Senior Software Security Engineer

last updated September 24, 2022 21:08 UTC

Mindbody

HQ: San Luis Obispo, CA

more jobs in this category:

  • -> Website & App Tester @ PingPong
  • -> Entry Level Content Writer @ Jerry
  • -> Code Challenge Reviewer - Review Code In Your Spare Time - £50 Per Hour @ Geektastic
  • -> Frontend Developer (React) @ Cake
  • -> Frontend Engineer @ Torc

JOB SUMMARY:

MINDBODY’s Security Engineering team is seeking an experienced software engineer to help keep our users safe from real world threats. You will build large, distributed security solutions that harden the MINDBODY SaaS platform and enable us to protect against and surface malicious activity. We are looking for a candidate with a passion for security and innovation, who will research and develop new solutions to protect our users but also help us share the goodness to make the internet a safer place for all.

PRINCIPAL DUTIES AND RESPONSIBILITIES:

  • Take a leadership role in driving internal security and privacy initiatives

  • Design core, backend software security components

  • Code using primarily . Net, C#, and Classic ASP

  • Implement abuse detection and logging systems to surface threats

  • Interface with Product Development teams to incorporate their innovations and vice versa

  • Conduct design and code reviews

  • Performs Mobile Risk Assessments, Vulnerability Assessments, and Penetration Tests.

  • Recommends countermeasures and safeguards that would mitigate mobile risk.

  • Establish mobile policies and procedures and advise Product Owners as to the most optimum deployment of integrated mobile security solutions.

  • Perform investigations for evidence of intrusion or policy violations

  • Develops, documents, deploys, reviews and maintains Information Security Policies, Standards, Procedures and Guidelines.

  • Designs, produces, and delivers compelling OWASP training content.

  • Implements and improves software tools to gather system configuration information and proactively identify vulnerabilities.

  • Maintains awareness regarding OWASP and application security trends.

MINIMUM QUALIFICATIONS AND REQUIREMENTS:

  • Extensive knowledge of web technologies with an emphasis on the . NET framework, MVC, and Web API

  • Extensive knowledge of Security principles: confidentiality and integrity of data, authentication and authorization, security protocols (HMAC, SSL, JKS, AES, OAuth)

  • Extensive knowledge of web application security principles

  • Extensive experience building secure large-scale, server applications

  • Extensive experience with service-oriented architecture principles to implement tools like WCF

  • Expert knowledge of VB, C#, and the . NET Framework

  • Experience with operating system internals, programming language design, compilers

  • Experience in building authentication or authorization services

  • Experience with scalable rules engines

  • Experience or bent in thinking about operability, monitoring, performance, testability and scalability while building large-scale systems.

  • Experience with designing and implementing secure web based payments systems

  • Ability to influence design and architectural decisions.

  • B. S.or M. S. in Computer Science or related field, or equivalent experience

  • 7+ years working on complex web applications

  • Full software development lifecycle experience; must be comfortable working using Agile methodology as well as iterative methodologies.

  • Must have prior experience of being a developer of a REST interface

Shopping Cart
There are no products in the cart!
Total
 0.00
Checkout
0