Security Engineer – Application Security
| Company | OpenAI |
|---|---|
| Location | Seattle, WA, USA, San Francisco, CA, USA, New York, NY, USA |
| Salary | $255000 – $405000 |
| Type | Full-Time |
| Degrees | |
| Experience Level | Senior |
Requirements
- Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles.
- Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response.
- Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks.
- Proficiency in programming languages (such as Python, Java, C++, etc.), knowledge of security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods.
- Strong written and verbal communication skills, with the ability to explain complex security issues to both technical and non-technical audiences.
Responsibilities
- Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software.
- Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats.
- Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines.
- Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies.
- Track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts.
- Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents.
- Continuously stay updated on the latest security threats, vulnerabilities, and technologies to enhance security measures in applications.
Preferred Qualifications
- Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks.