Sr. Application Security Engineer

About SimpliSafe

We’re a high-tech home security company that’s passionate about protecting the life you’ve built and our mission of keeping Every Home Secure. And we’ve created a culture here that cares just as deeply about the career you’re building. Ours is a no ego culture of collaboration and innovation where those seeking their next challenge can find big opportunities and make a huge impact on the lives of all those who we protect. We don’t just want you to work here. We want you to grow and thrive here.

We’re embracing a hybrid work model that enables our teams to split their time between office and home. Hybrid for us means we expect our teams to come together in our state-of-the-art office on two core days, typically Tuesday and Wednesday, to work together in person, and teams can choose where they work for the remainder of the week. We all benefit from flexibility and get to use the best of both worlds to get our work done.

Why are we hiring?

Well, we’re growing and thriving. So, we need smart, talented, and humble people who share our values to join us as we disrupt the home security space and relentlessly pursue our mission of keeping Every Home Secure.

What You’ll Do

We’re looking for an application security engineer to help validate that applications and products are designed, built, and maintained with high security standards. An individual in this role analyzes the security of applications and their underlying services and provides practical suggestions to meet security objectives. They will work closely with development and product teams to outline security requirements and track progress towards meeting objectives that achieve desired security outcomes. Additionally, an application security engineer will help secure the SDLC pipeline and design, implement, and maintain controls among various stages of application development. 

Primary responsibilities include: 

  • Develop and maintain relationships with product and development teams. Stay informed of product and development roadmaps and proactively work to address potential security concerns as early in the development lifecycle as feasible
  • Work with vulnerability disclosure reports and handle interactions with bug bounty researchers.
  • Evaluate product security architecture and provide feedback to improve secure design capabilities aligned to the business priorities
  • Train developers on common security mistakes to avoid
  • Help manage security aspects of the devops pipelines to improve security outcomes of applications and data
  • Perform testing and validation as needed to identify security vulnerabilities in applications and products

What You’ll Bring

  • Up to 5 years of experience in cybersecurity with a recent specific focus on application security, application development, and/or secure architecture design
  • Basic proficiency in application development (any relevant modern language)
  • Solid understanding of cryptography concepts used to secure applications and data
  • Experience with static and dynamic analysis tools
  • Experience threat modeling applications and application systems

What Values You’ll Share

  • Customer Obsessed - Building deep empathy for our customers, putting them at the core of our work, and developing strong, long-term relationships with them.
  • Aim High - Always challenging ourselves and others to raise the bar.
  • No Ego - Maintaining a “no job too small” attitude, and an open, inclusive and humble style.
  • One Team - Taking a highly collaborative approach to achieving success.
  • Lift As We Climb - Investing in developing others and helping others around us succeed.
  • Lean & Nimble - Working with agility and efficiency to experiment in an often ambiguous environment.

We wholeheartedly embrace and actively seek applications from all individuals, no matter how they identify. We are committed to cultivating a diverse and inclusive workplace, and we believe our work is enriched when we incorporate a multitude of perspectives, backgrounds, and experiences. We want everyone who works here to thrive and contribute to not only our mission of keeping every home secure, but also to making our workplace safe and supportive for others. If a reasonable accommodation may be needed to fully participate in the job application or interview process, to perform the essential functions of a position, or to receive other benefits and privileges of employment, please contact careers@simplisafe.com.

Department:

Enterprise Info Systems, IT & Info Sec

Position:

Sr. Application Security Engineer

Location:

Boston, MA