about 12 hours ago
Warsaw, PolandSenior / Staff+
H1B Sponsor
Responsibilities
- Lead architecture reviews and structured threat modeling for projects.
- Conduct security-focused code reviews and analyze data flows.
- Translate threat model findings into engineering recommendations.
- Build and mature Asana’s security architecture review process.
- Develop and maintain a reusable security pattern library.
- Evaluate AI tooling and integrations for security risks.
- Develop governance practices for AI-augmented workflows.
- Champion security-by-design through organizational adoption of security artifacts.
- Deliver technical training and workshops to engineering and product teams.
Requirements
- 7+ years of experience in security roles focused on security architecture or application security.
- Proficiency with threat modeling methodologies and the MITRE ATT&CK framework.
- Experience conducting security-focused code reviews in modern programming languages.
- Knowledge of compliance frameworks like NIST 800-53 and ISO 27001.
- Understanding of authentication mechanisms and container infrastructure security.
- Familiarity with emerging AI security standards.
- Ability to translate architectural risks into clear guidance for stakeholders.
- Proven track record of building security review processes and influencing engineering culture.
- Strong technical writing skills for documentation and diagrams.
Benefits
- Generous and transparent compensation system including base salary and RSUs.
- Contract of Employment with tax-deductible costs for applicable roles.
- Health insurance with dental and travel coverage.
- Catering for breakfast and lunch on office days.
- Vacation allowance and career growth budget.
- Home office setup budget and gym/fitness card.
- Fertility healthcare and family-forming support.
- Mental health support and group life insurance.
- Provision of MacBooks with necessary accessories.