71 applicants

This job has closed.

Company

Original Job Post

FanDuel · 3 days ago

Staff Application Security Engineer

New York, NY

Full-time

Onsite

Mid Level

$176K/yr - $220K/yr

Wonder how qualified you are to the job?

Maximize your interview chances

Fantasy SportsGaming

H1B Sponsorship

Insider Connection @FanDuel

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Lead the evolution of a cutting-edge security engineering organization that drives the agile development of secure and reliable applications and products, setting the standard for industry best practices.

Provide strategic guidance on security initiatives across the organization, influencing decision-making processes and ensuring alignment with overarching security objectives.

Collaborate with technology stakeholders to define and implement comprehensive metrics that gauge security proficiency across all major technology teams, fostering a culture of continuous improvement and accountability.

Champion the development of innovative tools and automation frameworks to enhance the security posture of applications, streamlining security processes and enabling rapid security gains by teams.

Drive the development and implementation of security tools that seamlessly integrate into the Secure Development Lifecycle, promoting adherence to secure coding practices and standards.

Ensure thorough documentation, maintenance, and archival of processes associated with critical systems, facilitating transparency and accountability in security practices.

Lead collaborative efforts with development and operations teams to establish and refine standards for application security, fostering a culture of shared responsibility and ownership.

Guide and mentor a team of enthusiastic Application Security Engineers, providing guidance and expertise to help them grow and develop their skills in designing and implementing secure software solutions.

Proficient in effectively disseminating knowledge through various channels, including public speaking engagements, blog posts and written documentation.

Undertake additional responsibilities as necessary to support the strategic objectives and operational needs of the organization.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

PythonJavaScriptJavaStatic/Dynamic Application Security TestingSAST/DASTTerraformPuppetCloudFormationCI/CD PipelinesAWSNessusBurpWeb Application FirewallsProblem-SolvingCommunicationCollaboration

Required

Proficient experience in software development with expertise in languages such as Python, JavaScript, or Java, enabling the implementation of secure coding practices and the identification of vulnerabilities within codebases.

Extensive experience with Static/Dynamic Application Security Testing (SAST/DAST) methodologies and tools, empowering thorough security evaluations and the identification of security weaknesses in applications.

Proficiency in automation tools such as Terraform, Puppet or CloudFormation, enabling the automation of security processes and the implementation of scalable security solutions.

Hands-on experience with CI/CD pipelines and the ability to assess them from a security perspective, including the seamless integration of security tools into the pipeline to ensure continuous security validation.

Extensive experience working with cloud-based infrastructure and technologies, preferably AWS, enabling the design and implementation of secure cloud environments.

Familiarity with a range of security tools, including Nessus, Burp, and web application firewalls, facilitating comprehensive security assessments and the implementation of proactive security measures.

Proven ability to communicate and influence in a highly distributed environment, providing expert guidance and direction on security matters to development, systems, support, and quality assurance teams, fostering a culture of security awareness and collaboration.

Exceptional verbal and written communication skills, facilitating effective communication of complex security concepts and recommendations to diverse audiences.

Benefits

Medical insurance

Vision insurance

Dental insurance

Life insurance

Disability insurance

401(k) matching program

Short-term or long-term incentive compensation

Paid personal time off

14 paid company holidays

Paid sick time

Company

FanDuel

Glassdoor

4.1

FanDuel offers fantasy sports with daily games for real money.

Founded in 2007

New York, New York, USA

1,001-5,000 employees

http://www.fanduel.com

H1B Sponsorship

FanDuel has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Trends of Total Sponsorships

2022 (2)

2021 (3)