Engineer Jobs at Stellar

Interested in helping us change the world of payments forever? The Stellar Development Foundation (SDF) is looking for a Senior Application Security Engineer who will work closely with our engineering teams as well as third-party groups (including our HackerOne bug bounty program) to ensure SDF’s products are secure. In this role, you will assist in defining and implementing a variety of security controls and tools, help define our security SDLC, and triage application security vulnerabilities.

In this role, you will:

• Perform application security reviews.
• Perform application security threat modeling.
• Automate security validations of coding best practices.
• Automate security validations of infosec policies.
• Support and evolve our HackerOne bug bounty program.
• Support and evolve our security vulnerability management.
• Provide Application Security support to our engineering teams.
• Develop security training and disseminate secure coding best practices to our engineers.

You have:

• 5+ years of experience on a SecOps, AppSec team or Software Development team.
• Strong understanding of security libraries and common security flaws.
• Strong development experience, Golang and Nodejs/React are preferred, C++ is a plus.
• Experience with “Shift Left” security.
• Experience with NIST, MITRE, OWASP frameworks.
• Experience with common security / pen testing tools, nmap, Burp Suite, Hydra, Metasploit.
• Strong understanding of OSI protocols such as TCP/IP, UDP, HTTP, HTTPS.
• Good understanding of AWS/GCP access controls and best practices.
• Good understanding of kubernetes.
• Good understanding of Ubuntu linux.
• Good written and verbal communication skills and an ability to articulate complex topics clearly.
• Prior exposure to distributed systems or blockchain technology is a plus.