Application Security Engineer - Palantir Technologies Palo Alto, CA, United States Bookmark Share Print 514 0 5

Listing Description

About the Job: As an Application Security Engineer at Palantir, you are at forefront of a unique and novel threat environment, guaranteeing our solutions are available and secure at scale. You are passionate about security research and are motivated by both finding novel attacks and building a secure engineering organization.

As a member of the Information Security team, you'll work with software engineers to improve the security of Palantir products across the development lifecycle. You'll get to apply your breaker skills, pentesting Palantir's products, and sharpen your builder skills, working to automate security assessments and shape software architecture.

Things we're looking for:

- Ability to communicate technical security concepts to diverse audiences, both verbally and in writing.

- Deep expertise with application test methodologies and tooling (e.g. Burp).

- Strong familiarity with OWASP Top 10 web vulnerabilities and how to engineer software to avoid them.

- Working knowledge of at least one of Java, Golang, Python or Ruby.

- Experience applying static and/or dynamic analysis in application testing.

- Ability to evaluate cryptography choice and implementation.

- Passion for automating application security testing and the strengths/weaknesses of test automation.

Things we'd love:

- Active involvement and desire to contribute to the InfoSec community (e.g. open source projects, conference talks, etc)

- Deep experience in at least one area of InfoSec (e.g. PKI, crypto, black box app testing, etc.)

- Track record of both breaking and building security capabilities.

About Palantir: At Palantir, we’re passionate about building software that solves problems. We partner with the most important institutions in the world to transform how they use data and technology. Our software has been used to stop terrorist attacks, discover new medicines, gain an edge in global financial markets, and more. If these types of projects excite you, we'd love for you to join us.

About InfoSec: Our Information Security team is responsible for the security of Palantir’s people and infrastructure around the globe. As a member of the Information Security team, your technical expertise is second only to your professionalism and passion for security and technology in general. You’re a highly motivated team player that thrives on solving problems and tackling new challenges.Perform deep-dive penetration tests of Palantir products.

Plan, build and deploy infrastructure to help catch vulnerabilities automatically.

Assist engineering teams in feature design, threat modeling, and security-critical code review.

Coordinate external vendors providing 3rd party security reviews.