Senior Security Engineer II, Application Security

🕒 il y a 18 jours

☕ Washington – Distant

☕ Washington – Remote

💵 $175 000 - $245 000 / an

⏰ Temps Plein

🟠 Senior

👮‍♂️ Cybersécurité / Ingénieur Sécurité

🦅 Parrain de Visa H1B

Cette entreprise a parrainé des visas H1B par le passé.

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Smartsheet

Site WebLinkedInTous les Emplois

1001 - 5000 employés

Fondée en 2005

☁️ SaaS

⚡ Productivité

🤝 B2B

SaaS • Productivity • B2B

Smartsheet est une plateforme conçue pour gérer les projets, automatiser les flux de travail et créer des solutions à grande échelle. Elle offre une large gamme de fonctionnalités comprenant l'automatisation, la collaboration en équipe, les tableaux de bord et le reporting, ainsi que des intégrations, permettant aux entreprises de rationaliser leurs opérations. La plateforme répond à divers cas d'utilisation tels que la gestion de projets, la gestion de portefeuilles IT, la gestion marketing, et bien plus encore, s'adressant à diverses industries, y compris le gouvernement, la finance et la santé. Smartsheet accorde également une grande importance à la sécurité et à la protection des données, garantissant la confidentialité des données des utilisateurs. De plus, elle propose des services professionnels tels que le conseil, la formation et le support à la mise en œuvre pour maximiser les capacités de la plateforme.

Description

• Conduct security reviews and threat modeling of AI-integrated product features • Own end-to-end security assessments for high-risk features and services • Operate and evolve the security scanning controls embedded in Smartsheet's GitLab pipelines • Serve as the expert validation layer for Smartsheet's bug bounty program

🎯 Exigences

• 8+ years in application security, with a track record of owning complex, multi-capability work in a product security or AppSec engineering role. • Fluent in one or more modern languages (Java, Python, TypeScript/JavaScript, Go, Ruby, or equivalent); you identify security-relevant patterns without relying on tooling and write automation that others adopt. • Hands-on experience securing AI-integrated applications (LLM systems, agentic workflows, model APIs) and demonstrated experience deploying AI and automation to scale security functions or extend team reach. You bring both skill sets. • Threat modeling, architecture review, and code review for complex SaaS features; you produce findings engineering teams can act on and carry enough technical credibility to influence design decisions, not just document them. • Independent, hands-on validation of complex, multi-step authenticated vulnerabilities; you confirm what scanners flag and find what they miss. • Operator, active researcher, or both; direct experience with triage, severity calibration, and researcher communication. • Working knowledge of SAST, SCA, secrets, and IaC scanning in modern pipelines, with experience engaging teams on findings and improving signal quality. • Working knowledge of AWS, GCP, or Azure sufficient to tie application-layer risk to the infrastructure it runs on; you understand where the application ends and the cloud begins. • Legally eligible to work in the U.S. on an ongoing basis • BS or MS in Computer Science, a related field, or equivalent industry experience

🏖️ Avantages

• Employer subsidized medical/vision and dental coverage for full-time employees • 401k Match to help you save for your future (50% of your contribution up to the first 6% of your eligible pay) • Monthly stipend to support your work and productivity • Flexible Time Away Program, plus Sick Time Off • US employees are automatically covered under Smartsheet-sponsored life insurance, short-term, and long-term disability plans • US employees receive 12 paid holidays per year • Up to 24 weeks of Parental Leave • Personal paid Volunteer Day to support our community • Opportunities for professional growth and development including access to Udemy online courses • Company Funded Perks, including a counseling membership, local retail discounts, and your own personal Smartsheet account • Teleworking options from any registered location in the U.S. (role specific)