Jobs
>
Sunnyvale

    Sr. Application Security Engineer - Sunnyvale, United States - 23andMe

    23andMe
    23andMe Sunnyvale, United States

    1 week ago

    Default job background
    Description
    23andMe is looking for an experienced Senior Application Security Engineer (Web & Mobile) to join our Appsec team.

    You will be leveraging your experience and expertise with security tools and industry best practices to secure our customer data and corporate assets.

    You will bring hands-on experience with improving the security of software development workflows, finding vulnerabilities, and working with development teams to remediate issues.

    Our team's purpose is to educate, automate, and build guardrails that enable developers to build secure software.

    Who We Are
    Since 2006, 23andMe's mission has been to help people access, understand, and benefit from the human genome.

    We are a group of passionate individuals pushing the boundaries of what's possible to help turn genetic insight into better health and personal understanding.

    What You'll Do


    Work cross functionally with our engineering and developer productivity teams to build good patterns and find solutions for security issues found internally and externally in our web and mobile applications.

    Help build out secure CI/CD tools and integrations for code analysis to find common issues.

    We are working on a security stage in our continuous integration pipeline for all 23andMe software projects to scan for secrets, code vulnerabilities, license issues, as well as lint Dockerfile and CloudFormation templates, and other code quality issues.

    We need your help to make this amazing and to ensure we have it deployed consistently across all our projects.

    Develop technical solutions and libraries for secure implementation of commonly used functionality across applications.
    Triage findings from coordinated disclosure and bug bounty programs.
    Assist in developing a secure coding training program for developers.

    Provide security researchers a great experience by using your relationships with our product developers to help them prioritize and fix critical issues in a timely fashion.

    What You'll Bring

    A minimum of 5+ years of experience as an application security engineer or as a pentester.
    Experience with auditing mobile apps for security issues. These apps are primarily written in Swift and Kotlin.
    Comfort performing code review in Python, JavaScript, Go, and PHP, and experience working with Django and React.
    Experience writing safe code.

    Note:
    Ability to work from 23andMe's office in Sunnyvale, CA a minimum of 3 days per week

    Strongly Preferred

    Ability to perform manual code reviews of sensitive applications and infrastructure. This includes customer-facing webapps and mobile apps, as well as apps built for internal use
    SAST deployment and integration experience
    Ability to perform manual web app pentests using tools such as Burp Suite
    Experience using/securing containerized workloads
    Bonus experience finding misconfigured cryptography and designing PKI solutions
    AWS experience
    Comfort performing code review in python and JS
    Experience reading/writing swift/kotlin/go/php
    Experience working with django and react

    About Us

    23andMe, headquartered in Sunnyvale, CA, is a leading consumer genetics and research company. Founded in 2006, the company's mission is to help people access, understand, and benefit from the human genome.

    23andMe has pioneered direct access to genetic information as the only company with multiple FDA authorizations for genetic health risk reports.

    The company has created the world's largest crowdsourced platform for genetic research, with 80 percent of its customers electing to participate.

    The platform also powers the 23andMe Therapeutics group, currently pursuing drug discovery programs rooted in human genetics across a spectrum of disease areas, including oncology, respiratory, and cardiovascular diseases, in addition to other therapeutic areas.

    More information is available at

    At 23andMe, we value a diverse, inclusive workforce and we provide equal employment opportunity for all applicants and employees.

    All qualified applicants for employment will be considered without regard to an individual's race, color, sex, gender identity, gender expression, religion, age, national origin or ancestry, citizenship, physical or mental disability, medical condition, family care status, marital status, domestic partner status, sexual orientation, genetic information, military or veteran status, or any other basis protected by federal, state or local laws.

    If you are unable to submit your application because of incompatible assistive technology or a disability, please contact us at .

    23andMe will reasonably accommodate qualified individuals with disabilities to the extent required by applicable law.


    Please note: 23andMe does not accept agency resumes and we are not responsible for any fees related to unsolicited resumes.

    Thank you.%3242014% %%techsoftware%%
  • NovaWorks Solutions

    IT - Security Engineer (m/w/d) translates to IT - Security Engineer (male/female/diverse)

    1 week ago

    NovaWorks Solutions Valley View, United States

    We are an expanding medium-sized family business with an international focus and a well-known manufacturer of branded products for hair, skin, and oral care. · We are looking for you to join our team as soon as possible as an · IT Security Engineer (m/f/d) · APCT1_DE · ...

  • NTS Netzwerk Telekom Service AG

    Senior Security Engineer

    2 weeks ago

    NTS Netzwerk Telekom Service AG Palo Alto, CA, United States

    In der ausgeschriebenen Position verstärkst du eines unserer Customer Core Teams und verantwortest vor und während der Regelbetriebsphase ganzheitlich die IT-Services exklusiv für einen zentralen und globalen Kunden der NTS. Du entwickelst in dieser spannenden Position unsere eig ...

  • WorldLink

    Security Engineer

    4 days ago

    WorldLink Mountain View, United States

    Job Description · TITLE: Security Engineer - FIPS/CC (Mobile Devices) · POSITION TYPE: Full Time (W2) · LOCATION: Mountain View, CA · ABOUT WorldLink: · WorldLink is a rapidly growing information technology company at the forefront of the tech transformation. From custom sof ...

  • Illumio

    Director of Security Engineering, Information Security

    1 week ago

    Illumio Sunnyvale, United States

    No Agency Submissions Accepted. · About the Team: · The Office of the CTO and Security team sets the strategic technical direction of the company while keeping both Illumio and our customers secure. Those who join us represent the leader in Zero Trust Segmentation and maintain ...

  • Amazon

    Security Engineer, Stores Application Security

    1 week ago

    Amazon Sunnyvale, United States

    · In Amazon Stores, we ship some of the widest arrays of technology found at any company. From to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's larges ...

  • META

    Software Engineer, Security

    2 weeks ago

    META Sunnyvale, United States

    Reality Labs' mission is to give people the tools to feel connected anytime, anywhere. We create new, category-defining consumer hardware and software that are immersive, social, and increase the depth of people's connections. The team is a diverse group of problem solvers, inven ...

  • TEKsystems

    Security Engineer

    1 week ago

    TEKsystems Santa Clara, United States

    Open to new opportunities? Join this leader in electronics and semiconductor manufacturing as an Email Security Engineer Hybrid to Santa Clara, Ca · Description: · • The security engineer is part of the security group responsible for developing and implementing security projects ...

  • Nuro

    Senior Security Engineer

    1 week ago

    Nuro Mountain View, United States

    Who We Are · Nuro exists to better everyday life through robotics. The company's custom electric autonomous vehicles are designed to bring the things you need—from produce to prescriptions—right to your home. Nuro's autonomous, goods-focused solution can give you valuable time b ...

  • Kodiak Robotics

    Senior Security Engineer

    2 days ago

    Kodiak Robotics Mountain View, United States

    Kodiak was founded in April 2018 to develop autonomous technology that carries freight forward—so people, partners, and the planet thrive. Navigating highway environments presents vastly different challenges than urban streets. Kodiak's experienced team has developed the industry ...

  • Talent Software Services

    Cyber Security Engineer

    2 weeks ago

    Talent Software Services Mountain View, United States

    IMPORTANT INFORMATION:Role: Cyber Security EngineerWork Location: Mountain View,California · JOB DESCRIPTION:Support the implementation of Cybersecurity Best Practices and security requirements. · • Provide subject matter expertise in scoping and architecture of security initiat ...

  • 23andMe

    Sr. Application Security Engineer

    11 hours ago

    23andMe Sunnyvale, United States

    23andMe is looking for an experienced Senior Application Security Engineer (Web & Mobile) to join our Appsec team. You will be leveraging your experience and expertise with security tools and industry best practices to secure our customer data and corporate assets. You will bring ...

  • Ampcus

    Cyber Security Engineer

    2 weeks ago

    Ampcus Mountain View, United States

    Need R2D · Possible 3 Month CTH | No Fees | Do Not Re-Post | ConfidentialSubmit candidates under their legal name and use only Capgemini template · IMPORTANT INFORMATION: · Role: Cyber Security Engineer · Work Location: Mountain View,California · Please send it with this inf ...

  • Applied Intuition

    Enterprise Security Engineer

    6 days ago

    Applied Intuition Mountain View, United States

    About Applied Intuition · Applied Intuition is a Tier 1 vehicle software supplier that accelerates the adoption of safe and intelligent machines worldwide. Founded in 2017, Applied Intuition delivers the definitive ADAS/AD toolchain and a world-class vehicle platform to help cus ...

  • Better Help

    Information Security Engineer

    5 days ago

    Better Help Mountain View, United States

    Mountain View, California, United States · BetterHelp · Get matched easily with a licensed, board-accredited counselor today. More than 27000 therapists with 235 million+ counseling sessions are ready to help you · View company page · BetterHelp is on a mission to remove the ...

  • Didactum Groep

    Netwerk en Security Engineer

    5 days ago

    Didactum Groep Palo Alto, United States

    Wat ga je doen? · Als Netwerk & Security Engineer ben je de specialist op het gebied van netwerken en security. Het type werk is afhankelijk van je kennis en ambities. Je kunt je richten op projecten, beheer, je ontwikkelen richting architectuur of je rol combineren met het geven ...

  • Fortinet

    Principal Product Security Engineer

    1 week ago

    Fortinet Sunnyvale, United States

    Job Description · The Product Security Incident Response Team is looking for a Product Security Engineer, to handle Product Security related incidents, and to perform vulnerability research on Fortinet products. · The ideal candidate will have experience in reviewing and auditi ...

  • 23andMe

    Sr. Application Security Engineer

    6 days ago

    23andMe Sunnyvale, United States

    23andMe is looking for an experienced Senior Application Security Engineer (Web & Mobile) to join our Appsec team. You will be leveraging your experience and expertise with security tools and industry best practices to secure our customer data and corporate assets. You will bring ...

  • Fortinet

    Principal Product Security Engineer

    1 week ago

    Fortinet Sunnyvale, United States

    Job Description · The Product Security Incident Response Team is looking for a Product Security Engineer, to handle Product Security related incidents, and to perform vulnerability research on Fortinet products. · The ideal candidate will have experience in reviewing and auditi ...

  • 23andMe

    Sr. Application Security Engineer

    2 days ago

    23andMe Sunnyvale, United States

    23andMe is looking for an experienced Senior Application Security Engineer (Web & Mobile) to join our Appsec team. · If you are interested in applying for this job, please make sure you meet the following requirements as listed below. · You will be leveraging your experience an ...

  • Fortinet

    Principal Product Security Engineer

    2 weeks ago

    Fortinet Sunnyvale, United States

    The Product Security Incident Response Team is looking for a Product Security Engineer, to handle Product Security related incidents, and to perform vulnerability research on Fortinet products. · The ideal candidate will have experience in reviewing and auditing large possible i ...