Web Application Security Engineer

Summary

Xometry is seeking a Security Engineer, Vulnerability Remediation to analyze and remediate vulnerabilities within the codebase primarily built with Python and Javascript. The role requires 3+ years of experience in Python, Javascript technologies, containerization technologies, and cloud environments. Preferred experience includes web application security, SAST tools, and AWS security best practices.

Requirements

• 3+ years experience of Python as well as Javascript technologies such as Node.js, TypeScript
• Experience with containerization technologies such as Docker and Kubernetes
• Experience working in cloud environments AWS, GCP, or Azure
• Excellent analytical and problem-solving skill
• Strong communication and collaboration skills
• Comfortable working across a diverse range of of product and technology teams
• Ability to work independently and manage multiple tasks effectively

Responsibilities

• Analyze security vulnerability reports generated through static application security testing (SAST)
• Build automation to assist with automatic upgrades and vulnerability tracking
• Deep dive into identified vulnerabilities within the codebase to understand their root cause and potential impact
• Develop, test and implement secure code solutions to remediate vulnerabilities in a timely manner, prioritizing critical issues first
• Stay up-to-date on the latest web application security threats and best practices

Preferred Qualifications

• Experience in web application security with a strong understanding of common vulnerabilities (e.g., SQL injection, XSS)
• Knowledge of secure coding practices in Python and Javascript
• Experience working with SAST tools
• Experience with AWS security best practices