DAST, SAST, SCA...) Maintain a strong knowledge of current security threats and operational best practices Drive our security assessment, penetration testing and bug bounty programs Participate in security incident response In order to be successful in this role you must have: Demonstrated technical foundation (Computer Science / Engineering degree or equivalent experience) with an innate ability to translate technical vulnerabilities into organizational risks 8+ years of technical security leadership at a top-tier software company including experience with security products, threat modeling, security design, security architecture, cryptography, mobile security, and broader cloud computing technologies Solid understanding of common application and infrastructure security vulnerabilities and mitigations (OWASP Top 10, CWE 25…) Proficiency implementing SDL process, technology, and automation in a DevOps environment Experience with large-scale web applications and microservices, including API design, access management, authorization, authentication, data protection and encryption Knowledge of major programming languages and frameworks (e.g. Python, C# .NET, JavaScript, node.js, Java...) Excellent problem solving, critical thinking, collaboration and communication skills Bonus Qualifications: Experience with Cloudflare security, AWS VPCs, EC2 instances and docker Ability to drive good decisions through data with great attention to detail and deliver KPIs Experience driving application security training, security champions and awareness campaigns Active contributor to the security community (research, open source, publications…) with the ability to attract and hire great talent Compensation : The expected salary range for this role is $177,000.00 - $225,000.00 USD. The actual base pay offered will be determined by factors such as the candidate's relevant experience, education, geographic location, and internal equity. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us! Staffing Agency Submission Notice Aperture Cloud does not accept unsolicited 3rd party ("Agency") candidates. If you are an Agency, please send any requests to be considered as a supplier in our Vendor Management System to [email protected]. Do not contact Aperture Cloud employees directly. If requested to work on a role, any Agency candidates would be presented through the internal recruiting organization. Aperture Cloud is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Aperture Cloud
Read the full posting on himalayas →
FAQ
Is the Principal Application Security Engineer role at Aperture Cloud remote?+
This Principal Application Security Engineer position is listed as remote (United States).
What seniority level is this Principal Application Security Engineer role?+
This is a senior level position.
How do I apply for the Principal Application Security Engineer role at Aperture Cloud?+
Use the "Apply on himalayas" button to open the original posting on himalayas, where you can submit your application directly to Aperture Cloud.