Staff Security Engineer - Application & Vendor Security

Summary

Join Jane, a remote-first company, as our new Staff Security Engineer. You will lead application security efforts and third-party integrations, assessing and mitigating technical risks. This role requires strong application security expertise and collaboration skills. Jane values emotional intelligence and a supportive culture. The position offers a competitive salary range ($154,400 - $241,300 annually), with a starting salary expectation of $183,400. Jane is committed to employee growth and provides opportunities for career development. The company fosters an inclusive and diverse workplace.

Requirements

• High emotional intelligence and exceptional communication skills, with the ability to navigate complex interpersonal dynamics, foster a positive team environment, and convey technical concepts in an accessible and empathetic manner
• The ability to build trust and collaborate effectively across diverse teams, including influencing without authority and empathizing with the perspectives of non-technical stakeholders
• 5-7 years of experience in application security, with demonstrated expertise in SaaS environments, cloud security principles, and vendor risk assessment methodologies
• You possess a deep understanding of security frameworks and regulatory compliance requirements, including NIST, SOC 2, ISO 27001, GDPR, CCPA, and HIPAA
• You have proven experience mentoring and developing team members, fostering a culture of security excellence and continuous growth
• You exhibit strong strategic thinking and problem-solving abilities, with a track record of delivering complex projects and aligning security initiatives with business strategy
• Educational background in Computer Science, Information Security, or a related field, or equivalent experience

Responsibilities

• Develop and implement application security standards and best practices for integrating third-party solutions and hosting vendors in a marketplace, ensuring consistency and security across all integrations
• Lead the assessment of technical risks associated with integration partners and marketplace vendors, thoroughly understanding how their solutions interact with our platform
• Collaborate closely with development and engineering teams to provide expert guidance on secure integration practices, API security, and application design considerations
• Alongside our GRC team, provide technical expertise to enhance overall risk management strategies related to third-party integrations
• Mentor and coach team members, enhancing the organization’s application security capabilities and fostering an inclusive environment that supports growth

Preferred Qualifications

Relevant certifications (e.g., CISSP, CSSLP, CRISC)

Benefits

• Minimum annual salary of $154,400 and maximum annual salary of $241,300
• Starting salary expectation of $183,400
• Remote work