[Remote] Senior Information Security Engineer
Note: The job is a remote job and is open to candidates in USA. Stack Overflow is one of the most popular websites in the world, focused on increasing productivity and protecting institutional knowledge. They are seeking a Senior Information Security Engineer to lead security initiatives, mentor team members, and contribute to the development of a robust security culture within the organization.ResponsibilitiesLead Contribute to security requirements in designing, developing, and deploying large-scale services and platformsConducting security architecture reviews of the application stack, including applications built on cloud and emerging technologiesDesign and develop platform-level solutions to promote security-related initiatives and improvements. - Review source code for potential security issues, recommend and implement fixesProviding specific risk assessment and remediation guidelines for developers and business owners - Belief in automation and tooling as a critical part of the software lifecycleDocument and disseminate security guidelines for common security issues, remediation guidance, and security baselinesContribute to SOC2 and ISO 27001/27701 audits as neededWork with developers to provide security guidanceActively promote improving the security culture and education within the organizationEager to learn new technologies and solutionsBe curious about how systems work and how they fail, design them to be sustainable in the face of failuresSkillsStrong verbal and written communication and documentation skills. 'Document as you go'Strong desire to secure systems, define and improve processesFamiliarity with: Containers, Cloud, Servers, Networking, DNS, and PaaS & SaaSDeep technical understanding of the OWASP Top 10Experience with Splunk or similar SIEMExperience with Nexpose or similar vulnerability scanning toolsExperience integrating security tools to work as an ecosystemSolid experience in threat modeling and identification techniquesAbility to work with developers to resolve security issuesExperience in code reviews, vulnerability detection, and root cause analysis25+ years of experience in web application security, secure application design and architecture, threat modeling, secure coding, and cryptographyStrong sense of ownership, urgency, and driveSelf-motivated and proactive, discovering, and resolving issues before they become problemsBenefitsCompetitive Base SalaryGenerous paid vacationGenerous parental leave (16 weeks at 100% pay), family care leave, and unlimited sick daysIndustry-leading health benefits that are applicable per country of residence for all our full-time employeesCompany-paid Life InsuranceHome Internet stipendProfessional allocation for your growth and developmentOne-timeallowance to assist with your home office setupCompany-paid access to Calm, Bravely, LinkedIn Learning, MyAcademy and OverdriveCompany OverviewStack Overflow is a platform for developers and programmers to share knowledge and solve coding challenges. It is a sub-organization of Prosus. It was founded in 2008, and is headquartered in New York, New York, USA, with a workforce of 201-500 employees. Its website is http://www.stackoverflow.com.Company H1B SponsorshipStack Overflow has a track record of offering H1B sponsorships, with 1 in 2025, 1 in 2023, 1 in 2022, 2 in 2020. Please note that this does not guarantee sponsorship for this specific role.