RemoteLeaf Logo
Log in Sign up

Senior Security Engineer

17 hours, 30 minutes ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Burp Suite C# Encryption Metasploit Nmap OAuth OpenID Connect Penetration Testing SAML Serverless TypeScript
Apply Now
Bitwarden

Bitwarden

Bitwarden is a trusted password manager that provides secure password generation, storage, and sharing for individuals and businesses. With zero-knowledge, end-to-end encryption, Bitwarden offers open-source solutions for managing sensitive information...

Internet Software & Services
51-250
Founded 2015
$100M raised
View All Jobs 2

Description

  • Research emerging threats across the surface web, dark web, and deep web to inform testing and defenses.
  • Build threat models, conduct threat hunts, and plan and execute purple team engagements to validate security controls.
  • Coordinate and operate internal red team and penetration testing activities that emulate realistic threat actors.
  • Perform vulnerability testing and analysis across web, mobile, CLI, desktop, APIs, serverless functions, and databases and contribute to remediation efforts.
  • Collaborate with application development, platform, and SOC engineers to improve offensive and defensive security controls and validate fixes.
  • Participate in code reviews, cryptography reviews, and security validation testing to surface and document security issues.
  • Manage and operate software tools for code scanning, vulnerability identification, and finding reporting.
  • Coordinate technical validation and leadership review of purple team reports and effectively communicate findings, attack paths, and remediation recommendations to stakeholders.
  • Support incident response, external inquiry/report response, investigations, and triage of security findings.
  • Train team members on adversary simulation tactics and procedures and help spread security knowledge across the organization.

Requirements

  • Experience conducting purple team activities, penetration tests, threat hunting, and security validation testing for web, mobile, desktop, and API environments.
  • Experience with penetration testing and security tools such as Burp Suite, Nmap, Nessus, Metasploit, Kali Linux, SQLMap, and OWASP ZAP.
  • In-depth knowledge of vulnerability management tools, strategies, and workflows for identifying, tracking, and remediating vulnerabilities.
  • Familiarity with application security testing technologies and experience performing code reviews and cryptography reviews (preferred).
  • Understanding of authentication concepts including OpenID Connect, SAML, OAuth, and SSO flows.
  • Strong working knowledge of data and network security technologies and practices.
  • Proven communication skills, collaborative and adaptable mindset, ability to handle sensitive information with discretion, and strong problem-solving skills.
  • Commitment to staying current with security trends, publications, and adversary tactics.
  • Nice-to-have: Bitwarden user, experience with C# and TypeScript, SecOps experience, and experience working in cloud-focused environments.
  • Must be located in the U.S.; this role is remote and Bitwarden does not offer visa sponsorship; successful candidates will complete a background check.

Benefits

  • Starting base salary range in the U.S.: $140,000 - $180,000 (actual compensation varies by level and experience).
  • All-remote U.S.-based team with the ability to work with motivated and supportive colleagues globally.
  • Opportunities for professional growth: become an expert in security and open source markets and expand technical skills.
  • Mission-driven, open-source community and purpose-focused work contributing to a more secure internet.
  • Supportive, diverse team culture with learning and knowledge-sharing opportunities.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

WorkWave

Cloud Security Engineer

WorkWave 251-1K Professional Services

Cloud Security Engineer at WorkWave within Shared Services Cybersecurity, partnering with Engineering and DevOps to establish resilient, compliant, and automated cloud security foundations across the company’s cloud environments.

United States Full-time Senior Infrastructure Engineer Security Engineer
$120k-$145k
AWS Azure CI/CD HashiCorp Vault Kubernetes Secrets Management Terraform
15 hours, 45 minutes ago
ClickHouse

Cloud Security Engineer

ClickHouse 51-250 IT Services

Security Engineer on ClickHouse’s Security Team responsible for securing cloud infrastructure and services supporting ClickHouse products, with the main objective of implementing scalable security controls, automation, and incident response to reduce risk across AWS, GCP, and Azure environments.

Netherlands Full-time Senior Security Engineer
AWS Azure CI/CD ClickHouse GCP Kubernetes Secrets Management
16 hours ago
GuidePoint Security

Senior Security Engineer (Firewall) - Mid-Atlantic region

GuidePoint Security 251-1K Internet Software & Services

Senior Security Engineer – Firewall Configuration Specialist at GuidePoint Security responsible for designing, deploying, and managing firewall and remote-access configurations to secure enterprise and cloud environments and support ongoing security operations.

United States Full-time Senior Security Engineer
Azure Splunk Terraform
18 hours, 15 minutes ago
ChainGPT

Security Architect - Americas

ChainGPT 11-50 Internet Software & Services

Security Architect at ChainGPT responsible for leading the end-to-end security strategy and implementation for a blockchain-based AI platform to achieve enterprise-grade security, compliance, and operational resilience.

United States Canada Mexico Argentina Brazil Chile Full-time Lead Security Engineer
AWS Azure Blockchain Docker Encryption GCP Go Grafana Kubernetes Penetration Testing Prometheus Python Rust Secrets Management
1 day, 1 hour ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers