Application Security Engineer

| Greater NYC Area | Hybrid
Sorry, this job was removed at 4:52 p.m. (EST) on Thursday, February 27, 2020
Find out who's hiring in Greater NYC Area.
See all Cybersecurity + IT jobs in Greater NYC Area
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Information Security at Addepar is committed to making our organization, products, and services as secure as possible. Product (Application) Security plays an integral role in defining the security narrative for the Product and Engineering teams, ensuring security is embedded into existing and new services Addepar launches. Product Security engineers use a pragmatic, empathetic, and timely approach to provide actionable advice while also considering the challenges in delivering high-quality products and services. Our mission is to enable Addepar to safely and securely launch new initiatives and services promptly. 


As a Product Security Engineer, you deeply understand the technology stack used at Addepar; you aim to identify and eliminate security vulnerabilities proactively. Your focus is forward-facing, building tools and services that ensure the safety of the Addepar platform and its valued client data against commonly known attacks. You will be a core member of the Information Security team, interfacing with Product and Engineering to advance Addepar’s mission in a safe and secure fashion.

The Product Security team works on the following:

  • Perform application threat modeling
  • Create the guiding application security documentation and advice to engineers
  • Coordinate and perform manual and automated code tests
  • Support automation initiatives and projects
  • Support the periodic application penetration tests and Bug Bounty program
  • Perform ad-hoc application and code security scans 
  • Conduct analysis and share the root cause of common security issues within the code and how to avoid them
  • Act as a core member within Information Security supporting the Product and Engineering teams

Requirements:

We expect each Product Security Engineer to add a unique set of expertise that contributes to the essential skill of relating to software developers. As a member of the team, you are well-versed in the following domains: 

  • 3+ years of relevant work experience on an internal security team, working either on the offensive or defensive sides of security
  • Demonstrate the ability to understand and discover attack surfaces, live and breath commonly known attacks such as Cross-Site Scripting, Remote Code Execution while navigating the source code comfortably
  • Demonstrate an understanding of cryptographic best practices
  • Familiarity with security tooling and solutions in the product lifecycle, including security tooling for the Continuous Integration and Deployment pipeline
  • Familiarity and previous experience using Metasploit, Burp Suite, fuzzing, and Jenkins strongly preferred
  • Possess the restlessness ability and desire to break things and learn about the latest developments in the security landscape
  • Demonstrate an understanding of application architectural patterns, such as MVC, microservices, event-driven architectures, etc.


Addepar is a wealth management platform that specializes in data aggregation, analytics, and reporting for even the most complex investment portfolios. The company’s platform aggregates portfolio, market, and client data all in one place. It provides asset owners and advisors a clearer financial picture at every level, allowing them to make more informed and timely investment decisions. Addepar works with hundreds of leading financial advisors, family offices, and large financial institutions that manage data for over $1.7 trillion of assets on the company’s platform. In 2020, Addepar was named as a Forbes Fintech 50 and in 2018 received Morgan Stanley’s Fintech Award for making a significant impact on the firm’s mission of continuous innovation. Addepar is headquartered in Silicon Valley and has offices in New York City and Salt Lake City.

 

Addepar is an equal opportunity employer. We’re committed to building together and to do that best, we rely on a range of backgrounds, experiences, and ideas.

Read Full Job Description
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Location

Addepar is centrally located in Midtown East above one of the city's most iconic buildings, Grand Central Terminal.

Similar Jobs

Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about AddeparFind similar jobs