Staff Security Engineer

1 Month ago • 7 Years + • Cyber Security

About the job

Job Description

As a Staff Security Engineer at Attentive, you will be responsible for securing the company's platform and customer-facing products. You will build and operate security tools, lead the product and application security program, and provide security testing and guidance for new systems and features. You will collaborate with other security professionals to shape the future of Attentive's security program. The ideal candidate will have 7+ years of experience in application/product security, be proficient in web technologies and cloud security, and have a strong understanding of common security threats and attack techniques. You will also need to be comfortable with coding and code reviews in Java, Python, and Golang.
Must have:
  • 7+ years of experience in application/product security
  • Expertise in web technologies
  • Strong understanding of cloud security
  • Proven ability to build and automate security processes
  • Extensive knowledge of application and network protocols
  • Strong coding and code review experience in Java, Python, and Golang
  • Experience with AWS and deploying infrastructure as code
Good to have:
  • Experience with Kubernetes/container security
  • Experience with penetration testing
Perks:
  • Competitive salary and equity
  • Health & wellness benefits
  • Opportunity to work with leading brands
Not hearing back from companies?
Unlock the secrets to a successful job application and accelerate your journey to your next opportunity.
At Attentive, we're revolutionizing the way businesses connect with their customers. Our AI-driven marketing platform infuses intelligence into every stage of the consumer journey, helping brands deliver hyper-personalized messages at scale. With a mobile-first approach, engaging two-way conversations, and enterprise-grade technology, we're driving billions in online revenue for leading brands worldwide, including CB2, Urban Outfitters, GUESS, Long John Silver’s, and Wyndham Resort. But we're not just about SMS and email—by expanding our AI capabilities to enhance multiple products and channels, our goal is to help make every interaction more meaningful. As a member of our team, you'll be at the forefront of this innovation, helping to shape the future of customer communication.

Attentive’s growth has been recognized by Deloitte’s Fast 500Linkedin’s Top Startups and Forbes Cloud 100 all thanks to the hard work from our global employees!

Who we are
We are seeking an experienced and adaptable security engineer with strong technical skills and a developer mindset. The ideal candidate is motivated to reduce risk while enabling the business to operate swiftly and safely.

As a key member of the Security Engineering team, you will be responsible for securing Attentive’s platform (operating in AWS) and customer-facing products (primarily built with Java microservices). Your role will encompass building and operating tools to secure our code, detect abnormal behaviors, and provide security testing and guidance for new systems and features.

You will lead our product and application security program, serving as a central resource for enhancing product security for our clients. Collaborating with a talented team of security professionals, you will help shape the future of Attentive’s security program and create a positive impact for the company and its customers.

At Attentive, we strive to make interactions with our security team seamless and enjoyable. Therefore, the ideal candidate should possess: A creative and solution-oriented mindset to develop effective solutions for all stakeholders. Patience to understand developer teams' processes and goals for implementing thoughtful security measures. The ability to automate security processes to minimize the security burden on partner teams and support rapid company growth.

Why Attentive needs you

    • Architecture Design & Code Reviews: Conduct secure design and code reviews for new systems and features, identifying common vulnerabilities such as injection attacks and cross-site scripting (XSS)
    • Automation & Tooling: Develop and implement security tools for code scanning, dependency management, and CI/CD pipeline integration to protect systems throughout the development lifecycle
    • Engineering Support: Provide hands-on support to engineers in deploying security solutions, hardening services, and remediating vulnerabilities, including encryption and input validation
    • Threat Modeling: Lead the creation of comprehensive threat models for products and infrastructure to identify, assess, and mitigate security risks
    • Vulnerability Management: Establish and oversee a vulnerability management lifecycle, ensuring timely detection, reporting, and remediation of security vulnerabilities
    • Security Guidance & Documentation: Promote secure coding practices and maintain security documentation, including reports from penetration testing and product security tools

About you

    • 7+ years of experience in application/product security, with expertise in web technologies, vulnerability identification and remediation, and cloud security fundamentals
    • Proven ability to build and automate processes, such as static code analysis, enhancing code shipping practices beyond mere compliance
    • Extensive knowledge of application and network protocols, cryptography, authentication and authorization protocols, as well as common security threats and attack techniques
    • Strong coding and code review experience in Java, Python, and Golang, with a focus on Java vulnerabilities and Kubernetes/container security
    • Experience with AWS and deploying infrastructure as code
    • Skilled at communicating complex technical concepts and risks to non-technical audiences
You'll get competitive perks and benefits, from health & wellness to equity, to help you bring your best self to work.

For US based applicants:
- The US base salary range for this full-time position is $200,000 - $270,000 annually + equity + benefits
- Our salary ranges are determined by role, level and location

#LI-SK1

Attentive Company Values
Default to Action - Move swiftly and with purpose
Be One Unstoppable Team - Rally as each other’s champions
Champion the Customer - Our success is defined by our customers' success
Act Like an Owner - Take responsibility for Attentive’s success

Learn more about AWAKE, Attentive’s collective of employee resource groups.

If you do not meet all the requirements listed here, we still encourage you to apply! No job description is perfect, and we may also have another opportunity that closely matches your skills and experience.

At Attentive, we know that our Company's strength lies in the diversity of our employees. Attentive is an Equal Opportunity Employer and we welcome applicants from all backgrounds. Our policy is to provide equal employment opportunities for all employees, applicants and covered individuals regardless of protected characteristics. We prioritize and maintain a fair, inclusive and equitable workplace free from discrimination, harassment, and retaliation. Attentive is also committed to providing reasonable accommodations for candidates with disabilities. If you need any assistance or reasonable accommodations, please let your recruiter know. 
View Full Job Description
$200.0K - $270.0K/yr (Outscal est.)
$235.0K/yr avg.
United States

Add your resume

80%

Upload your resume, increase your shortlisting chances by 80%

About The Company

United States (On-Site)

Sydney, New South Wales, Australia (Hybrid)

United States (Remote)

Sydney, New South Wales, Australia (Hybrid)

United States (Remote)

United States (Remote)

London, England, United Kingdom (Hybrid)

United States (Remote)

View All Jobs

Get notified when new jobs are added by Attentive

Similar Skill Jobs

NBC universal - Cyber Systems Architect (Identity)

NBC universal, United States (Remote)

Luxoft - Senior IT Recruiter India

Luxoft, India (On-Site)

Hitachi - Quality Analyst

Hitachi, India (On-Site)

Meta - Integrity Science Engineer

Meta, United States (Remote)

Next Level Business Services - Java Developer

Next Level Business Services, United States (On-Site)

ComeOn Group - Data Engineering Lead

ComeOn Group, Gibraltar (Hybrid)

Get notifed when new similar jobs are uploaded

Jobs in United States

Barbaricum - Senior Operations Research Analyst Trainer

Barbaricum, United States (On-Site)

The Walt Disney Company - VP, Contact Centers

The Walt Disney Company, United States (On-Site)

Buckman - Solutions Engineer - Pulp

Buckman, United States (On-Site)

Trend Micro - Inside Regional Account Manager

Trend Micro, United States (Hybrid)

Tried and True Media - Direct Response Copywriter-Producer

Tried and True Media, United States (Remote)

Infoblox - Senior Partner Account Manager II - DMR

Infoblox, United States (On-Site)

Scale AI - Software Engineer - New Grad

Scale AI, United States (On-Site)

WebFX - Jr. Digital Project Specialist

WebFX, United States (On-Site)

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Get notifed when new similar jobs are uploaded