RemoteLeaf Logo
Log in Sign up

Senior Security Engineer

2 months ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Burp Suite C# Metasploit Nmap OAuth OpenID Connect Penetration Testing SAML TypeScript
Apply Now
Bitwarden

Bitwarden

Bitwarden is a trusted password manager that provides secure password generation, storage, and sharing for individuals and businesses. With zero-knowledge, end-to-end encryption, Bitwarden offers open-source solutions for managing sensitive information...

Internet Software & Services
51-250
Founded 2015
$100M raised
View All Jobs 6

Description

  • Research emerging threats across the surface web, dark web, and deep web.
  • Build threat models, conduct threat hunts, and plan and execute purple team engagements.
  • Coordinate internal red team testing operations that emulate threat actors.
  • Collaborate with application developers, platform engineers, and SOC engineers to improve offensive and defensive security controls.
  • Conduct vulnerability testing, analysis, incident response, and investigation support.
  • Test web, mobile, CLI, and desktop application security across Bitwarden’s products, APIs, serverless functions, and databases.
  • Participate in code reviews and share technical security knowledge across teams.
  • Coordinate technical validation and leadership review of purple team reports and remediation priorities.
  • Conduct internal penetration tests on systems and networks to identify realistic threat vectors.
  • Manage software tools for code scanning, vulnerability identification, and findings reporting.
  • Communicate findings, attack paths, and recommendations to stakeholders.
  • Train others on adversary simulation tactics and procedures.
  • Stay current on security trends, publications, advisories, new technologies, and vendor security analysis.

Requirements

  • Experience with penetration testing tools such as Burp Suite, Nmap, Nessus, Metasploit, Kali Linux, SQLMap, OWASP ZAP, and manual testing tools.
  • In-depth knowledge of vulnerability management tools and strategies.
  • In-depth understanding of application security testing technologies is a plus.
  • Understanding of authentication concepts including OpenID Connect, SAML, OAuth, and SSO flows.
  • Strong working knowledge of vulnerability management tools, data security technologies, and network security technologies.
  • Collaborative and adaptable mindset.
  • Excellent communication skills and the ability to explain findings clearly.
  • Strong problem-solving skills and the ability to find and communicate solutions.
  • Ability to maintain discretion, handle sensitive information, and follow security best practices.
  • Interest in open source, better internet security, and staying current on security trends and new technologies.
  • Experience with C# and TypeScript, the core languages used to build the Bitwarden platform, is preferred.
  • Experience in SecOps and applying security best practices across an organization is preferred.
  • Experience working in cloud-focused environments is preferred.
  • Must be located in the U.S.
  • No visa sponsorship is available at this time.

Benefits

  • Starting base compensation range of $140,000 to $180,000 in the United States.
  • Remote-first role with an all-remote team.
  • Opportunity to work with a diverse and supportive team across the world.
  • Exposure to security and open source software in a growing market.
  • Professional growth in a fast-growing startup.
  • Access to benefits listed on Bitwarden’s careers page.
  • Purpose-driven work supporting a more secure internet experience.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
8 hours, 11 minutes ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
8 hours, 26 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
8 hours, 26 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
8 hours, 56 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers