Application Security Engineer
We are looking for a Security Engineer to grow our rapidly expanding Product Security team here at Asana. You will be working with the Security and Product teams to ensure our product is safe from vulnerabilities and help build and advise on the systems and frameworks we use to keep the product safe.
The Security team ensures that Asana's users and employees are safe from malicious activity and accidental disclosure. We build the systems and tools that enable the rest of Asana to develop secure software easily. We're focused on secure-by-default frameworks, least privilege access, detection and alerting, and eliminating bug classes.
What you’ll achieve
Help shape our maturing Product Security program, focusing in the areas of identifying vulnerabilities and vulnerability classes in our product
Develop processes, code, or systems that mitigate and prevent vulnerabilities from being introduced in our product
Help us to collaborate with external researchers through our bounty program
Partner with product security and product engineering to ensure security best practices are created and upheld and build out support for security champions across the company.
Expand our detection and response to security events relating to our product, including building out detection capabilities and maturing our incident response capabilities
About you
You love hunting for bugs and vulnerabilities and keeping up with new tools and techniques in the field
You have experience with SaaS platforms and the risk landscape of web apps
Strong working knowledge of application security concepts and vulnerability mitigation
Experience with prioritizing risks based on probability and balancing business velocity
Solid programming skills - you can build out tooling to support your work and reason through code reviews
Not a stranger to implementing tooling, whether building or buying
Strong interest in working with variety of engineering and product teams as well as employees of all backgrounds
#LI-MK1
About us
Asana helps teams orchestrate their work, from small projects to strategic initiatives. Millions of teams around the world, from small businesses to large enterprises, rely on Asana to manage everything from company objectives to digital transformation to product launches and marketing campaigns. For the past 5 years, we've been named a top workplace, including top 10 Great Place to Work Best Small & Medium Workplaces, #1 Fortune Best Workplace in the Bay Area for four years in a row, #8 Fortune Best Workplaces for Women, #14 Glassdoor Best Place to Work, and one of Ireland's Best Workplaces. After spending more than a year physically distanced, we are safely and mindfully returning our global teams to in-person collaboration, incorporating flexibility that adds hybrid elements to our office-centric culture. With offices all over the world, we are always looking for curious, collaborative, and mission-driven people to help us enable the world’s teams to work together effortlessly.
We believe in supporting people to do their best work and thrive, and building a diverse, equitable, and inclusive company is core to our mission. Our goal is to ensure that Asana upholds an inclusive environment where all people feel that they are equally respected and valued, whether they are applying for an open position or working at the company. We welcome applicants of any educational background, gender identity and expression, sexual orientation, religion, ethnicity, age, citizenship, socioeconomic status, disability, and veteran status.