Senior Application Security Engineer - Location Flexible
Role Description
As part of the Application Security team, you’ll be working to reduce risk across Dropbox. We partner with engineering and product teams during each point of the software development lifecycle (SDLC) and help drive broader security initiatives across Dropbox.
Application Security Engineers provide security impact by developing secure-by-default libraries and frameworks that teams across Dropbox can frictionlessly integrate into their products. They also offer their expertise on security matters through cross-team consultations that cover design and threat modeling, as well as through documentation and educational initiatives.
Responsibilities
- Act as a subject matter expert on application security domains involving web, mobile, and desktop platforms
- Conduct security consultations on new and existing products, and be able to communicate complicated issues to non-technical audiences
- Improve upon and further integrate the Secure Development Lifecycle (SDLC) into product design and engineering efforts
- Empower secure-by-default development by shipping libraries and frameworks that address classes of vulnerabilities at scale
- Assist with code reviews to proactively identify potential vulnerabilities, and follow-up with tooling to prevent future vulnerabilities
Desired background
- 3+ years experience in application security engineering
- Strong communication skills and relationship building skills
- Experience in architecting and building application security on modern tech stacks across multiple platforms (web, mobile, desktop)
- Experience in building and scaling the Secure Development Lifecycle
- Experience with threat modeling and handling vulnerability reports
- Experience partnering with cross-functional engineering and product teams
- Be able to demonstrate software development experience
Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).