RemoteLeaf Logo
Log in Sign up

Security Engineer, Application Security

2 hours ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
Android C C++ Go iOS JavaScript Kotlin macOS Objective-C Python Ruby Rust Swift TypeScript
Apply Now
Trail of Bits

Trail of Bits

Trail of Bits is a leading company specializing in computer and network security. Since 2012, they have been helping secure the world's most targeted organizations and products by combining high-end security research with a real-world attacker mentalit...

Internet Software & Services
51-250
Founded 2012
View All Jobs 5

Description

  • Conduct comprehensive low-level security assessments of client software, including vulnerabilities in system services, access controls, inter-process communication, and platform security controls.
  • Analyze application code to identify vulnerabilities and develop mitigation strategies.
  • Design and implement custom security tools for automated vulnerability detection and security testing.
  • Perform detailed architecture reviews and threat modeling of complex software systems and cloud environments.
  • Assess privilege escalation paths and security boundaries in complex systems.
  • Review application infrastructure, architecture, data flows, authentication mechanisms, and API security.
  • Collaborate with other security engineers on client projects and tool development.
  • Work with the Research & Engineering team on advanced security research and funding efforts that bridge vulnerability research and application security.
  • Provide remediation guidance and clear recommendations to clients based on technical findings.
  • Stay current with developments in application security, vulnerability research, and emerging technologies.

Requirements

  • Extensive experience in software security and identifying or mitigating application and system-level vulnerabilities in complex enterprise software.
  • Demonstrated experience conducting technical security assessments of software, including software and system hardening, security policy analysis, and security implementation.
  • Experience with Android, iOS, and/or macOS system internals is a plus.
  • Deep understanding of system internals and security boundaries.
  • Experience with manual code reviews and static and dynamic analysis tools.
  • Expertise in secure development practices.
  • Experience with binary analysis and reverse engineering.
  • Understanding of memory corruption vulnerabilities and mitigations.
  • Strong knowledge of multiple programming languages such as Rust, Golang, Kotlin, Swift, Objective-C, JavaScript/TypeScript, Python, Ruby, C, and/or C++.
  • Ability to communicate complex security concepts clearly to diverse stakeholders.

Benefits

  • Competitive salary with performance-based bonuses.
  • Fully company-paid health, dental, vision, disability, and life insurance.
  • 401(k) plan with a 5% company match.
  • 20 days of paid vacation with flexibility for more, subject to local regulations.
  • 4 months of parental leave.
  • $10,000 relocation assistance for candidates moving to NYC.
  • $1,000 work-from-home stipend.
  • $750 annual learning and development stipend.
  • Up to $2,000 in annual philanthropic contribution matching.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Censys

Senior Security Research Engineer

Censys 51-250 IT Services

Censys is seeking a remote Security Researcher to analyze internet-wide scan data and produce research that improves coverage, insights, and security products for customers.

United States Canada Full-time Senior Security Engineer
$153k-$212k
HTTP Linux Snowflake TCP/IP TLS
0 minutes ago
GitLab

Principal Engineer, Software Supply Chain Security

GitLab 1K-5K Internet Software & Services

GitLab is hiring a Principal Engineer, Software Supply Chain Security to lead the technical strategy for securing its DevSecOps platform, with a focus on CI/CD pipeline protection, zero trust architecture, and enterprise-grade software supply chain security.

United States Canada United Kingdom Netherlands Israel Full-time Lead Application Security Engineer Security Engineer
$158k-$338k
CI/CD DevSecOps GitLab Go Kubernetes Rust Secrets Management
0 minutes ago
Trooptravel

Senior Platform Engineering Manager

Trooptravel 51-250 Consumer Services

TROOP is hiring a Senior Platform Engineering Manager to lead its platform and security engineering efforts for a remote-first meeting planning and group travel logistics platform serving teams across multiple regions.

Spain South Africa Full-time Lead Platform Engineer Security Engineer
Argo CD CI/CD GCP GitHub GitLab GitOps Helm Kubernetes OpenTelemetry Terraform WAF
15 minutes ago
Seesaw

Security Engineer

Seesaw 251-1K Diversified Consumer Services

Seesaw is hiring a Security Engineer to strengthen security foundations across its elementary learning platform and internal systems by embedding secure, automated guardrails into engineering and cloud workflows.

United States Full-time Mid Level Security Engineer
$125k-$145k
AWS AWS CDK CloudFormation Datadog GitHub Actions GitLab CI OWASP Python Terraform
15 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers