Sr. Security Engineer

Remote from
,
Job level
Senior
Category
Engineering
Job type
Full Time,
Opening date
Closing date
15 Feb 2023
Views
327
Harness is led by technologist and entrepreneur Jyoti Bansal, who founded AppDynamics and sold it to Cisco for $3.7B. We’re backed with $425M in venture financing from top-tier VC and strategic firms, including J.P. Morgan, Capital One Ventures, Citi Ventures, ServiceNow, Splunk Ventures, Norwest Venture Partners, Adage Capital Partners, Balyasny Asset Management, Gaingels, Harmonic Growth Partners, Menlo Ventures, IVP, Unusual Ventures, GV (formerly Google Ventures), Alkeon Capital, Battery Ventures, Sorenson Capital, Thomvest Ventures and Silicon Valley Bank.
Product Security is responsible for ensuring the continuous security of Harness customer-facing products and internal tools.  The team is focused on proactively discovering security weaknesses, driving and advising risk remediation, building a paved road for developers to adopt secure development practices, and developing partnerships with engineering and product teams to accelerate the release of software with security by design.
As a Senior Security Engineer, you will lead efforts to extend visibility into Harness’ security posture, integrate and automate core security technologies, and drive continuous improvement across our technical estate.  You’ll use your knowledge to test, design, and secure solutions that enable Harness’ business goals, and collaborate directly with engineering teams to Get Ship Done.  You will be responsible for cross-team projects with Engineering and Product, and will sharpen new skills as we continue to scale.

KEY RESPONSIBILITIES

  • Lead manual and automated testing efforts to discover vulnerabilities, weaknesses, and anti-patterns in the Harness platform.
  • Implement and own operation of security tooling, including SAST, DAST, SCA.
  • Perform penetration tests and simulate adversarial attacks against Harness modules APIs, and codebase using industry standard frameworks.
  • Use the Harness platform to integrate security processes like vulnerability management into the SDLC.
  • Participate in the creation, review and implementation of technical security and compliance-related engineering requirements across global Engineering teams.
  • ​​Consult and advise with developers and Product Managers to analyze and implement security standards, methods, vulnerability remediation, and security architecture.
  • Conduct threat modeling of applications, backend services and business integrations.
  • Assess risks and trade-offs, and propose solutions for product security features such as authentication and authorization.

ABOUT YOU

  • 5+ years of relevant industry experience as a software engineer, security engineer, or similar.
  • Expert professional knowledge of enterprise applications, APIs, and modern software delivery processes.
  • You have previous experience in a cloud-native environment.
  • Fluency in at least one programming language, and are comfortable with Java.
  • You want to work in a high-growth environment and build new programs from scratch.
  • You care about the details, and are willing to ask questions when you’re unsure.
  • You are comfortable handling the unknown, and seek to bring clarity in ambiguous situations.

BONUS POINTS

  • BS in Computer Science or a related degree.
  • You have experience and exposure to a containerized environment.
  • You hold relevant security or technical certifications (CISSP, OSCP, OSWE, or GWAPT).
  • Demonstrated experience contributing security fixes to open source projects.
  • You have exposure to industry regulations and compliance certifications (ISO 27001, SOC 2, FedRAMP, SOX, etc.)
  • You are eager to learn, and to share your knowledge with colleagues.
  • You like to automate the boring stuff.

WHAT YOU WILL HAVE AT HARNESS

  • Competitive salary
  • Comprehensive healthcare benefits
  • Flexible Spending Account (FSA)
  • Flexible work schedule
  • Employee Assistance Program (EAP)
  • Paid Time Off and Parental Leave
  • Monthly, quarterly, and annual social and team building events
  • TGIF-Off program (10 extra days off!)
  • Remote office stipend
  • Monthly internet reimbursement
  • Monthly Food & Beverage Reimbursement Program.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, or national origin.

Personalised job alerts

Set up personalised e-mail alerts about similar remote jobs

Report jobEmbed widgetShare

How to apply

See a few more

Similar remote jobs in Engineering

Job Widget Code

Place this code wherever you want the widget to appear on your page.

<script src="//jobicy.com/api/widget.js?5XyPbk5QqyZg=15163" async></script>

Job Search Safety Tips

Here are some tips to help you search and apply for jobs safely:
Watch out for suspicious jobs Don't apply for jobs that offer high pay for little work or offer to hire you without an interview.
Check the employer's profile Make sure you're applying for a trustworthy job by visiting the employer's profile and learning more about them.
Protect your information Don't share personal details like your bank account or government-issued ID on suspicious websites or messengers.
Report jobs that feel unsafe If you see a job that seems misleading, inappropriate or discriminatory, report it for going against our policies and we'll review it.

Share this job

FAQ

What position is Harness hiring for?

Harness is hiring a remote Sr. Security Engineer from ,

What type of employment does Harness offer?

This is a Full Time role.