Logo for Doyensec

Application Security Engineer (Remote: US based - Senior and above)

Role overview

Qualifications

  • Proven gray-box security testing experience on web and mobile applications across multiple languages and environments
  • Experience developing code and security tooling, and ability to mentor/guide other engineers
  • Strong web security expertise with demonstrable public research, advisories, or code contributions
  • Experience conducting cloud-based security assessments and advising on cloud security configuration and hardening

Responsibilities

  • Security testing of web and mobile (iOS/Android) applications
  • Vulnerability research activities coordinated with Doyensec's founders
  • Leading projects, partnering with customers to achieve objectives, and supporting engineer growth
  • Conduct cloud-based audits on popular cloud platforms and advise on app and cloud security configuration, hardening, and best practices

About the company

Doyensec logo

Doyensec

Information Technology & Services

Doyensec is an independent security research and development company focused on vulnerability discovery and remediation. We discover vulnerabilities others cannot and help mitigate risk by providing actionable solutions. In other words, we're an offensive security firm working with the frame of reference of a blue team. Thanks to our work, we enable trust in our client's products and evolve the resilience of the digital ecosystem. Doyensec was founded in 2017 by John Villamil and Luca Carettoni and they are its only stakeholders. The company exists to further the passion and focus of its creators. We keep a small dedicated client base and expect to develop long term working relationships with the projects and people with whom we work.

Company details

Company typeStartup
IndustryInformation Technology & Services
Company size11 - 50

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

At Doyensec (https://doyensec.com/), we believe that quality is the natural product of passion and care. We love what we do and we routinely take on difficult engineering challenges to help our customers build with security.

Our clients are some of the global brands in the tech and startup communities. We help them secure their software and systems by providing information security consulting services (pentesting, reverse engineering, product security design and auditing). We keep a small dedicated client base and expect to develop long term working relationships with the projects and people with whom we work.

We are looking for a highly experienced security engineer to join our consulting team. We perform gray-box security testing on complex web and mobile applications. We need someone who has proven testing skills across multiple languages and environments and can hit the ground running. If you are good at crawling around in the ventilation ducts of the worlds most popular and important applications, you probably have the right skillset for the job. Experience developing code and tools is highly desirable, along with the ability to support the growth of fellow engineers.

We offer a competitive salary in a supportive and dynamic environment that rewards hard work and talent. We are dedicated to providing research-driven application security and therefore invest 25% of your time exclusively to research, where we build security testing tools, discover new attack techniques, and develop countermeasures.

Responsibilities:

  • Security testing of web, mobile (iOS, Android) applications
  • Vulnerability research activities, coordinated and executed with Doyensec's founders
  • Partnering with customers to ensure the projects objectives are achieved
  • Leading projects and supporting engineer growth 
  • Conduct cloud based audits on popular cloud platforms
  • Provide support and guidance for clients concerning app and cloud security configuration, hardening and industry best practices

Requirements:

  • Ability to discover, document and fix security bugs
  • Your are passionate about understanding complex systems and can have fun while doing it
  • Top-notch in web security. Show us public research, code, advisories, etc.
  • Eager to learn, adapt, and perfect your work

We offer:

  • Remote work (from anywhere in the USA), with flexible hours
  • Competitive salary, including performance-based bonuses
  • Startup atmosphere
  • 25% research time (really!)
  • Access to high-visibility security testing efforts for leading tech companies
  • Possibility to attend and present at various security conferences around the globe
  • Paid time off
  • Company retreats and get together budget

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Security Engineer Related jobs

Other jobs at Doyensec

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.