Security Engineer 1, Application Security

🔥 12 hours ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Trail of Bits

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2012

🔒 Cybersecurity

☁️ SaaS

Cybersecurity • SaaS • Blockchain

Trail of Bits is a company that specializes in software security and assurance. Established in 2012, it has assisted some of the most targeted organizations worldwide in securing their systems. Trail of Bits combines advanced security research with a practical attacker mindset to reduce risk and strengthen software code. The company offers services in software assurance, security engineering, and research and development, focusing on areas such as blockchain, cryptography, and mobile device security. They also provide expert training courses to enhance understanding of various security aspects like penetration testing and threat modeling.

📋 Description

• Security Assessment Ownership - Lead security assessments for specific components within client engagements. • Vulnerability Discovery and Analysis - Find and validate vulnerabilities in application code and systems. • Custom Security Tooling - Design and build security testing tools and automation for vulnerability detection. • Architecture and Threat Modeling - Conduct threat modeling and architecture reviews of software systems. • Client Communication - Translate technical findings into clear, actionable recommendations for engineering teams. • Research and Innovation - Contribute to security research initiatives and stay on the cutting edge.

🎯 Requirements

• Demonstrable vulnerability research capability - Proven ability to find and validate real vulnerabilities. • Strong code analysis skills - You can read complex code, trace execution, identify logic flaws, and explain vulnerabilities. • Hands-on coding proficiency - Fluent in at least two of: Rust, Go, C, C++, Python, JavaScript, TypeScript, or similar. • Memory safety understanding - You understand memory corruption vulnerabilities and modern mitigations. • Systems knowledge - Deep familiarity with operating systems, IPC, privilege boundaries, and system internals. • Autonomous problem-solving - You drive your own work and ask good questions. • Clear technical communication - You can explain complex security findings to engineers.

🏖️ Benefits

• Competitive salary complemented by performance-based bonuses. • Fully company-paid insurance packages, including health, dental, vision, disability, and life. • A solid 401(k) plan with a 5% match of your base salary. • 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations. • 4 months of parental leave to cherish the arrival of new family members. • $10,000 in relocation assistance to support your transition to NYC. • $1,000 Working-from-Home stipend to create a comfortable home office. • Annual $750 Learning & Development stipend for continuous growth. • Company-sponsored all-team celebrations to foster community and recognize achievements. • Philanthropic contribution matching up to $2,000 annually.