Security Engineer, Application Security

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Trail of Bits

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2012

🔒 Cybersecurity

☁️ SaaS

Cybersecurity • SaaS • Blockchain

Trail of Bits is a company that specializes in software security and assurance. Established in 2012, it has assisted some of the most targeted organizations worldwide in securing their systems. Trail of Bits combines advanced security research with a practical attacker mindset to reduce risk and strengthen software code. The company offers services in software assurance, security engineering, and research and development, focusing on areas such as blockchain, cryptography, and mobile device security. They also provide expert training courses to enhance understanding of various security aspects like penetration testing and threat modeling.

📋 Description

• Conduct comprehensive low-level code security assessments across applications. • Design and implement custom security tools for automated vulnerability detection. • Perform detailed architecture reviews and threat modeling of software systems and cloud environments. • Work directly with industry-leading teams to review their application infrastructure and architecture. • Contribute to the advancement of application security, developing new methodologies and tools.

🎯 Requirements

• Application security assessment experience. • Manual code review depth. • Static and dynamic analysis fluency. • Binary analysis and reverse engineering. • Memory corruption vulnerabilities and mitigations. • System internals and security boundaries. • Architecture review and threat modeling. • Security tool development experience. • Programming proficiency across multiple languages. • Communicating findings to technical stakeholders. • **Nice to Have** • Experience with Android, iOS, or macOS system internals. • Experience contributing to open source security tools, libraries, or research. • Experience publishing original vulnerability research, CVEs, or technical writeups. • Experience speaking at security conferences (DEF CON, Black Hat, BSides, OffensiveCon, RECon, etc.). • Experience identifying security misconfigurations in cloud environments (AWS, GCP, Azure). • Experience collaborating on government-funded security research (DARPA, IARPA, ONR, etc.).

🏖️ Benefits

• Competitive salary complemented by performance-based bonuses. • Fully company-paid insurance packages, including health, dental, vision, disability, and life. • A solid 401(k) plan with a 5% match of your base salary. • 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations. • 4 months of parental leave to cherish the arrival of new family members. • $10,000 in relocation assistance if moving to NYC. • $1,000 Working-from-Home stipend to create a comfortable and productive home office. • Annual $750 Learning & Development stipend for continuous personal and professional growth. • Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements. • Philanthropic contribution matching up to $2,000 annually.