Senior Application Security Engineer

Interdax is building a 3rd generation digital asset exchange. Our team comes from top HFTs and exchanges like Nasdaq and NYSE, as well as from well known firms in the blockchain space.

In this role, you will leverage your experience and technical AppSec expertise to prioritise and deliver security solutions. Help application engineers ship safe and resilient code as part of a distributed microservices architecture.

Responsibilities

– Evaluate, architect, implement, and support security-focused tools and services
– Advise and consult on risk assessment, threat modeling, and vulnerability remediation
– Conduct internal penetration testing coordinating with external auditors
– Proactively develop security guidance for future projects and technologies
– Setup operational and organizational security
– Advocate security across the whole business conducting security trainings
– Improve the secure software development lifecycle

Requirements

– Solid understanding of authentication protocols
– Practical knowledge of the latest web application security issues and security trends
– Understanding of modern attack patterns and methods
– Experience with secure code review of web and mobile applications
– Diverse range of security experience at an enterprise level in IT
– Knowledge of common web vulnerabilities (OWASP Top 10)
– Experience protecting and mitigating common attacks (DDoS, XSS, session-hijacking, SQL injection, CSRF, etc.)
– Knowledge of mobile platform security architectures
– Software development experience with two or more of: JavaScript, Go, Python or C++.
– Experience working with operational or DevOps teams.
– Knowledge of unique security risks and capabilities with IaaS, PaaS, and SaaS.

Bonus points

– Experience with DevSecOps
– Experience with popular threat modeling systems
– Experience fuzzing applications and protocols
– Experience with crytocurrencies (Bitcoin, Ethereum)
– Background in applied cryptography
– Industry qualifications such as CISSP, CISA, CISM, CRISC certification

Compensation and perks

– Competitive salary ($180k-$250k / year)
– Profit sharing (0.5 – 1.5%)
– Fully remote
– Flexible work hours
– Unlimited Vacation Policy
– Startup culture
– Team getaways

By clicking the “Apply for Job” button, you will likely be redirected to a web page outside of our website. We cannot be held responsible for external sites’ content. Please take reasonable steps to confirm that you’re actually dealing with a company representative, not an impostor.

Apply for this Job
Job Listing Source