Staff Security Engineer
New York, New York
Employer: Intuit
Industry: Security, Risk & Fraud
Salary: Competitive
Job type: Full-Time
We are seeking a highly skilled Staff Security Engineer with over 10 years of overall experience, including 5+ years of coding experience, and a robust background in security reviews, threat modeling, and incident response. This role requires a unique combination of advanced software development skills and deep expertise in security to perform thorough security reviews and threat modeling for both regular and Generative AI applications. The ideal candidate will seamlessly integrate security into our development processes, ensuring our applications are secure by design and capable of resisting various threats.
This is a unique opportunity for a seasoned software engineer with a strong security focus to play a vital role in enhancing the security posture of our applications, including cutting-edge Generative AI solutions. If you are passionate about integrating security into software development and possess the required skills and experience, we invite you to apply.
Responsibilities
This is a unique opportunity for a seasoned software engineer with a strong security focus to play a vital role in enhancing the security posture of our applications, including cutting-edge Generative AI solutions. If you are passionate about integrating security into software development and possess the required skills and experience, we invite you to apply.
Responsibilities
- Develop, test, and maintain high-quality code for various software applications, emphasizing security best practices.
- Conduct comprehensive security reviews and threat modeling for new and existing applications, including Web, LLM, Generative AI, Mobile, Cloud, Thick Client applications, to identify potential security vulnerabilities and risks.
- Automate the security review and threat modeling processes using scripting languages such as Python, Perl, or Bash.
- Utilize knowledge of OWASP Web, LLM, and Mobile Top 10, SANS Top 25, CVE, and MITRE ATT&CK frameworks to guide security assessments, reviews, code analysis, and threat modeling.
- Collaborate with various teams across the organization, including software developers, product managers, and security professionals, to ensure security is integrated throughout the software development lifecycle.
- Develop and implement standardized security methodologies, procedures, and tools for application security.
- Stay informed about the latest security threats, vulnerabilities, and trends in both traditional and Generative AI application security.
- Document and report security findings in a clear and structured manner to both technical and non-technical stakeholders.
- Provide actionable remediation recommendations and track their implementation to closure.
- Contribute to the development of security policies, standards, and guidelines.
- Mentor junior engineers on secure coding practices and develop internal training materials.
- Participate in code reviews to ensure that security best practices are maintained across all projects.
- Lead the development of security-related features and tools to enhance the security posture of our applications.
- Collaborate with the incident response team to investigate, remediate, and learn from security incidents, ensuring that findings are integrated into future security measures.
- Develop incident response plans and ensure they are tested and revised regularly to remain effective and current.
Created: 2024-09-28
Reference: 2024-56224
Country: United States
State: New York
City: New York
ZIP: 10036
Similar jobs:
-
Security Engineer, Maximum Application Security Team (MAST)
Amazon in New York, New York💸 $136000 per year -
Network and Security Engineer
Marist College in Poughkeepsie, New York💸 $80000 - $80000 per year -
Security Engineering, L1 Support Engineer - USDS
TikTok in New York, New York -
Senior Application and Infrastructure Security Engineer
StateJobsNY in New York, New York -
Security Engineer II, Application Security
Amazon in New York, New York💸 $136000 per year -
Product Security Engineer
News Corp. Class A in New York, New York -
IT Security Engineer
MetroPlusHealth in New York, New York -
Student Assistant Internship (Information Security Engineering), Ref# 7814
StateJobsNY in Albany, New York -
Software Development Engineer III, Devices \u0026 Services Security
Amazon in New York, New York💸 $151300 per year -
Senior Security Engineer, AWS Proactive Security
Amazon in New York, New York💸 $143300 per year -
Solutions Engineer-Cloud & Application Security Incubation-Hypershield
Cisco Systems Inc in New York, New York -
(General Hire) Cybersecurity Engineering Intern (Security & Privacy, USDS)- 2025 Summer (BS/MS)
TikTok in New York, New York -
Network Security Engineer
Insight Global in New York, New York -
Offensive Security Engineer (Security Posture Validation) - Offensive Security Operations - USDS
TikTok in New York, New York -
Cloud Network Security Engineer
SAIC in Remote Work, New York💸 $120001 - $160000. per year -
Senior Security Engineer
Intuit in New York, New York -
Tech Lead, Product Security Engineering
Google in New York, New York -
Security Engineer
Lawrence Harvey in New York, New York -
Security Engineer, Application Security Automation
Amazon in New York, New York💸 $136000 per year -
Senior Information Security Engineer
TradeWeb in New York, New York💸 $24000 per year