- Perform security-focused code reviews and own the vulnerability management process
- Support and consult with Worldcoin teams in the area of application security, including threat modeling and security reviews
- Grow and develop the secure application design process
- Assist teams in reproducing, triaging, and addressing application security vulnerabilities discovered by internal tools and our bug bounty program.
- Grow and develop the bug bounty program.
- Assist in development of security processes and automated tooling that prevent classes of security issues.
- 6+ years of technical experience with at least 3 years of experience leading efforts in ApplicationSecurity.
- Experience in Programming languages such as Python, Go, and Rust
- Experience with Application Security Testing Tools such as SAST, DAST, IAST or SCA.
- Familiarity with OWASP Top 10 and other Secure Development Life Cycle practices.
- Familiarity with AWS architecture/ecosystem.
- Familiarity with API security
- Code review experience
- Container security experience
- Experience automating services/tools
- Experience leading threat modeling sessions with developers
- Application security architect and design experience
- Experience as a Security Champion
- Experience with Kubernetes and AWS EKS
- Familiarity with how containers work and how to secure containers.
- One or more of the following AWS certifications: AWS Certified Solutions Architect, AWS Certified Security - Specialty, AWS Certified Developer
- One or more of the following certifications: CISSP, GWAPT, GPEN, CEH, CSSLP, and Sec+.
-
Security Engineer
3 weeks ago
HeyGen San Francisco, United StatesAbout HeyGen · HeyGen is a cutting-edge AI-powered platform revolutionizing the world of video creation. · Position Summary: · As a Security Engineer at HeyGen, you will play a critical role in protecting our systems and data from threats. Your expertise will be essential in i ...
-
Security Engineer
3 weeks ago
Commit Partnership San Francisco, United StatesAbout the company: Company size: <50 · Industry: Data Analytics, Data Science, AI · Founding year: 2019 · Stage: B · Funding: $100M · Backed by: Top-tier investors including Sequoia Capital, Andreessen Horowitz, and Snowflake · Tech Stack/Key Tech: Kubernetes, AWS, Terrafor ...
-
Security Engineer
3 weeks ago
ShiftCode Analytics San Francisco, United StatesInterview : Video · Visa : All apart from H1b and CPT · This is hybrid from day-1. Candidate must be local. · Description : · Qualifications: · 4+ years of security engineering experience OR equivalent experience in a SWE/DevOps role and an interest in working on security en ...
-
Security Engineer
3 weeks ago
HonorVet Technologies San Francisco, United StatesTitle: Security Engineer · Location: Remote · Duration: 12+ months · Position Description · A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy developmen ...
-
Security Engineers
1 week ago
NCC Group (Americas), Inc San Francisco, United StatesSecurity Engineers · Company: NCC Group (Americas), Inc · Location: San Francisco, CA · Position Type: Full Time · Experience: 1 year · Education: MS · NCC Group (Americas), Inc. seeks Security Engineers w/MS and min. 1 yr experience sought for positions in San Francisco. Salary ...
-
Security Engineer
1 week ago
Hive San Francisco, United StatesAbout Hive · Hive is the leading provider of cloud-based AI solutions to understand, search, and generate content, and is trusted by hundreds of the world's largest and most innovative organizations. The company empowers developers with a portfolio of best-in-class, pre-trained ...
-
Security Engineer
2 weeks ago
HonorVet Technologies San Francisco, United StatesTitle: Security Engineer · Location: Remote · Duration: 12+ months · Position Description · A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development ...
-
Security Engineer
3 weeks ago
Hive San Francisco, CA, United StatesAbout Hive · Hive is the leading provider of cloud-based AI solutions for content understanding, trusted by the world's largest, fastest growing, and most innovative organizations. The company empowers developers with a portfolio of best-in-class, pre-trained AI models, serving ...
-
Security Engineer
2 weeks ago
Innovaccer San Francisco, United StatesYour Role · We are growing rapidly in the US with acquisitions and in the US Government space. We are looking to expand our US security team with talented people. We at Innovaccer are looking for a · Security Engineer-III · who will be responsible for performing real-time moni ...
-
Security Engineer
1 week ago
Asana San Francisco, United StatesWe're looking for a motivated security engineer interested in maturing Asana's product security posture to expand trust with our growing customer base. As a member of the Product Security team, you will focus on shipping features that are free from critical security bugs, enablin ...
-
Security Engineer
2 weeks ago
Retool San Francisco, United States Full timeABOUT RETOOL: · Nearly every company in the world runs on custom software: Gartner estimates that up to 50% of all code is written for internal use. This is the operational software for refunding orders, underwriting loans, onboarding employees, analyzing transactions, and prov ...
-
Security Engineer
1 week ago
Notion, LLC San Francisco, United StatesAbout Us: · We're on a mission to make it possible for every person, team, and company to be able to tailor their software to solve any problem and take on any challenge. Computers may be our most powerful tools, but most of us can't build or modify the software we use on them e ...
-
Security Engineer
3 weeks ago
Anyscale San Francisco, United StatesAbout Anyscale · At Anyscale , we're on a mission to democratize distributed computing and make it accessible to software developers of all skill levels. We're commercializing Ray , a popular open-source project that's creating an ecosystem of libraries for scalable machine lear ...
-
Security Engineer
1 week ago
Retool San Francisco, United StatesABOUT RETOOL: · Nearly every company in the world runs on custom software: Gartner estimates that up to 50% of all code is written for internal use. This is the operational software for refunding orders, underwriting loans, onboarding employees, analyzing transactions, and prov ...
-
Security Engineer
12 minutes ago
Iterable San Francisco, United StatesIterable · The cross channel marketing platform that powers unified customer experiences, and empowers you to create, optimize, and measure every customer interaction. · View company page · Iterable is the top-rated AI-powered customer engagement platform that helps organizati ...
-
Security Engineer
1 week ago
HonorVet Technologies San Francisco, United StatesTitle: Security EngineerLocation: RemoteDuration: 12+ months · Position DescriptionA Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment; is comfortable with bridging the gap between legacy development or opera ...
-
Security Engineer
1 week ago
Russell Tobin San Francisco, United StatesJob Description · Job Description · Job Title: Security Engineer Level V · Job Location: San Francisco, CA · Duration: 11 Months plus · Pay Range: $120/hr-$130/hr on W2 · Duties: · Identify gaps in our infrastructure, and work with business partners to gain visibility throug ...
-
Security Engineer
2 weeks ago
Insight Global San Francisco, United StatesRole: Security EngineerPR: $50 -70/hrLocation: hybrid phx azContract: 12 month contract (possible extensions) · * 2-4 Years of professional experience as a Security Engineer or equivalent position.* Professional experience utilizing Palo Alto.* Professional Experience working wi ...
-
IT Security Engineer
4 weeks ago
Gunderson Dettmer San Francisco, United StatesGunderson Dettmer · is the only business law firm of its kind - exclusively serving the global venture capital and emerging technology marketplace. With 400 attorneys in eleven offices - from Silicon Valley to Singapore - we innovate for innovators, accelerate entrepreneurship, ...
-
Security Engineer
3 weeks ago
Vouch San Francisco, United States[Full Time] Security Engineer at Vouch (United States) | BEAMSTART Jobs · Security Engineer · Vouch United States · Date Posted · 04 Jan, 2023 · Work Location · San Francisco, United States · Salary Offered · $145000 — $165000 yearly · Job Type · Full Time · Experience Required ...
Senior Application Security Engineer - San Francisco, United States - Tools for Humanity
Description
About the Company:Worldcoin ) is an open-source protocol, supported by a global community of developers, individuals, economists and technologists committed to expanding participation in, and access to, the global economy. Its community is united around core beliefs in the inherent worth and equality of every individual, the right to personal privacy, and open and public collaboration. These beliefs are reflected in what the community is building: a public utility to connect everyone to the global economy.
The Worldcoin Foundation (www.worldcoin.foundation) is the protocol's steward and will support and grow the Worldcoin community until it becomes self-sufficient. Tools for Humanity ) is a global hardware and software development company. It helped launch Worldcoin and continues to provide support to the Foundation, in addition to operating the World App.
This opportunity would be with Tools for Humanity.
About the Orb
Worldcoin's launch requires a "Proof-of-Personhood": a way to determine someone is human (not a bot) and hasn't already claimed their free share of Worldcoin. This is why we developed the Orb.
The Orb is an advanced biometric imaging device, custom-designed for Worldcoin's launch. Orbs are deployed to a global network of operators, who use the device to onboard new Worldcoin users. During this onboarding, the Orb generates an encoding of each user's iris and submits it to Worldcoin's backend. For more details on how the Orb is part of Worldcoin's privacy-preserving approach to Proof-of-Personhood, see the Worldcoin whitepaper.
The Orb solves a fierce combination of engineering and UX challenges, centered around image quality, security, and ease-of-use. Each device has an advanced iris imaging system, designed to work consistently across real-world lighting conditions. An additional suite of sensors feeds into an onboard fraud detection system, enabling use in unsecured environments. These systems are combined in a sleek industrial design with a simple, minimalist user interface.
About the Team
For Worldcoin to launch successfully on a global scale, we need to both ensure fairness and build trust with our users. Therefore, it is essential to prevent fraud, protect privacy, and ensure availability.
Beyond regular company security the goal of security at Worldcoin is to deploy an edge device to unsecured environments. We consider a wide range of threats that span tampering with the device, spoofing the device as well as backend attacks. The cross-disciplinary nature of this team requires interfacing with various other teams across the company including Economics, AI, Backend and Orb Software. We are a small security team and you will have a huge impact
About the Opportunity
You will:
Pay transparency statement (for CA and NY based roles):
The reasonably estimated salary for this role at TFH ranges from $236,000 - $323,000, plus a competitive long term incentive package. Actual compensation is based on factors such as the candidate's skills, qualifications, and experience. In addition, TFH offers a wide range of best in class, comprehensive and inclusive employee benefits for this role including healthcare, dental, vision, 401(k) plan and match, life insurance, flexible time off, commuter benefits, professional development stipend and much more