Senior Security Software Engineer

InVisionApp — Company based in NYC

via Stack Overflow Careers

InVision is the Digital Product Design platform used to make the world’s best customer experiences. We provide design tools and educational resources for teams to navigate  every stage of the product design process, from ideation to development.

Today, more than 3.5 million people use InVision to create a repeatable and streamlined design workflow; rapidly design and prototype products before writing code, and collaborate across their entire organization. That includes more than 80 percent of the Fortune 100, and organizations like Airbnb, Amazon, HBO, Netflix, Slack, Starbucks and Uber, who are now able to design better products, faster.

InVision is a fully distributed company with employees in 25 countries around the world. The company has raised more than $235 million in funding from leading investors including Accel, ICONIQ, FirstMark, Tiger Global, Battery Ventures, and Spark Capital. Visit us at InVisionApp.com andInVisionApp.com/blog.

Our development flow is designed and built for maximum speed and velocity.As such, we have an engineering security team heavily focused on identifying and remediating application vulnerabilities.You will be part of a team that has an opportunity to work across a wide range of products and services, working with and communicating across all teams in technology and responding to internal and external stakeholders.You will have an opportunity to identify security enhancement and cutting edge features that are attractive and desirable to our customer base.

You will contribute to an environment that enables you to do your best engineering work, and you’ll do it with new web standards and frameworks like ES6, React, MongoDB, NodeJS, Go, and Docker. We empower engineers by being laser focused on maximum developer velocity through automation of tests, builds, deploys and tight customer feedback loop to continuously improve the product.

Building and shipping something this amazing and owning it from prototypes and specifications to release requires constant collaboration with the brightest people in the organization. Whether you’re at a beach house in Hawaii or a coffee shop on the East Coast, you’ll have the support of brilliant developers at your fingertips to get you through and keep the workday challenging and fun.

As Part of The Team:

  • Secure our code.  Identify emergent vulnerabilities in our application source code.  
  • Bake security into our product.  Work with InVision engineers to evolve, design, implement security measures.
  • Help us be compliant.  Design and implement strategies and solution to maintain industry compliance requirements.
  • Be a security advocate.  Every day offers a variety of work, exciting new challenges, opportunities to contribute new ideas (your voice will be heard and valued), and the ability to share your knowledge across the engineering organization. 
  • Evolve security.   Help evolve InVision’s vulnerability remediation process and response efforts. 
  • Build security stuff.  Work with product and engineering teams to build new application security features.  Interface with other Product Engineering teams and Platform Service teams to take advantage of and incorporate their services and tools into your product.

What You’ll Need to Join Us:

  • Proficiency in NodeJS and Golang.  
  • Advance working knowledge of application vulnerabilities. OWASP top 10 is a good place to start but understanding that there are over 600 distinctly different types of coding vulnerabilities.
  • Ability to debug full-stack problems; debug a web application problem single-handedly all the way from the browser, through transport, to the application servers/databases. Not afraid of logs and core dumps.
  • Use of continuous integration and delivery technologies at an expert level and ability to teach others best practices.
  • Experience designing and building high volume, scalable SaaS applications from end to end.
  • Curiosity to iterate and improve on solutions; you view unknowns as challenges and enjoy them.
  • Motivation to understand the business and our users, their requirements, and deliver results.
  • Passion for continued learning and achieving personal goals through developer community involvement and contributions.

Also Good To Have:

  • Multi-lingual is your language.  You can spot vulnerabilities in code for various language (React, Java, Kotlin, Swift)
  • You know mobile.  Be it iOS or Android you understand mobile development, security, testingstrategy, and interfaces.  Mobile experience is a strong, strong PLUS!!

Benefits

InVision offers an incredibly unique work environment. The company employs a diverse team all over the world. In the United States we have team members throughout 40+ states including New York, San Francisco, Austin, Portland, and Boston. Each InVision team member is given the freedom and tools to do their best work from wherever they choose. The benefits we offer in the United States include competitive health plans and a 401k plan.

Some InVision-wide benefits offered to all employees across the globe include a flexible vacation policy, monthly coffee shop stipends, annual allowances for books related to your profession, and home office setup & wellness reimbursements. InVision is an international employer so some benefit offerings will vary from country to country.  Please ask our recruiting team about the benefits and perks package available in your country.

InVision is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. If you have a disability or special need that requires accommodation, please let us know.