Senior Security Engineer - Seesaw Remote, US Bookmark Share Print 155 0 1

Listing Description

Our Growth Mindset (The Mission):
Think back on your time in school and a project or experience that got you fired up, curious, and motivated to try your best.  Can you remember one? If you’re like us, there are some projects we remember decades later -- those times when we were so engaged in what we were doing that we couldn’t help but learn.

Seesaw is a learning platform that brings educators, students, and families together to deepen student learning. Teachers design and facilitate powerful learning experiences, students create, reflect, collaborate and make their learning visible, and families actively support and celebrate student learning. Seesaw is used by millions of K-12 students in over half the schools in the U.S.

The Curriculum (Your Role):
We’re looking to hire our first-ever Security Architect to own the standardization, automation, and scaling out of our Seesaw application security and platform security initiatives. We’re looking for Senior Security Engineers who can leverage software engineering skills and deep security expertise to raise security standards and reduce friction across multiple teams, products, and services in a highly dynamic engineering environment.

Your Classmates (The Team):
Our first dedicated Security Architect will be working within our Platform Engineering Team currently owns our security, privacy, trust, and safety initiatives as well as our core product infrastructure and data pipeline. We’re a lean team here at Seesaw, so you’ll also be working with all other engineers, PMs, and IT team members,

Subject Matter (Your Responsibilities):
  • Partner with engineering and product teams to perform threat modeling, design, and code reviews to assess security implications and requirements for the secure development of new systems and technologies and remediate vulnerabilities in existing ones.
  • Design, build and deploy automation to scale application and infrastructure vulnerability discovery efforts across repositories, systems, and microservices.
  • Identify security/privacy-notable functionality in applications and services, identify trends, and build out automation to bring security awareness into the affected areas.
  • Develop automated security testing to validate secure coding best practices.
  • Support our external researchers through our bug bounty program, and coordinate our annual security exercises.
  • Proactively improve our security frameworks, documentation, tools, processes, and methodologies.

    • Prerequisites (The Requirements):
  • 6+ years of experience in the security engineering domain.
  • Experience with secure code review, penetration testing, and common security tools.
  • Experience improving platform security practices within AWS infrastructure stack.
  • Strong understanding and experience with common application security flaws, security controls, and common security libraries in languages like Python and Javascript.
  • Experience identifying security issues in applications through code review, threat modeling, and penetration testing, manually and with tools.
  • Experience designing, implementing, and deploying production-quality systems.

    • Extracurriculars (Nice to Haves):
  • ​​Experience with containerization technology, CI/CD, and other general SRE skills
  • Experience partnering with cross-functional engineering and product teams and advising product teams on how to address a broad set of security and privacy challenges
  • Experience with native mobile application security 
    • A little about us:  
    We are well funded and have an experienced team. Work with the creators & leads of Google Calendar, Picasa, Maps, Facebook Platform, and Twitter.
    We care about building a diverse and inclusive team to better advocate for the needs of our incredibly diverse K-12 users.
    We prioritize work-life balance and actually walk the walk -- we care a lot about our work, but care more about our friends and family.  We encourage everyone to work at a sustainable pace and have an unlimited vacation policy that people actually use.
    We offer competitive compensation and comprehensive benefits including full medical, dental, and vision coverage, 401(k) with company match, paid parental leave, flexible vacation policy, free lunch, wellness stipend, and charitable donation match.


    #LI-CR1
    #LI-Remore

    Don't let the confidence gap get in the way of applying! We'd love to hear from you.

    Seesaw provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, religious creed, color, sex, sex stereotype, gender, gender identity/gender expression/transgender, national origin, ancestry, physical or mental disability, medical condition, genetic information/characteristics, marital status/registered domestic partner status, age, sexual orientation, or military or veteran status. In addition to federal law requirements, Seesaw complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!