About the role

Role Overview

Virtru is hiring an Application Security Engineer to join its product security team. You will work closely with engineering and other stakeholders to help harden Virtru’s security-critical platform built on an open source core, operating across a wide range of threat models.

Responsibilities

Security engineering across the SDLC: Partner with development teams, Site Reliability Engineering, and stakeholders to strengthen security best practices.
Security improvements: Independently identify security gaps and implement fixes.
Vulnerability management: Implement, manage, and automate vulnerability management processes.
Remediation & prioritization: Prioritize and remediate vulnerabilities found via internal scans, penetration tests, and bug bounties.
Security assessments: Perform threat modeling, conduct code audits, and review designs/requirements.
Automation: Aggressively automate security workflows, including building tools when needed.

Requirements

Strong foundation in cryptography fundamentals.
Ability to collaborate with development teams and communicate clearly about security.
Experience reviewing complex systems and product requirements.
Comfortable operating in a public/open source environment.
Technical readiness to handle highly technical security problems.

Tech/Stack Notes

Core application development: Go and JavaScript.

Compensation

$180,000 – $200,000 per year

About Virtru

Virtru builds data protection applications and an open platform that enables intentional sharing without sacrificing security, privacy, or control. It uses the Trusted Data Format (TDF) open standard to support a new paradigm where security enables sharing. The company serves Fortune 500 companies and government agencies and is backed by major venture investors.

Tags