Jobs
>
California

    Staff Application Security Engineer - California, United States - Binti Inc

    Binti Inc
    Binti Inc California, United States

    3 weeks ago

    Default job background
    Description
    Binti builds modern software to help every child have a safe, loving, and stable family. Working with county and state governments across 36 states, Binti's tools improve the child welfare system.

    The 500+ agencies using Binti serve about 42% of children in child welfare in the US, and agencies using Binti have increased the number of approved families by an average of 30%, making a real dent in the shortage of foster/adoptive parents for children in the US.

    Beyond helping families foster/adopt children, Binti is launching software to support families who are struggling to get the services they need to stay together with or reunify with their children.

    Binti is a for-profit, mission-driven software company based in Oakland, CA. Investors include Founders Fund, First Round Capital, Kapor Capital, and others. We're a team of 90+ people and growing quickly. We care about creating a workplace where everyone feels welcome and can bring their full self to work.

    We have a huge, ambitious vision to rewire government to be more effective in expanding opportunities for people around the world, and we are looking for mission-driven, high-empathy, high-performance, and low-ego team members to join us on our exciting journey towards that vision.


    OVERVIEW OF ROLE

    As a Staff Application Security Engineer, you will play a critical role in ensuring the security and integrity of our software applications.

    You will work collaboratively with cross-functional teams to identify and address potential security vulnerabilities, implement best practices, and contribute to the development of secure coding standards.


    WHAT YOU WILL DO

    Conduct Security Assessments:


    Provide holistic assessments of Binti's security stance, including performing regular security reviews, code audits, penetration testing, and threat modeling to maintain the highest standard of application security.


    Set Direction:
    Help Binti chart a specific course of action to achieve the security stance we desire.

    This includes scoping and prioritizing work, determining what levels of investment and risk we should take on given our scale and capacity, and building relationships across teams to effectively communicate and advocate for these goals.


    Respond To Incidents :
    Respond promptly to security incidents, collaborate with engineers on-call, and provide detailed post-event analyses. Evaluate the applicability of emergent security concerns through risk rating and assessment (such as OWASP).


    Improve Security Architecture:


    Work with engineering to identify, design, and implement technologies to enhance security automation, both for the software development lifecycle and cloud hosting environments.


    Set Security Standards:


    Lead efforts to design and implement secure coding standards and best practices across the development lifecycle, including automating processes as makes sense to ensure comprehensive coverage.


    Share Expertise:


    Stay up to date on the latest security threats, vulnerabilities, and industry best practices, and ensure the integration of this knowledge into Binti's security strategies.

    Act as our company's expert on application security matters, providing mentorship to development teams and fostering a scalable, security-aware culture.


    TECH STACK
    Ruby on Rails

    Redis

    Postgres, hosted with GCP

    Javascript (React + Node)

    Google Cloud

    Kubernetes

    Pulumi


    SAMPLE PROJECTS
    Review and implement security patches and hotfixes in production applications.

    Implement streamlined feedback of security recommendations for new products before launch into the Binti platform.

    Improve the security of documents and files uploaded and downloaded on the platform.


    Analysis, scoping, and implementation of security improvements to better protect Personal Health Information and Personally Identifiable Information stored within the product.

    Improve notification and escalation of security concerns from third parties (such as security researchers).


    Integration of new and existing logging and alerting systems to centralized and/or decentralized Security Incident and Event Management (SIEM) platforms.

    Assess backlog of application-specific security tickets and provide recommendations for remediation and

    Support evidence collection for compliance frameworks such as SOC 2 Type II and HIPAA.


    WHAT WE LOVE ABOUT YOU

    Technical Expertise:
    Proven experience as an Application Security Engineer or in a similar role. Strong technical background with experience in full-stack development, cloud computing, and scalable architecture. Proficiency in one or more OOP coding languages (Ruby, Python, Java, etc) is strongly preferred.


    Deep Understanding:
    Strong understanding and knowledge of web application security principles, common vulnerabilities, and best practices.


    Collaborative Approach:


    Excellent communication skills with the ability to simply convey complex security concepts to non-technical stakeholders and clearly articulate the relative risks and trade-offs.


    Product Orientation:


    Focused on keeping the company secure while ensuring the team can still ship products and deliver value to customers and users.


    Decisions That Scale:
    Experience cultivating a security-aware development culture that scales through mentorship and automation.


    Passion for Social Impact:


    A genuine interest in leveraging technology to address social challenges, with a strong sense of purpose in improving outcomes for children in need.


    FLEXIBILITY
    We offer flexible scheduling for all team members. Ideal candidates will be open to working a schedule that allows real-time collaboration with the team.

    LOCATION
    This role is open to fully remote candidates authorized to work within the United States.

    If candidates are in the San Francisco Bay Area, we have an office in Oakland and you can work from the office.

    BENEFITS & PERKS
    An above-market compensation package (salary + equity)

    Excellent medical, dental, vision, and life insurance - 99% of insurance premiums covered for you + your dependents

    Flexible vacation time to promote a healthy work-life blend

    13 paid holidays; 11 federally observed holidays (including Juneteenth), plus

    Election Day and the day after Thanksgiving

    16 weeks of paid parental bonding leave for the arrival of a newborn or newly placed infant

    Sick/mental health time separate from vacation days (accrue up to a cap of 160 hours)

    4 weeks of sabbatical after 4 years of service at the company

    401k, Commuter benefits, FSA, and DCSA with administration paid for

    $5,000 annual bonus for employees who volunteer as a


    CASA
    (court-appointed special advocates)

    $2,500 annual reimbursement for ongoing learning and development, with opportunities to attend trainings/conferences, on-site speaker series, and lunch and learns

    $300 reimbursement for virtual home office setup

    $50 a month remote work stipend to cover internet, electricity, home office setup costs or lunch/snacks with coworkers

    Paid jury duty

    At Binti, we celebrate having a diverse team and believe our differences make us stronger. Binti is proud to be an equal-opportunity workplace and is an equal-opportunity employer.

    We welcome all qualified applicants to apply without regard to race, color, religion, gender, sexual orientation, age, national origin, disability, or protected Veteran status.

    #J-18808-Ljbffr
  • Evidation Health

    Staff Security Engineer

    4 days ago

    Evidation Health California, United States

    ** Work from where you are · - considering candidates in San Mateo, Santa Barbara, or US-based remote** · About Evidation · Evidation creates new ways to measure and improve health in everyday life—making proactive, personalized, and truly human-centered healthcare possible. B ...

  • Okx

    Security Operations Engineer

    3 days ago

    Okx California, United States

    Who We Are · OKX is revolutionising world systems through our cutting-edge digital asset exchange, Web3 portal and blockchain ecosystems.We are deeply committed to shaping a fairer, more transparent and accessible society through blockchain technology and to date, we have 50+ mil ...

  • Cyber Crime

    Cyber Security Engineer

    1 week ago

    Cyber Crime California, United States

    The Walt Disney Company · The mission of The Walt Disney Company is to be one of the world's leading producers and providers of entertainment and information. · View company page · Under the direction of the Cyber Security Manager, the Cyber Security Engineer is responsible fo ...

  • The Walt Disney Company

    Cyber Security Engineer

    1 week ago

    The Walt Disney Company California, United States

    Job Description: · Under the direction of the Cyber Security Manager, the Cyber Security Engineer is responsible for maintaining an enterprise-wide information security program to ensure that information assets are adequately protected. This position is responsible for identifyin ...

  • Owasp10

    Security Engineer

    2 weeks ago

    Owasp10 California, United States

    Databook stands at the cutting edge of generative AI, driving a revolution in strategic sales and relationship management with our groundbreaking innovation, DatabookGPT. DatabookGPT represents a significant leap forward, building on the success of our Strategic Relationship Mana ...

  • Bugcrowd

    Security Engineer

    1 week ago

    Bugcrowd California, United States

    Company Summary · Bugcrowd is the world's #1 crowdsourced security company. Our award-winning platform combines actionable, contextual intelligence with the skill and experience of the world's most elite hackers to help leading organizations solve security challenges, protect cu ...

  • ActioNet

    Information System Security Engineer

    4 days ago

    ActioNet California, United States

    Information System Security Engineer (ISSE) · | · Req#3380 · ActioNet has an opportunity for an · Information System Security Engineer (ISSE) · requiring a · Secret clearance · located in San Diego County, CA.. ActioNet is an IT service provider and solutions integrator he ...

  • Databricks

    Sr. Security Detection Engineer

    1 day ago

    Databricks California, United States

    While candidates in the listed locations are encouraged for this role, we are open to remote candidates in other locations. · RDQ125R45 · The Detection & Response team's mission is to protect Databricks products, cloud infrastructure, endpoints and employees from security threa ...

  • hims & hers

    Senior Security Engineer, Product

    2 hours ago

    hims & hers California, United States

    About the Role: · As a Senior Security Engineer, you will be a thought leader in the Security Team focused on helping design, implement, and mature innovative and cutting-edge security capabilities. Senior Security Engineer ensures defense-in-depth, provides hands-on technical le ...

  • Cencora

    Information Security Engineer I

    6 days ago

    Cencora California, United States

    Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join ...

  • Light & Wonder, Inc

    Sr. Advanced Information Security Engineer

    1 week ago

    Light & Wonder, Inc California, United States

    Sr. Advanced Information Security Engineer page is loaded · Sr. Advanced Information Security Engineer · Apply · locations · California, US · time type · Full time · posted on · Posted 30+ Days Ago · job requisition id · R315793 · Corporate: · Light & Wonder's corpora ...

  • Unbabel Inc

    Lead Security Engineer Engineering Lisbon Hybrid Remote

    4 days ago

    Unbabel Inc California, United States

    About Unbabel · The company's language operations platform blends advanced artificial intelligence with human editors, for fast, efficient, high-quality translations that get smarter over time. Unbabel integrates seamlessly in any channel so that agents can deliver consistent mu ...

  • Upwind Security, Inc.

    Junior Security Engineer

    3 weeks ago

    Upwind Security, Inc. California, United States

    Upwind is a place where · opportunities · happen · At Upwind, we are a team of hands-on, problem solvers and doers. · We believe in empowering organizations to run their cloud environments securely and efficiently to accelerate their businesses. · Working at Upwind is an exhil ...

  • San Francisco Bay Area Rapid Transit District (BART)

    Cyber Security Engineer

    3 weeks ago

    San Francisco Bay Area Rapid Transit District (BART) California, United States

    Pay Rate · Non-Represented Pay Band E07 · Annual Salary: $113, Minimum) - $172, Maximum) · The negotiable starting salary offer will be between $113,621.00/annually - $164,346.25/annually, commensurate with education and experience. · Reports To · Manager of Cyber Security · ...

  • Infojini

    Network Security Engineer

    3 weeks ago

    Infojini California, United States

    Job Title: Network Administrator (ITS Administrator, Sr.) · Location: Orange, 92868 California · Duration: Full time · Work Arrangement: Partial Telework-2 days in office (Tues/Thurs) · Description: · Client is seeking a highly motivated and experienced Network Administrator (ITS ...

  • Cisco

    Principal Engineer, Product Security

    3 weeks ago

    Cisco California, United States

    Principal Engineer, Product Security - Meraki · Location: · Area of Interest · Compensation Range · 219700 USD USD · Job Type · Professional · Cloud and Data Center · Job Id · 1414815 · At Cisco Meraki, we know that technology can connect, empower, and drive us. Our mission is t ...

  • Raso360

    Senior Application Security Engineer

    3 weeks ago

    Raso360 California, United States

    The company is the leader in transforming diabetes care and management by providing CGM technology to help patients and healthcare professionals better manage diabetes. The company reported full-year 2022 revenues of $2.9B, a growth of 18% over 2021. Headquartered in San Diego, C ...

  • ComforceHealth

    Mobile Application Security Engineer

    2 weeks ago

    ComforceHealth California, United States

    Mobile Application Security Engineer · - Information Technology · Job ID: · REMOTE , · California · Job Type: · Contract · Added - 08/07/23 · Job Description · Innova Solutions is immediately hiring for a · Mobile Applications Security Engineer - · Penetration · Positi ...

  • Booz Allen Hamilton

    Cyber Security Engineer, Senior

    2 weeks ago

    Booz Allen Hamilton California, United States

    Are you looking for an opportunity to combine your te chn ical skills with big picture thi nk ing to make an impact in the DoD? You understand your customer's environment and how to develop the right systems for their mission. Your ability to translate real-world needs into te ch ...

  • Rocket Lab

    Senior Cloud Security Engineer

    1 week ago

    Rocket Lab California, United States

    IT · Rocket Lab's IT team is responsible for how our global teams access information and run operations across our computer systems, networks, and devices. Our hardworking IT team is a group of flexible problem-solvers working in a fast-paced environment but who also thrive unde ...