Lead Application Security Engineer @ Arctic Wolf | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Lead Application Security Engineer jobs in United States
Be an early applicantLess than 25 applicants
company-logo

Arctic Wolf · 3 hours ago

Lead Application Security Engineer

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date7+ years exp
ftfMaximize your interview chances
Cyber SecurityInformation Technology
check
Growth Opportunities
check
H1B Sponsor Likelynote

Insider Connection @Arctic Wolf

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Develop secure coding & secure design principles.
Train developers, architects, code reviewers, and others on secure coding practices.
Serve as the subject matter expert for Application Security, providing guidance to Engineering and Product teams.
Develop standards and training for security testing tools focused on the application layer (e.g., SAST, DAST, IAST, SCA), threat modeling, penetration testing, red team, bug bounty and vulnerability management.
Work with development teams throughout the entire SDLC to ensure code is secure by design, secure by default, secure in deployment and communication, and automated.
Help software development teams to understand and remediate security findings within prescribed timelines.
Research and review any reported or suspected application vulnerabilities from third party library and source code.
Implement, configure, and train/document off-the-shelf application security technologies in the Arctic Wolf internal environment.
Create technical approaches to implementing application security control technologies. Perform risk assessments of identified vulnerabilities and mitigations.
Contribute to a world-class security program that supports Arctic Wolf’s tremendous growth.
Mentor and coach team members to further develop competencies.
Assist in developing security related libraries and tools to facilitate operations within our environment.
Security metrics delivery and improvements.
The ability to effectively partner and communicate with Engineering and Product teams.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Application SecuritySASTDASTIASTSCAOWASP Top 10Cloud InfrastructureDockerKubernetesSecurity Code ReviewsVulnerability AssessmentsManual TestingCISSPCCSPCSLPOSCPOSWEGPENGWAPTCEHRisk AssessmentsCollaborative CommunicationTechnical Documentation

Required

A bachelor's degree in computer science, Information Systems, Engineering, cybersecurity or related technical field; or equivalent experience.
7+ years of experience in security or infrastructure engineering Including assessing and escalating to vendors for troubleshooting purposes.
Thorough understanding of modern software development practices.
Thorough understanding of OWASP Top 10 vulnerabilities and corresponding best practices for mitigation.
Experience in deploying application security technologies such as SAST, DAST, IAST, SCA, etc.

Preferred

Familiarity with cloud infrastructures, with Amazon Web Services (AWS) and/or Azure considered a strong plus.
Familiarity with containerization technologies such as Docker and/or Kubernetes is a huge plus.
Analytical and quantitative skills with proven experience in developing strategic solutions.
Significant prior experience securing large-scale web applications, including performing security code reviews, vulnerability assessments, and manual testing for logic flaws.
Experience working in regulated environments (SOX, ISO 27001, etc).
One or more Industry Certifications – (CISSP, CCSP, CSLP, OSCP, OSWE, GPEN, GWAPT, CEH, etc).

Benefits

Equity for all employees
Flexible time off, paid volunteer days, and paid parental leave
401k & RRSP matching program
Enhanced maternity leave and fertility support services
Robust Employee Assistance Program (EAP) for mental health services
Training and career development programs

Company

Arctic Wolf

twittertwittertwitter
Glassdoor
4.2
company-logo
Arctic Wolf is a cyber security company that provides cloud-native security operations technology to reduce cyber risks.
dateFounded in 2012
location
Eden Prairie, Minnesota, USA
people-size1,001-5,000 employees
web-link
https://arcticwolf.com/

H1B Sponsorship

Arctic Wolf has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (1)
2021 (1)

Funding

Current Stage
Late Stage
Total Funding
$899.2M
Key Investors
Owl Rock CapitalViking Global InvestorsFuture Fund
2022-10-06Convertible Note· $401M
2022-01-06Secondary Market· undefined
2021-07-13Series F· $150M

Leadership Team

leader-logo
Ian McShane
Field CTO
linkedin
leader-logo
Duston Williams
CFO
linkedin

Recent News

EIN News
Arctic Wolf Supports Cybersecurity Training Cohort with CyberUp
2024-10-23
Economic Times
From Sophos to Arctic Wolf: Bengaluru becomes hub for global cybersecurity ops
2024-10-13
Yahoo Finance
Arctic Wolf Named a Leader in 2024 IDC MarketScape for Worldwide Managed Detection and Response Services
2024-05-23
Company data provided by crunchbase
logo

Orion

Your AI Copilot