Director of Application Security at Grubhub

| Greater NYC Area
Sorry, this job was removed at 6:04 p.m. (EST) on Tuesday, February 18, 2020
Find out who's hiring in NYC.
See all Developer + Engineer jobs in NYC

About The Opportunity

Here at Grubhub we’ve been dedicated to giving diners the most convenient way to order food from their favorite restaurants (whether that’s a late night Chalupa from Taco Bell or a salad for lunch from a local restaurant the day after they enjoyed said late night Chalupa).

 

While we are food-obsessed, we are also customer-obsessed. We look to constantly innovate our technology so our diners’ food experience is memorable, restaurant owners get more business and individuals across the country looking for part-time work can deliver the food from the restaurant to the diner flawlessly. We take great pride in knowing that we are a part of 19+ million diners food ordering experience and we are partnered with 115,000 restaurants in 2,200 US cities across our suite of apps (Grubhub, LevelUp, Seamless, Tapingo).

 

Want to be a part of the biggest movement in the US that is moving eating forward? If so, we want to talk to you - and hear what’s your favorite restaurant for food delivery!


We’re looking a Director of Application Security engineer.  The Application Security teams are relied upon to provide engineering and product teams with the security expertise necessary to make confident product decisions. The team manages our code vulnerability programs including red teaming, manual review, static and dynamic code analysis as well as interfacing with external researchers as part of our bounty program.  

Some Challenges You’ll Tackle

  • Investigate and understand our newest projects and technologies and give security guidance to ensure that they are as robust as possible.
  • Perform code and design reviews of internally developed applications.
  • Develop security tools to find or fix security issues en masse.
  • Use both automated and manual testing tools to find and validate vulnerabilities in our web applications
  • Create automated tests to encourage and enforce security standards.
  • Develop security training and education for our software engineers.
  • Ensure that identified issues are prioritized and addressed in an appropriate timeframe.
  • Interact directly with the security community regarding vulnerabilities and threats
  • Coach and mentor engineering teams and team leaders
  • Guide growth and evolution of the team and security standards
  • Own team engagement through 1x1s, communication, celebrations, training

You Should Have

  • 7+ years of experience with a web application and network security
  • 5+ years of experience with public cloud
  • 3+ years of experience managing engineers
  • Experience in a highly scalable environment/SOA is preferred.
  • You enjoy both breaking and building.
  • Strong knowledge of web application security issues.
  • Being able to understand the true risks of findings ultimately allowing you to compromise when it's necessary and hold firm when it's essential.
  • You are interested in teaching security since we’re all in this together.
  • Experience with Amazon Web Service (AWS), Google Compute Platform (GCP, Heroku, and git
  • Experience on running, triaging and making risk assessments based on vulnerability proof of concepts, as well as validating security fixes once deployed.
  • Good verbal and written communication skills and experience interacting with highly distributed entrepreneurial teams.
  • Strong sense of “ownership” and an innovative engineering mindset.

 

PROGRAMMING LANGUAGE FOCUS:

 

  • Experience with multiple programming languages such as Java, Ruby, C# and scripting languages such as Python.
  • Background in penetration testing tools: Nessus, Metasploit, BurpSuite

And Of Course, Perks!

  • Flexible PTO. It’s true, no strings attached and all the time you need to recharge.
  • PTO. It’s true, we provide you a generous amount of time to recharge.
  • Better Benefits. Get quality insurance, flex-spending accounts, retirement options and commuter perks.  
  • Free Food. Kitchens are stocked and free Grubhub each week.
  • Stock Up. All of our employees are owners, in fact, they’re granted Restricted Stock Units, which means we’re all in it to win it.
  • Casual Culture. Catch rays on the rooftop or get comfy on a couch and get to know your coworkers — because work, should be a place you want to be.


 

Grubhub is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics. The EEO is the Law poster is available here: DOL Poster. If you are applying for a job in the U.S. and need a reasonable accommodation for any part of the employment process, please send an e-mail to talentacquisition@grubhub.com and let us know the nature of your request and contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this e-mail address.

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • JavaLanguages
    • PythonLanguages
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks

Location

5 Bryant Park, 1065 6th Ave, New York, NY 10018

What are Grubhub Perks + Benefits

Grubhub Benefits Overview

Health and Wellness: We provide programs that support your overall well-being such as generous medical benefits, employee network groups, company-wide fitness challenges, a comfortable and casual workplace! We also support our parents by offering 8 weeks of paid parent bonding time, a 4 week returnship program, and 6-8 weeks paid medical leave.

Learning and Career Growth: Your personal and professional development is a priority at Grubhub. From your very first day here, you are empowered to lead and be an active participant in your career growth. We provide continuous learning opportunities, trainings, as well as coaching and mentorship programs.

PTO. It’s true, Grubhub employees are provided a generous amount of time to recharge their batteries.

MealPerks: We never let our people go hungry! We provide our employees with weekly credit to use on Grubhub, and offer company-wide meals several times a year to bring our Grubhub family together.

Fun: Every Grubhub office has an employee-led Culture Crew that connects people through fun, meaningful initiatives across our offices. Some of our popular past events include: Wing-eating contests, Grubtoberfest, 5k Runs, Bring Your Child to Work Day, regular happy hours, and more!

Culture
Friends outside of work
Eat lunch together
Intracompany committees
Daily stand up
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Diversity manifesto
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Volunteer Time
Paid Holidays
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
Stocked Kitchen
Some Meals Provided
Happy Hours
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Lunch and learns
Acme Co. hosts lunch and learn meetings once per quarter.
Promote from within
Time allotted for learning
More Jobs at Grubhub24 open jobs
All Jobs
Data + Analytics
Dev + Engineer
Operations
Product
Project Mgmt
Sales
Content
Data + Analytics
new
New York
Developer
new
New York
Data + Analytics
new
New York
Developer
new
New York
Operations
new
New York
Content
new
New York
Data + Analytics
new
Remote
Developer
new
New York
Data + Analytics
new
New York
Developer
new
New York
Data + Analytics
new
New York
Developer
new
New York
Data + Analytics
new
New York