Product Security Engineer, Web at Red Canary

| Remote
Sorry, this job was removed at 4:06 a.m. (MST) on Tuesday, November 3, 2020
Find out who's hiring in Colorado.
See all Developer + Engineer jobs in Colorado
Why You Matter
Some of the best security teams in the world depend on our software to protect their organizations, and in turn expect the highest standards of security for our platform.
Delivering excellent, secure software is paramount to the Red Canary mission. You will mature Red Canary’s product security program to ensure secure outcomes for software development at scale. Under your guidance, the Red Canary product security model will be viewed as the standard by which all other security providers are measured.
The program you will join enables rapid development of Red Canary’s features for our customers, by providing repeatable secure patterns and seamless guardrails.
Who You Are
You command deep understanding of modern web application development, the threats facing these applications, and strategies to mitigate them. You are an experienced Rails developer with a passion for security and continuous improvement.
You are passionate about weaving elegant security architecture into software at scale. You are comfortable designing and implementing security best practices at every stage of the development lifecycle, from design through production. You enjoy seeking out exploitable bugs in software, but enjoy fixing them even more.

What You'll Do

  • Operate across multiple product teams, developing security architecture patterns for implementing new solutions and products. 
  • Develop, implement, and maintain product security strategy for a range of fast-moving web applications.
  • Engage in application and domain-specific threat modeling, and attack surface analysis and reduction
  • Develop and execute a continuous testing program.
  • Validate reported vulnerabilities from internal and external sources.
  • Work alongside engineers, performing peer review and mentoring as needed.

Preferred Qualifications

  • Strong experience in web application security issues, standards, and best practices (ex. OWASP)
  • Strong experience in distributed platform development security and design
  • Strong foundation in core information security principles and concepts (TLS, authentication, etc.)
  • Experience developing and securing enterprise-grade Ruby on Rails applications
  • Working knowledge of common languages such as Ruby, Javascript, Go, etc.
  • Experience with industry tools and technologies such as Burp Suite, etc.
  • Familiarity in public cloud security deployment and implementation issues (AWS)
  • Familiarity with audits and standards requirements such ISO 27001, SOC 2, etc.
  • Excellent communication, and the ability to explain complex security topics in simple terms

Additional benefits of working at Red Canary include:

  • Exceptional healthcare and dental coverage including fully paid premiums
  • Flexible time off and leave benefits
  • 401k and flex-spending accounts
  • Fitness and phone discretionary stipends

Why Red Canary
Red Canary was founded to create a world where every organization can make its greatest impact without fear of cyber attack. Our combination of market-defining technology, processes, and expertise is preventing breaches every day.
Red Canary’s Information Security team is chartered with protecting our customers by protecting Red Canary.
Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Sales & Marketing
    • GolangLanguages
    • JavascriptLanguages
    • RubyLanguages
    • jQueryLibraries
    • ReactLibraries
    • Ruby on RailsFrameworks
    • PostgreSQLDatabases
    • RedisDatabases
    • WordpressCMS
    • HubSpotCRM
    • SalesforceCRM

Location

We are in the heart of Downtown Denver one block from Union Station. We provide an RTD pass and you have access to 100's of restaurants and events.

An Insider's view of Red Canary

What's something quirky about your company?

There’s a thing we do at Red Canary called BEASTMODE. On a quarterly basis, everyone comes to Denver and we spend three intense days together.The reason it’s called BEASTMODE is that in the very early days of the company, we’d spend endless hours in a single room, fueled by ample amounts of caffeine, building a company of which we could be proud.

Dave

Director, Customer Success

What projects are you most excited about?

The Cyber Incident Response Team (CIRT) reached the milestone of 10,000 spec/unit tests to validate our detection logic, an indicator of how diligently we maintain our detectors. Continued validation that everything is working as anticipated is key to ensuring a successful security program.

Joe

VP, Customer Security Operations

What makes someone successful on your team?

Providing such an exceptional level of support and care that our customers renew and expand their commitment to partnering with us. I hope that the Red Canary level of post-sale support becomes the model our competitors and partners are chasing.

Stacie

VP, Customer Care

How do you empower your team to be more creative?

As we continue to grow and add specialized focus across digital media, video, and an even more robust content program, I want the team to be able to take all the great insights and educational pieces and recommendations and make it easy for people to find them, understand them, and implement them. To be able to use what we’re doing in marketing in

Brianne

Director, Marketing

What’s the vibe like in the office?

I am most proud of the fact that the culture of the team has not only stayed in tact, but has matured and elevated, despite the rapid growth. Senior team members constantly go out of their way to ensure that new CSEs are welcomed, growing, and set up for success. Success is rooted in team dynamics and culture.

Robbie

Director, Customer Solutions Engineering

What are Red Canary Perks + Benefits

Red Canary Benefits Overview

Exceptional healthcare and dental coverage including fully paid premiums
Flexible PTO
401k and flex-spending accounts
100% employer paid long and short term disability
Monthly stipend for personal fitness and cell phone
Yearly discretionary stipend of $1000

Diversity
Documented equal pay policy
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Dental Benefits
Vision Benefits
Health Insurance Benefits
Onsite Gym
Retirement & Stock Options Benefits
401(K)
Company Equity
Child Care & Parental Leave Benefits
Generous Parental Leave
We provide up to 8 weeks of parental leave for new parents.
Vacation & Time Off Benefits
Generous PTO
Red Canary offers Flexible Time Off for vacation time as well as sick time and other leave benefits.
Paid Holidays
Paid Sick Days
Employees receive 80 hours per year of paid sick leave.
Perks & Discounts
Casual Dress
Commuter Benefits
Stocked Kitchen
Fitness Subsidies
Professional Development Benefits
Lunch and learns
We host a chalk talk every Friday afternoon
Cross functional training encouraged
Promote from within

Additional Perks + Benefits

Quarterly all company meetings where we bring in all of our remote team members to build camaraderie, align and learn.

More Jobs at Red Canary23 open jobs
All Jobs
Dev + Engineer
Operations
Product
Sales