Application Security – Design Reviews, Threat Modelling

Job not on LinkedIn

🔥 0 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of SRM Technologies

SRM Technologies

501 - 1000 employees

Founded 1998

☁️ SaaS

Automotive • Healthcare • SaaS

SRM Technologies is a leading provider of Product Engineering, Automotive Solutions, and Digital Transformation services. With over 25 years of experience, the company specializes in mobility solutions, cloud technologies, data analytics, and artificial intelligence to help enterprises enhance their operational efficiency and innovate their product offerings. SRM Tech focuses on diverse industries such as automotive, healthcare, consumer and retail, telecommunications, and education, leveraging technology to drive business success and agility.

📋 Description

• Participate in security design reviews and threat modeling exercises for new products, services, and platform capabilities • Partner with engineering teams to identify security risks and recommend practical mitigations during the design and development process • Serve as a security consultant for product and engineering teams, answering security questions and providing guidance on secure implementation patterns • Review application and system architectures, technical designs, data flows, and deployment models to identify security risks and recommend secure design patterns • Partner with engineering teams developing AI and machine learning features to identify emerging security risks and recommend secure implementation patterns • Help maintain and improve security standards, guidance, reference architectures, and internal documentation • Develop or enhance tooling and automation that improve the efficiency of threat modeling, security reviews, and risk assessment processes • Collaborate with other Product Security engineers to perform application security assessments and investigate security concerns identified during development • Contribute to developer education efforts through documentation, office hours, workshops, or security awareness initiatives • Support security incident investigations and root cause analysis when application security issues are discovered

🎯 Requirements

• Available to work until 11:00AM Pacific Standard Time (PST) • 5+ years of experience in Application Security, Product Security, or a related field • Strong understanding of common application security vulnerabilities (OWASP Top 10, API Security, authentication, authorization, secrets management, cryptography, etc.) • Experience participating in security reviews, threat modeling exercises, architecture discussions, or application security assessments • Strong technical writing skills and experience creating documentation and guidelines • Strong communication skills and ability to explain security concepts to engineers with varying levels of security expertise • Experience working collaboratively with software engineering teams to identify and address security risks • Familiarity with cloud platforms and modern application architectures (AWS preferred) • Ability to assess risk, prioritize issues, and provide practical security recommendations • Experience reading and understanding source code in one or more modern programming languages • Experience building scripts, tools, or automation to improve engineering or security workflows

🏖️ Benefits

• Health insurance • Retirement plans • Paid time off • Flexible work arrangements • Professional development

Apply Now

Similar Jobs

🕒 5 days ago

ClanX

1 - 10

🎯 Recruiter

👥 HR Tech

Senior Security Engineer responsible for securing infrastructure and application code for AI products. Overseeing compliance and driving security improvements in a regulated environment.

AWS

Azure

Cloud

Docker

Google Cloud Platform

Kubernetes

🕒 6 days ago

Fortrea

10,000+ employees

🧬 Biotechnology

💊 Pharmaceuticals

⚕️ Healthcare Insurance

Workday Security Lead driving security design and governance for Fortrea's Workday platform. Ensuring secure access and compliance with regulatory frameworks while collaborating with various teams.

🕒 6 days ago

Akamai Technologies

5001 - 10000

🔒 Cybersecurity

Security Architect II managing technical lifecycles and designing customer configurations for Akamai's security solutions team. Analysing traffic and customizing security solutions to address challenges.

DNS

Firewalls

Python

Terraform

🕒 July 10

Navitas Business Consulting, Inc.

51 - 200

🤖 Artificial Intelligence

🔒 Cybersecurity

☁️ SaaS

Security & Endpoint Engineer at Navitas providing security solutions for Dropbox's endpoint environment. Evaluating and implementing security measures for browser extensions and various platforms.

Jamf

Linux

MacOS

Python

🕒 July 9

Solstice Advanced Materials

1001 - 5000

🤝 B2B

🔬 Science

💊 Pharmaceuticals

Senior Network Security Architect at Solstice Advanced Materials driving network security and Zero Trust strategy. Ensuring secure operations across corporate, cloud, and high-trust environments.

Cloud

TCP/IP