Application Security Engineer - (Remote, US)

| Remote
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
DISQO is changing the way that the world’s largest brands, agencies and consumer intelligence companies get to know their consumers. We’ve built the first identity-based platform that combines consumer attitudes and behaviors together to power the most accurate and predictive insights solutions for our customers, and we do all of that with the willing participation of our consumers and without using outdated technologies like third-party cookies. We help our customers get a cross-platform view into consumer sentiment, measure advertising effectiveness, analyze consumer purchase journeys, and ultimately grow their brands.

Our mission at DISQO is to engage people to share their opinions and behaviors openly to help our customers make the right decisions. With over one million active members sharing their attitudes and behaviors, DISQO is looking to expand, improve and create world-class applications for people to openly share their data for research.

Check out the DISQO Developer Blog for the latest from our DISQOTECH team.

DISQO is a platform-as-a-service (PaaS) that powers brand decisions with breakthrough insights on consumer experience. People experience brands in different ways. DISQO’s platform allows you to understand what people think and do throughout the entire brand experience.
DISQO is searching for an Application Security Engineer within our DISQO Information Security organization to help build a world class security program that enables A world where people trust in sharing information to improve the human experience. We are seeking an application security engineer who is passionate about protecting critical applications and APIs.


What you will do:

  • You will collaborate with engineering leaders, developers, quality engineers, and security teams to secure DISQO’s applications and services. Responsibilities include assessing the risk landscape for products and helping drive risk mitigation. You will work with partner teams on security tools, penetration testing, and security testing methodologies to keep DISQO services secured.

  • You will experience a rapidly evolving technology and threat landscape and contribute to the education of teams on compliance activities throughout the development lifecycle. You should expect to be exposed to a broad range of systems, including web applications, big data, distributed processing, and virtualized environments.

What you bring to the table:

  • Passionate about Application Security with 5+ years of relevant experience
  • Deep understanding of web application security threats, vulnerabilities, exploits, and prevention (SQL Injection, XSS, CSRF, platform hardening, etc)
  • Ability to triage, reproduce, and recommend remediations for vulnerabilities
  • Proficient with a scripting language (e.g., Python, Bash, Go).
  • Proficiency with Java and Javascript
  • Experience in penetration testing and with tools such as Burp or Zap
  • Passion for understanding and researching vulnerabilities and exploitation
  • techniques
  • Experienced in Threat modeling (STRIDE, MITRE)
  • Knowledge of development and integration tools and technologies (e.g. CI/CD)
  • Knowledge of tools including static code analysis and dynamic application scanning (e.g. SonarQube, Qualys, JFrog)
  • Knowledge of test automation frameworks
  • Performing security/penetration testing on new applications, products, and features before they are released
  • Knowledge of networking concepts (firewalls, load balancers, etc)
  • Prior experience/background in web application development
  • Practical knowledge of cryptography and common attacks against modern
  • cryptographic algorithms (encryption at rest, TLS, hashing, etc)
  • Experience securing applications in the public cloud preferably AWS
  • Excellent communication, interpersonal and collaboration skills
  • Working with developers to provide security guidance and mentor them on secure development practices
  • Developing tools and exploits to support security testing
  • Writing automation to streamline common tasks, tests, workflows, etc.
  • Perform threat modeling
  • Training and mentoring DevOps teams on application security best practices
  • puter Engineering, or equivalent
  • Servant Leader and Agile DNA
  • Relevant BA/BS degree and/or certifications (CRISC, CISSP, CISM, CISA, CCSP, CSSLP)or equivalent experience.

#dice

Perks & Benefits:

·100% covered Medical/Dental/Vision for employee, 80% for dependents
·Equity
·Unlimited Vacation
·Flexible work hours
·Catered lunches 3x a week
·Stocked pantry
·Happy Hours
·Onsite Fitness Program
·Discounted Gym Membership
·Quarterly Offsites
·401K
·Life Insurance
·FSA
·Paid Maternity/Paternity leave
·Disability Insurance
·Travel Assistance Program
·24/7 Counseling Services offered to employees

DISQO is an equal opportunity employer. Discovery, innovation, and growth are possible when we open ourselves to new possibilities, perspectives, and approaches. That’s why, at DISQO, we welcome, support, and empower individuals from diverse backgrounds. Exceptional teams are rooted in extraordinary people, each with a unique story and a compelling set of skills. DISQO does not discriminate against employees based on race, color, religion, sex, national origin, gender identity or expression, age, disability, pregnancy (including childbirth, breastfeeding, or related medical condition), genetic information, protected military or veteran status, sexual orientation, or any other characteristic protected by applicable federal, state or local laws.

*Recruiting firms that submit resumes to DISQO without first entering into a written contract will not be entitled to any compensation on candidates referred by that firm.

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • PHPLanguages
    • PythonLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • ReactLibraries
    • ReduxLibraries
    • AngularJSFrameworks
    • LaravelFrameworks
    • Node.jsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • TensorFlowFrameworks
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • RedshiftDatabases
    • Google AnalyticsAnalytics
    • MixpanelAnalytics
    • IllustratorDesign
    • PhotoshopDesign
    • JIRAManagement
    • TrelloManagement
    • WordpressCMS
    • SalesforceCRM
    • SendGridEmail
    • OnGageEmail

An Insider's view of DISQO

What are some social events your company does?

We have weekly happy hours, lunches and after hours activities. They include Nerf gun fights, karaoke, bowling, weekly basketball games, ping pong, puppy day, trivia games and a lot more!

Siran

Accounting

What projects are you most excited about?

DISQO's consumer facing product, Survey Junkie, is an awesome project to work on. Between building new features and responding to customers, at the rate we move, the project never gets old. Also, working on something that is used by millions of people is super fulfilling as I know everything I do makes an impact in the lives of others.

Roque

Engineer

How has your career grown since starting at the company?

DISQO granted me the opportunity to learn the fundamental framework to building a successful product while focusing on the user. As a recent college graduate, I can’t imagine to be working with a greater company than DISQO as they really encourage the work hard, play hard culture to all its employees.

David

Product Management

What is your vision for the company?

We want to build a trusted world where all brand decisions result in ultimate consumer satisfaction, a world where brands and consumers connect to create the best products & experiences together.

It's quite an ambitious & technically challenging goal, with an impact so massive, it will benefit all of humanity.

Drew

CTO

What’s the vibe like in the office?

The office vibe at DISQO can simply be described as fun. Whether it’s making watermelon slushee’s in the kitchen or playing a random game of UNO, there’s always something going on. Even when the work gets intense, you can always hear laughter throughout the office.

Marina

Talent Acquisition

What are DISQO Perks + Benefits

DISQO Benefits Overview

Fully subsidized medical, dental and vision PPO plan,
Flexible schedule,
Gym membership,
Fully stocked kitchen and catered lunches,
Fun culture - happy hours, games, off-site team building activities,
Smart passionate coworkers.

Culture
Volunteer in local community
Friends outside of work
Eat lunch together
Intracompany committees
Daily sync
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Documented equal pay policy
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Diversity manifesto
Mean gender pay gap below 10%
Diversity Employee Resource Groups
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Onsite Gym
Team workouts
Mental Health Benefits
Retirement & Stock Options Benefits
401(K)
Company Equity
Employee Stock Purchase Plan
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
DISQO provides employees with a flexible work schedule that includes Core hours, Flexible start and end times.
Remote Work Program
Company sponsored family events
Vacation & Time Off Benefits
Unlimited Vacation Policy
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
DISQO offers employees who commute or forego a parking pass completely, a monthly stipend.
Company Outings
DISQO hosts company outings Quarterly. Our previous quarterly events include bowling, a scavenger hunt in Santa Monica and a pool party in Malibu.
Free Daily Meals
Game Room
Stocked Kitchen
DISQO has a fully stocked kitchen including unlimited snacks and all kinds of beverages.
Some Meals Provided
Happy Hours
Parking
Pet Friendly
Relocation Assistance
Fitness Subsidies
DISQO provides discounted membership to 24 Hour Fitness.
Home Office Stipend for Remote Employees
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Every few weeks, we host Taco Talks, where representatives from different departments share recent wins, ongoing projects, and more.
Cross functional training encouraged
Promote from within
Time allotted for learning
Online course subscriptions available
Customized development tracks
Paid industry certifications
More Jobs at DISQO60 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR + Recruiting
Marketing
Operations
Product
Project Mgmt
Sales
Content
Data + Analytics
new
Remote
Operations
new
Los Angeles
Data + Analytics
new
Remote
Finance
new
Los Angeles
Product
new
Los Angeles
Operations
new
Los Angeles
Sales
new
Remote
Developer
new
Los Angeles
Data + Analytics
new
Los Angeles
Data + Analytics
new
Remote
Developer
new
Remote
Project Mgmt
new
Newtown, CT
Developer
new
Remote
Developer
new
Remote
Content
new
Remote
Design + UX
new
Remote
Project Mgmt
new
Los Angeles
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView DISQO's full profileSee more DISQO jobs