RemoteLeaf Logo
Log in Sign up

Senior Security Engineer

1 month, 2 weeks ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Burp Suite C# Metasploit Nmap OAuth OpenID Connect Penetration Testing SAML TypeScript
Apply Now
Bitwarden

Bitwarden

Bitwarden is a trusted password manager that provides secure password generation, storage, and sharing for individuals and businesses. With zero-knowledge, end-to-end encryption, Bitwarden offers open-source solutions for managing sensitive information...

Internet Software & Services
51-250
Founded 2015
$100M raised
View All Jobs 8

Description

  • Research emerging threats across the surface web, dark web, and deep web.
  • Build threat models, conduct threat hunts, and plan and execute purple team engagements.
  • Coordinate internal red team testing operations that emulate threat actors.
  • Collaborate with application developers, platform engineers, and SOC engineers to improve offensive and defensive security controls.
  • Conduct vulnerability testing, analysis, incident response, and investigation support.
  • Test web, mobile, CLI, and desktop application security across Bitwarden’s products, APIs, serverless functions, and databases.
  • Participate in code reviews and share technical security knowledge across teams.
  • Coordinate technical validation and leadership review of purple team reports and remediation priorities.
  • Conduct internal penetration tests on systems and networks to identify realistic threat vectors.
  • Manage software tools for code scanning, vulnerability identification, and findings reporting.
  • Communicate findings, attack paths, and recommendations to stakeholders.
  • Train others on adversary simulation tactics and procedures.
  • Stay current on security trends, publications, advisories, new technologies, and vendor security analysis.

Requirements

  • Experience with penetration testing tools such as Burp Suite, Nmap, Nessus, Metasploit, Kali Linux, SQLMap, OWASP ZAP, and manual testing tools.
  • In-depth knowledge of vulnerability management tools and strategies.
  • In-depth understanding of application security testing technologies is a plus.
  • Understanding of authentication concepts including OpenID Connect, SAML, OAuth, and SSO flows.
  • Strong working knowledge of vulnerability management tools, data security technologies, and network security technologies.
  • Collaborative and adaptable mindset.
  • Excellent communication skills and the ability to explain findings clearly.
  • Strong problem-solving skills and the ability to find and communicate solutions.
  • Ability to maintain discretion, handle sensitive information, and follow security best practices.
  • Interest in open source, better internet security, and staying current on security trends and new technologies.
  • Experience with C# and TypeScript, the core languages used to build the Bitwarden platform, is preferred.
  • Experience in SecOps and applying security best practices across an organization is preferred.
  • Experience working in cloud-focused environments is preferred.
  • Must be located in the U.S.
  • No visa sponsorship is available at this time.

Benefits

  • Starting base compensation range of $140,000 to $180,000 in the United States.
  • Remote-first role with an all-remote team.
  • Opportunity to work with a diverse and supportive team across the world.
  • Exposure to security and open source software in a growing market.
  • Professional growth in a fast-growing startup.
  • Access to benefits listed on Bitwarden’s careers page.
  • Purpose-driven work supporting a more secure internet experience.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

INflow Federal

DevSecOps Engineer

INflow Federal 51-250 Aerospace & Defense

INflow Federal is seeking a fully remote DevSecOps Engineer to support an enterprise case management solution for Department of Defense mission partners by securing and automating cloud-based CI/CD and infrastructure operations in AWS GovCloud.

United States Full-time Senior DevOps Engineer Security Engineer
Agile AWS Bash CI/CD CloudFormation Docker ELK Stack Git GitLab CI Helm Jenkins Kubernetes PowerShell Prometheus Python Terraform
1 hour, 56 minutes ago
Klaviyo

Lead Security Engineer, Enterprise Security

Klaviyo 1K-5K IT Services

Klaviyo is hiring a Lead Security Engineer to secure its corporate systems and platforms across SaaS, identity, endpoints, Zero Trust networking, and perimeter security.

United States Full-time Lead Security Engineer
$175k-$263k
AWS Azure Cloudflare CrowdStrike GCP OAuth Secrets Management Terraform Vercel
2 hours, 37 minutes ago
Anduril Industries

Senior Detection and Response Engineer

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Senior Detection and Response Engineer to build and operate defensive security controls that protect the infrastructure supporting its defense technology products.

United States Full-time Senior Security Engineer
$166k-$220k
AWS Azure CI/CD CloudFormation Docker GitHub Go Kubernetes Network Security Python Rust SQL Terraform
4 hours, 17 minutes ago
Klaviyo

Lead Security Engineer, Enterprise Security

Klaviyo 1K-5K IT Services

Klaviyo is hiring a Lead Security Engineer to secure its corporate systems and platforms across SaaS, identity, endpoints, Zero Trust networking, and perimeter defenses in a hands-on technical leadership role.

United States Full-time Lead Security Engineer
$175k-$263k
AWS Azure Cloudflare CrowdStrike GCP OAuth OpenID Connect Secrets Management Terraform Vercel
4 hours, 50 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers