Outreach - Staff Security Engineer

• From day one, you will partner with product managers and engineers across the organization and, at times, work directly with customers. You will help train and support PMs and engineers in designing and implementing secure development practices within our CI/CD pipelines to reduce vulnerabilities in production code. You will create technical training and security awareness content, contribute to secure coding standards, and produce position papers and technical specifications that guide security mitigations and product feature development. • The primary focus areas for this position are: • Technical Fluency – A passion for security and technology, familiarity with DevOps methodology and containers, SaaS and cloud security solutions and standards, and microservice architectures. • Advisory Skills – Providing direction, advice and support that helps grow the technical and collaboration skills of the individuals and teams you work with. • Execution – Planning, coordination, managing dependencies and risks, and diving deep when issues arise. Ability to work with people and drive a program to completion is a must. • Your Daily Adventures Will Include: • ● A minimum of 3 years experience as a senior or principal application security engineer or architect. • ● Deep experience in application security programs, including threat modeling, secure coding best practices, identifying vulnerabilities and secrets in code, and coordinating remediations in a cloud-native SaaS environment. • ● Familiarity with modern application security issues and mitigation techniques is essential. • ● Experience creating reference architectures, engineering specs, and data flow diagrams. Experience with customer-facing content is a plus. • ● Experience performing code reviews to identify security vulnerabilities. • ● Proven success working with engineers and technologies in cloud-native, DevOps environments (including CI/CD pipelines, microservices, and infrastructure as code). • ● Strong track record of partnering and collaborating with engineers and producing formal documentation to communicate program effectiveness to leadership. • ● Experience evaluating and implementing third-party tools and services to support an effective SDL program. • ● Experience mentoring and training others in application security principles and practices. • ● Excellent interpersonal and management skills. • ● Strong written and verbal communication skills. Experience working with customers or customer-facing teams is a plus. • ● Ability to work independently and flexibly to succeed within Outreach’s dynamic culture.