Senior Application Security Engineer

Job not on LinkedIn

August 26

Apply Now

Receive Emails with Similar Jobs

Trail of Bits

WebsiteLinkedInAll Job Openings

Cybersecurity • SaaS • Blockchain

Trail of Bits is a company that specializes in software security and assurance. Established in 2012, it has assisted some of the most targeted organizations worldwide in securing their systems. Trail of Bits combines advanced security research with a practical attacker mindset to reduce risk and strengthen software code. The company offers services in software assurance, security engineering, and research and development, focusing on areas such as blockchain, cryptography, and mobile device security. They also provide expert training courses to enhance understanding of various security aspects like penetration testing and threat modeling.

51 - 200 employees

Founded 2012

🔒 Cybersecurity

☁️ SaaS

📋 Description

• Who We Are: Founded in 2012 by 3 expert hackers with no investment capital, Trail of Bits is the premier place for security experts to boldly advance security and address technology’s newest and most challenging risks. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. • Role: Trail of Bits seeks a Senior Security Engineer, Application Security within our growing Software Assurance practice. You will conduct comprehensive security assessments of client software with a focus on low-level code analysis, examining system architecture, security boundaries, access controls, and platform security mechanisms. • Daily Tasks: Analyze vulnerabilities in application code, automate detection of security misconfigurations in cloud environments, assess privilege escalation capabilities, review security boundaries in complex systems, contribute to client projects, and build impactful tools. • Research Collaboration: Collaborate with Research & Engineering team to secure government funding for advanced security research bridging vulnerability research and application security. • What You’ll Achieve: Security Assessment, Security Tool Development, Architecture Review, Client Engagement, Research & Innovation.

🎯 Requirements

• Application Security Expertise: Extensive experience in software security, with demonstrated ability to identify and mitigate application and system-level vulnerabilities in code across complex enterprise software and understanding of security controls. • Assessment Experience: Track record of conducting technical security assessments of software, including software and system hardening, security policy analysis, and implementing effective security measures; Experience with Android, iOS, and/or macOS system internals a plus. • Technical Capabilities: Deep understanding of system internals and security boundaries, experience with manual code reviews, static and dynamic analysis tools, expertise in secure development practices, experience with binary analysis and reverse engineering, and understanding of memory corruption vulnerabilities and mitigations. • Programming Proficiency: Strong knowledge of multiple programming languages such as Rust, Golang, Kotlin, Swift, Objective-C, JavaScript/TypeScript, Python, Ruby, C and/or C++ for both security analysis and tool development. • Communication Skills: Ability to effectively communicate complex security concepts to diverse stakeholders and deliver clear, actionable recommendations.

🏖️ Benefits

• Trail of Bits is our people, not a place. With over 100+ employees working from every time zone across the globe, our remote-first culture is built on autonomy and trust (and backed by smile-worthy benefits) for full-time employees: • Empowered Living: • Competitive salary complemented by performance-based bonuses. • Fully company-paid insurance packages, including health, dental, vision, disability, and life. • A solid 401(k) plan with a 5% match of your base salary. • 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations. • Nurturing New Beginnings: • 4 months of parental leave to cherish the arrival of new family members. • Our team is global and remote-first. However, if you are interested in moving to NYC, we offer $10,000 in relocation assistance to support your transition. • Work & Life Enrichment: • $1,000 Working-from-Home stipend to create a comfortable and productive home office. • Annual $750 Learning & Development stipend for continuous personal and professional growth. • Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements. • Community Impact: • Philanthropic contribution matching up to $2,000 annually.