Arctic Wolf · 6 hours ago
Lead Application Security Engineer
Maximize your interview chances
Cyber SecurityInformation Technology
Growth OpportunitiesH1B Sponsor Likely
Insider Connection @Arctic Wolf
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Develop secure coding & secure design principles.
Train developers, architects, code reviewers, and others on secure coding practices.
Serve as the subject matter expert for Application Security, providing guidance to Engineering and Product teams.
Develop standards and training for security testing tools focused on the application layer (e.g., SAST, DAST, IAST, SCA), threat modeling, penetration testing, red team, bug bounty and vulnerability management.
Work with development teams throughout the entire SDLC to ensure code is secure by design, secure by default, secure in deployment and communication, and automated.
Help software development teams to understand and remediate security findings within prescribed timelines.
Research and review any reported or suspected application vulnerabilities from third party library and source code.
Implement, configure, and train/document off-the-shelf application security technologies in the Arctic Wolf internal environment.
Create technical approaches to implementing application security control technologies. Perform risk assessments of identified vulnerabilities and mitigations.
Contribute to a world-class security program that supports Arctic Wolf’s tremendous growth.
Mentor and coach team members to further develop competencies.
Assist in developing security related libraries and tools to facilitate operations within our environment.
Security metrics delivery and improvements.
The ability to effectively partner and communicate with Engineering and Product teams.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
A bachelor's degree in computer science, Information Systems, Engineering, cybersecurity or related technical field; or equivalent experience.
7+ years of experience in security or infrastructure engineering Including assessing and escalating to vendors for troubleshooting purposes.
Thorough understanding of modern software development practices.
Thorough understanding of OWASP Top 10 vulnerabilities and corresponding best practices for mitigation.
Experience in deploying application security technologies such as SAST, DAST, IAST, SCA, etc.
Preferred
Familiarity with cloud infrastructures, with Amazon Web Services (AWS) and/or Azure considered a strong plus.
Familiarity with containerization technologies such as Docker and/or Kubernetes is a huge plus.
Analytical and quantitative skills with proven experience in developing strategic solutions.
Significant prior experience securing large-scale web applications, including performing security code reviews, vulnerability assessments, and manual testing for logic flaws.
Experience working in regulated environments (SOX, ISO 27001, etc).
One or more Industry Certifications – (CISSP, CCSP, CSLP, OSCP, OSWE, GPEN, GWAPT, CEH, etc).
Benefits
Equity for all employees
Flexible time off, paid volunteer days, and paid parental leave
401k & RRSP matching program
Enhanced maternity leave and fertility support services
Robust Employee Assistance Program (EAP) for mental health services
Training and career development programs
Company
Arctic Wolf
Arctic Wolf is a cyber security company that provides cloud-native security operations technology to reduce cyber risks.
H1B Sponsorship
Arctic Wolf has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (1)
2021 (1)
Funding
Current Stage
Late StageTotal Funding
$899.2MKey Investors
Owl Rock CapitalViking Global InvestorsFuture Fund
2022-10-06Convertible Note· $401M
2022-01-06Secondary Market· undefined
2021-07-13Series F· $150M
Recent News
2024-10-23
2024-10-13
Company data provided by crunchbase