Wikimedia Foundation is hiring a
Senior Application Security Engineer

Logo of Wikimedia Foundation

Wikimedia Foundation

πŸ’΅ $109k-$169k
πŸ“Remote - Worldwide

Summary

Join the Wikimedia Foundation as an Application Security Engineer to help protect Wikipedia and other projects. You'll work with developers and security engineers to create new security features, review code, and find and fix security bugs.

Requirements

  • Two or more years of application security experience, including thorough understanding of issues documented in the OWASP Top Ten and CWE Top 25
  • Strong understanding of modern, object-oriented PHP development
  • In-depth experience developing or auditing JavaScript
  • Demonstrated ability to exploit and mitigate application-level vulnerabilities
  • Experience conducting software security reviews using a combination of source code inspection, manual testing, and automated scanning
  • Patience in explaining security issues and their implications on privacy to non-technical audiences
  • Sensitivity to the security challenges faced by participants in a large, international project
  • Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation
  • Experience using Linux at the command line for tasks related to web application development and deployment
  • Ability to maintain focus when working remotely

Responsibilities

  • Triage and remediate reported security issues
  • Review and deploy features developed by the Foundation and community members
  • Work with other development teams to ensure that they make safe architectural and implementation choices
  • Test and evaluate our software to find bugs before attackers do
  • Provide application security concept reviews and help socialize application security best practices
  • Provide support for application security incidents and operations

Preferred Qualifications

  • Experience as a contributor in the Wikipedia or Wikimedia project communities
  • Experience contributing to a consensus-based open source project
  • Experience developing, maintaining, or administering authentication systems

Remote

Cybersecurity

Senior

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Jobs

Please let Wikimedia Foundation know you found this job on JobsCollider. Thanks! πŸ™