Application Security Engineer - Threat Modeling

| Austin, TX, USA +17 more | Remote | Hybrid
Sorry, this job was removed at 9:15 a.m. (CST) on Tuesday, May 28, 2024
Find out who's hiring in Austin, TX.
See all Cybersecurity + IT jobs in Austin, TX
By clicking Apply Now you agree to share your profile information with the hiring company.

About the Role
The Application Security Engineer role is pivotal to the NinjaOne team. It has company-wide visibility and includes deliverables stretching across individual developers to executive leadership. As part of our core information technology team, you will directly contribute to the user experience of our 10,000+ customers across the Managed-Service-Provider space and in enterprise/corporate IT shops.
Working directly with development, platform, and product teams you will integrate security into the product lifecycle from design through development. The ideal candidate is a subject matter expert in defining security requirements, performing application security assessments, and providing developers with remediation guidance and advice. On any given day you may be pulled in to evaluate a new system, review a proposed change, or provide guidance on security/coding best practices. You will also serve as a leader and mentor, as there are other team members who are junior in these areas of expertise-as well as in their careers.
Location - we are flexible on remote working, if you are in the USA and in one of the following states: TX, CO, FL, NC, GA, ME, CT, KS, VA, NJ, and CA. NinjaOne has physical offices in Austin, TX and Tampa, FL.
What You'll be Doing

  • Anticipate possible security threats and identifying areas of weakness in Ninja's environments and software
  • Partner with Ninja Engineering to perform code analysis of large applications manually and with the assistance of SAST and DAST tools
  • Partner with engineering in triaging the reported findings by SAST, DAST, SCA, SBOM and similar products to reduce the potential False-positive rates
  • Perform security architecture design reviews of our products and infrastructure
  • Identify and perform well-controlled security vulnerability hunting through source code reviews and penetration testing of Ninja's environments and software
  • Provide remediation guidance and recommendations to developers and platform engineers
  • Work with Engineering Managers team to help perform threat modeling of features and to prioritize and validate the urgency of identified vulnerabilities and security enhancement requests
  • Identify knowledge gaps and define security best practices for development teams to understand, follow, and receive training for
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences (may be internal to Ninja, or external such as prospects/clients or media)

About You

  • 3+ years of hands-on experience as an application security engineer, architect, or developer
  • 5+ years of experience within cybersecurity related fields
  • Solid understanding of security protocols, cryptography, authentication, authorization, and security
  • Experience breaking down complex systems and applications to find security and logic flaws
  • Strong cloud experience (AWS, Azure, GCP) and how to securely architect cloud-native solutions
  • Familiarity with common vulnerabilities and attack vectors along with their mitigations
  • Good working knowledge of current cybersecurity risk frameworks (OWASP/NIST/BSIMM), threat modeling (STRIDE/DREDD) , best practices for hardening systems (CIS/CSA) and familiarity with FedRAMP (FIPS 140-2)
  • Expertise with modern software build systems: IaC, CI/CD, Containers
  • Expertise with Linux, Windows, and MacOS operating systems: how they're architected in the enterprise and solutions for securing them
  • Strong knowledge of TCP/IP & UDP protocols and networking design/architecture
  • Extensive experience in information security and/or IT risk management with a focus on security, performance, and reliability
  • Proficiency with multiple software languages (Java, C++, Python, JavaScript, Kotlin, and Swift recommended)
  • Strong critical thinking, analytical, and logical problem-solving skills
  • Ability to interact with a broad cross-section of personnel to explain and enforce security measures
  • A degree in Information Technology, Computer Science or related field is highly desirable
  • OSCP, OFFSEC, GREM, GDAT, CISSP or equivalent certification

About Us
NinjaOne automates the hardest parts of IT, empowering more than 17,000 IT teams with visibility, security, and control over all endpoints. The NinjaOne platform is proven to increase productivity, while reducing risk and IT costs. NinjaOne is consistently ranked #1 for its world-class support and is the top-rated software on G2 in seven categories including endpoint management, remote monitoring and management, and patch management.
What You'll Love
We are a collaborative, kind, and curious community.
We honor your flexibility needs with full-time work that is remote.
We have you covered with our comprehensive benefits package, which includes medical, dental, and vision insurance.
We help you prepare for your financial future with our 401(k) plan.
We prioritize your work-life balance with our unlimited PTO.
We reward your work with opportunity for growth and advancement.
Additional Information
Starting pay for the successful applicant depends on a variety of job-related factors, including but not limited to location, market demands, experience, job-related knowledge, and skills. The benefits available for this position include medical, dental, vision, 401(k) plan, life insurance coverage and PTO.

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Candidate Location Eligibility:
Atlanta, GA
Austin, TX
Charlotte, NC
Dallas-Fort Worth, TX
Houston, TX
Jacksonville, FL
Los Angeles, CA
Miami, FL
Orlando, FL
Pensacola, FL
Portland, ME
Raleigh-Durham, NC
San Antonio, TX
San Francisco, CA
Tallahassee, FL
Tampa Bay, FL
Wilmington, NC

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PHPLanguages
    • PythonLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • CircleCIFrameworks
    • Node.jsFrameworks
    • SpringFrameworks
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • Google AnalyticsAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • BasecampManagement
    • ConfluenceManagement
    • JIRAManagement
    • TrelloManagement
    • WordpressCMS
    • SalesforceCRM
    • SendGridEmail
    • PardotLead Gen
    • SalesLoftLead Gen
    • ZoomInfoLead Gen

An Insider's view of NinjaOne

What’s the vibe like in the office?

It’s laid-back, caring, and motivating! I always look forward to the days when I work in-office because I get to collaborate with, learn from, and have fun with my team. With a team of incredibly talented, open, and encouraging individuals around you, it’s hard to leave the office without feeling a little inspired!


Marketing Coordinator

What does your typical day look like?

My responsibility is empowering our staff and ensuring our customers are being heard and valued. This translates into providing the tools our staff need to succeed through global training and raising ideas from customers for consideration in future enhancements. This touches every team, and the daily interaction is what I love most about my role.


VP of Global Support

How has your career grown since starting at the company?

When I joined Ninja, I was accustomed to very linear tracks of growth. Once here, I was shown growth doesn't just mean a promotion or new title, but also impactful experiences and collaboration that contribute to your career's story. Growth is not an event at Ninja; it's a daily evolution from working with a team that is constantly innovating.


Support Escalations Manager

How do you make yourself accessible to the rest of the team?

Transparency and openness are at our cultural core. I meet with every new hire to emphasize their voice is vital to our growth and success! We use feedback to actually make changes to ensure NinjaOne continues to be a world class place to work. I’m here to help our employees succeed now and grow them for future career opportunities.


Chief Revenue Officer

What are some things you learned at the company?

I came to Ninja with a passion for training and development, but my practical knowledge was limited to physical, face-to-face settings. I have enjoyed learning how to take my original strategies for developing in-person learning programs and translating them into mediums that are globally accessible.


Training and Development Manager

What are NinjaOne Perks + Benefits

Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Hybrid work model
President's club
Flexible work schedule
Remote work program
Documented equal pay policy
Highly diverse management team
Mean gender pay gap below 10%
Hiring practices that promote diversity
Health Insurance + Wellness
Flexible Spending Account (FSA)
Disability insurance
NinjaOne offers short and long term disability options for employees at their choosing.
Dental insurance
Ninja offers two different dental plans depending on your needs. Both plans cover 100% of the cost of preventative care including x-rays.
Vision insurance
Ninja's vision insurance provides 100% coverage for annual exams, and lenses after a $15 copay. Frames and contact lenses are covered up to $150.
Health insurance
Ninja offers different plan options for our employees depending on their needs, both providing comprehensive coverage. We sponsor 80% of all employee premiums.
Life insurance
Wellness programs
Mental health benefits
Financial & Retirement
Child Care & Parental Leave
Generous parental leave
Family medical leave
Vacation + Time Off
Unlimited vacation policy
Generous PTO
Paid holidays
Paid sick days
Flexible time off
Bereavement leave benefits
Office Perks
Company-sponsored outings
Free daily meals
NinjaOne provides catered lunches on Mondays, Tuesdays and Thursdays
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Onsite office parking
Mother's room
Onsite gym
Professional Development
Job training & conferences
Promote from within
Continuing education available during work hours
Online course subscriptions available
Customized development tracks

More Jobs at NinjaOne

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about NinjaOneFind similar jobs like this