FeedbackIf you find a bug, or have feedback, put it here. Please no job applications in here, click Apply on the job instead.Thanks for the message! We will get back to you soon.

[Spam check] What is the name of Elon Musk's company going to Mars?

Send feedback
Open Startup
RSS
API
Health InsurancePost a job

find a remote job
work from anywhere

πŸ‘‰ Hiring for a Remote position?

Post a job
on the πŸ† #1 Remote Jobs board

Remote Health by SafetyWing


Global health insurance for freelancers & remote workers

MINDBODY


closed

infosec

 

dev

 

senior

 

engineer

This job post is closed and the position is probably filled. Please do not apply.
\nJOB SUMMARY:\n\nMINDBODY’s Security Engineering team is seeking an experienced software engineer to help keep our users safe from real world threats. You will build large, distributed security solutions that harden the MINDBODY SaaS platform and enable us to protect against and surface malicious activity. We are looking for a candidate with a passion for security and innovation, who will research and develop new solutions to protect our users but also help us share the goodness to make the internet a safer place for all.\n\n\nPRINCIPAL DUTIES AND RESPONSIBILITIES:\n\n\n* Take a leadership role in driving internal security and privacy initiatives\n\n* Design core, backend software security components\n\n* Code using primarily .Net, C#, and Classic ASP\n\n* Implement abuse detection and logging systems to surface threats\n\n* Interface with Product Development teams to incorporate their innovations and vice versa\n\n* Conduct design and code reviews\n\n* Performs Mobile Risk Assessments, Vulnerability Assessments, and Penetration Tests.\n\n* Recommends countermeasures and safeguards that would mitigate mobile risk.\n\n* Establish mobile policies and procedures and advise Product Owners as to the most optimum deployment of integrated mobile security solutions.\n\n* Perform investigations for evidence of intrusion or policy violations\n\n* Develops, documents, deploys, reviews and maintains Information Security Policies, Standards, Procedures and Guidelines.\n\n* Designs, produces, and delivers compelling OWASP training content.\n\n* Implements and improves software tools to gather system configuration information and proactively identify vulnerabilities.\n\n* Maintains awareness regarding OWASP and application security trends.\n\n\n\n\n\nMINIMUM QUALIFICATIONS AND REQUIREMENTS: \n\n\n* Extensive knowledge of web technologies with an emphasis on the .NET framework, MVC, and Web API\n\n* Extensive knowledge of Security principles: confidentiality and integrity of data, authentication and authorization, security protocols (HMAC, SSL, JKS, AES, OAuth)\n\n* Extensive knowledge of web application security principles\n\n* Extensive experience building secure large-scale, server applications\n\n* Extensive experience with service-oriented architecture principles to implement tools like WCF\n\n* Expert knowledge of VB, C#, and the .NET Framework\n\n* Experience with operating system internals, programming language design, compilers\n\n* Experience in building authentication or authorization services\n\n* Experience with scalable rules engines\n\n* Experience or bent in thinking about operability, monitoring, performance, testability and scalability while building large-scale systems.\n\n* Experience with designing and implementing secure web based payments systems\n\n* Ability to influence design and architectural decisions.\n\n* B.S. or M.S. in Computer Science or related field, or equivalent experience\n\n* 7+ years working on complex web applications\n\n* Full software development lifecycle experience; must be comfortable working using Agile methodology as well as iterative methodologies.\n\n* Must have prior experience of being a developer of a REST interface\n\n\n


See more jobs at MINDBODY

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
106ms