Director, Application and Product Security

Job not on LinkedIn

July 15

Apply Now

Receive Emails with Similar Jobs

Newfold Digital

WebsiteLinkedInAll Job Openings

Web 3 • eCommerce • SaaS

Newfold Digital is a leading web presence solutions provider serving millions of small-to-medium businesses globally. Through its portfolio of brands, including Bluehost, CrazyDomains, HostGator, Network Solutions, Register. com, Web. com, and many others, Newfold Digital helps customers of all sizes build a digital presence that delivers results and adds value to businesses. With extensive product offerings such as domains, website builders, hosting, security, online marketing, professional website design, and SEO services, along with personalized support, Newfold Digital collaborates with its customers to meet their online presence needs.

1001 - 5000 employees

Founded 2021

🌐 Web 3

🛍️ eCommerce

☁️ SaaS

💰 Venture Round on 2021-01

📋 Description

• Who we are. Newfold Digital is a leading web technology company serving millions of customers globally. Our customers know us through our robust portfolio of brands. • We are looking for a passionate and effective technical leader to help drive Application and Product Security Engineering across our development and operations teams. • You will lead a team which will collaborate with other security, operations and software development teams to guide secure architecture, design and implementation, and reduce security risk. • The threat landscape for our products and services continues to evolve and expand rapidly, and you will be challenged to help solve large-scale, complex problems. • 1) Review architecture and code and provide security guidance (70%). • 2) Create a paved road for engineers to build securely (20%). • 3) Cultivate and promote a security culture (10%).

🎯 Requirements

• Required qualifications: Ability to clearly communicate security topics and vulnerability classes (e.g. OWASP Top Ten) and provide actionable direction to product teams. • A record of partnering with internal engineering teams to tackle security problems across an entire stack with empathy and creativity. • Hands-on experience in software engineering projects. • We primarily develop in Java, Python, JavaScript, SQL, and Perl. • Working knowledge of modern development concepts (virtualized environments, containerization, continuous integration + delivery). • Preferred qualifications: 5 to 10+ years of experience in application security or product security roles. • Practical understanding and experience with shared and dedicated web hosting at scale. • Proven professional experience guiding software teams on secure architecture design. • Working knowledge of network architecture and system architecture, including cloud infrastructure. • Experience building or reviewing threat models and ability to craft malicious user, attacker, and abuse/misuse cases. • Working knowledge of hardware and software supply chain security.