13 days ago
Palo Alto, CA, USAMid Level / Senior
H1B Sponsor
Base Salary
$200k - $340k/yr
Responsibilities
- Conduct in-depth code reviews and static analysis to identify and mitigate security vulnerabilities.
- Design and implement secure coding guidelines and best practices for development teams.
- Collaborate closely with development teams to integrate security practices throughout the CI/CD pipeline.
- Perform threat modeling and risk assessments for applications, developing mitigation strategies.
- Manage vulnerability tracking and remediation efforts, providing guidance to development teams.
- Support incident response activities related to application security.
- Stay current on emerging security threats and trends in cloud-native technologies and AI.
- Evaluate and secure software supply chains, including producing and maintaining Software Bills of Materials (SBOMs).
- Address security concerns specific to AI and machine learning models.
Requirements
- Bachelor's degree in Computer Science, Cybersecurity, or a related field.
- 3-5 years of experience in application security with a focus on code security practices.
- Deep understanding of secure coding practices, application security frameworks, and common vulnerabilities.
- Proficiency in Python or Rust programming languages and experience with secure coding practices.
- Experience securing CI/CD pipelines and implementing DevSecOps practices.
- Familiarity with software supply chain security and SBOM generation tools.
- Experience with security testing tools and static/dynamic code analysis.
- Understanding of AI/ML security implications, particularly those outlined in the OWASP LLM Top 10.
- Excellent communication skills to explain complex security issues to various audiences.
Benefits
- Equity in the company.
- Comprehensive medical, vision, and dental coverage.
- Access to a 401(k) retirement plan.
- Short & long-term disability insurance.
- Life insurance and various other discounts and perks.