Senior Security Engineer (Application Security)
RelativityPosting Type
Remote
Job Overview
Relativityβs Application Security team works to prevent, detect, and review remediation of security issues within Relativity software products. We achieve this by validating secure code design and implementation practices within Relativity teams who build and maintain software and infrastructure supporting Relativity products.The Application Security team threads multidisciplinary security backgrounds and methodologies to achieve our goals. Our work includes formal security reviews, penetration testing, technical code deep-dives, security tool configuration and maintenance, writing software tool automation, and security requirement testing.
The below are key to being successful in this role:
-Interest and experience with DevSecOps teams and job responsibilities.
-Passion for helping teams find secure solutions for their application business needs.
-Capable of translating the security risks of complex systems into simple security requirements.
-Familiarity with applying industry standard security frameworks to web applications and cloud hosted technologies.
-Interest in communicating and championing security best practices within engineering communities.
-Ability to communicate effectively with geographically separated team members.
Job Description and Requirements
Role Responsibilities
What are the core duties of this role?
Design, implement, and promote a community of practice within Relativity to foster greater security awareness and collaboration among cross-disciplinary engineers.
Propose and implement technical security controls and checks to shift security requirements left into software design and implementation workflows.
Engage in technical reviews of software products, code, features, tools, and infrastructure to validate security best practices and requirements are met prior to production release.
Respond to customer security questions about Relativity products and reproduce customer vulnerability reports prior to triaging to Engineering for remediation.
Innovate and integrate new methodologies for hardening software supply chain security via automated compliance checks, control testing, and validation methods.
Facilitate regular internal and third-party penetration tests of Relativity products to identify and remediate security issues.
Assist with Security compliance audits by collecting evidence supporting company security controls.
Maintain and optimize the effectiveness of software package security scanning and secure code scanning tools.
Minimum qualifications:
Bachelor's degree in Computer Science, Cybersecurity, or related field OR equivalent experience.
Minimum of 5 years of experience in software engineering and/or security engineering.
Strong written and verbal communication skills, capable of giving both concise and detailed explanations of technical issues.
Experience effectively communicating with product customers about potentially sensitive security issues.
Experience with cloud platforms (e.g., Azure, AWS) and containerization technologies.
Experience applying industry standard frameworks for evaluating the security risks of software systems.
Hybrid-working role (2+ days in office)
Preferred qualifications:
Experience working in a SaaS environment operating on a global scale.
Experience in the legal space and with an understanding of high level e-discovery and litigation software workflows.
Proficiency in at least 1 modern Object-Oriented Programming (OOP) language, preferably .NET.
Knowledge of professional software engineering practices & software development life cycle (SDLC), including coding standards, code reviews, source control management, build processes, testing, and operations.
Relativity is a diverse workplace with different skills and life experiences - and we love and celebrate those differences. We believe that employees are happiest when they're empowered to be their full, authentic selves, regardless how you identify.
Benefit Highlights:
Comprehensive health, dental, and vision plans
Parental leave for primary and secondary caregivers
Flexible work arrangements
Two, week-long company breaks per year
Additional time off
Long-term incentive program
Training investment program
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Relativity is committed to competitive, fair, and equitable compensation practices.
This position is eligible for total compensation which includes a competitive base salary, an annual performance bonus, and long-term incentives.
The expected salary range for this role is between following values:
224 000 and 336 000PLNThe final offered salary will be based on several factors, including but not limited to the candidate's depth of experience, skill set, qualifications, and internal pay equity. Hiring at the top end of the range would not be typical, to allow for future meaningful salary growth in this position.
Required Skills:
Access Management, Application Security, Endpoint Security, Network Security, Penetration Testing, Security Architecture Design, Security Information, Security Information and Event Management (SIEM), Security Operations, Vulnerability Management