We can't find the internet
Attempting to reconnect
Something went wrong!
Hang in there while we get back on track
Security Engineer, Web App Security
Location: US/Canada/Poland, Remote
|
Full-Time
Security
Web Application Security
OWASP
Penetration Testing
Vulnerability Assessment
Cloud Security
Remote
AppSec
Go
Back End Engineer
Company Description: Coder is an open-source, remote-first software company focused on secure Cloud Development Environments (CDEs). Our platform is used by developers at major tech companies and in secure environments like the DoD and financial institutions. Security is paramount to our mission. Coder is SOC2 Type II Certified. Role Description: Coder is hiring a Security Engineer specializing in web application security. You will play a crucial role in ensuring the security and integrity of the Coder platform, protecting our users and their data. Responsibilities: - Conduct regular vulnerability assessments and penetration tests on Coder's web applications and APIs. - Review application code and system architecture for security flaws. - Develop and implement security best practices throughout the software development lifecycle. - Respond to security incidents and conduct post-mortem analyses. - Collaborate with engineering teams to remediate vulnerabilities and integrate security tooling. - Stay up-to-date with the latest web security threats and mitigation techniques. Technical Skills Required: - Deep understanding of web application security principles and common vulnerabilities (OWASP Top 10). - Experience with security testing tools (e.g., Burp Suite, Zap). - Proficiency in at least one programming language (Go, Python, or similar). - Familiarity with secure coding practices and code review. - Knowledge of cloud security concepts (AWS, GCP, Azure) and container security (Kubernetes, Docker). - Experience with threat modeling and security architecture design. Ideal Candidate: - Proven experience in a web application security role. - Strong analytical and problem-solving skills. - Excellent communication skills, capable of explaining complex security issues to different audiences. - Ability to work independently and collaboratively in a remote setting. - Passion for security and protecting systems and data.
Post Date:
April 22, 2025