Remote
Full Time

Security Engineer

As the first Security Engineer you will provide technical leadership, guidance, and mentoring to the team on security best practices. You will help to shape our standards and tooling to ensure our team remains both secure and agile.

About this position

As a Security Engineer, you will:

  • Working in and with development teams to ensure security is designed into new features being built
  • Sharing your experience and best practices with the engineering team
  • Helping to instill a security culture at Dromo
  • Helping Dromo shift security left
  • Working together with external teams (e.g. Pen Testers) to externally validate the security health of our platform
  • Contribute to our application codebases and infrastructure
  • Working with the CTO to build and maintain our security roadmap

Requirements:

  • 3+ years as a Security Engineer, 8+ years industry experience
  • You have demonstrable software security experience
  • Comprehensive understanding of application-level vulnerability testing and application security (OWASP, WASC, NIST)
  • You have software development and DevOps experience, and want to ship features as an Individual Contributor (i.e. write code)
  • You are passionate about security and up to date on the latest threats and techniques
  • You are able to articulate and prioritize security risks
  • You have some experience with AWS
  • Nice to haves
  • Experience with SOC-2 certification and audits
  • Computer Science Bachelor's Degree or equivalent experience
Apply for this position