Key skills
PythonJavaC++CGoAIAWSGCPKubernetesDockerCommunicationCollaborationOWASPPenetration TestingCloud Security
About this role
Glean is a Work AI platform that enhances productivity through intelligent search and AI capabilities. They are seeking a security-focused software engineer to develop and maintain the security foundation of their platform, focusing on secure software design, implementation, and testing across various components.
Responsibilities:
- Design, develop, and maintain secure software for core platform functionalities, particularly focusing on:
- Authentication and authorization systems
- Secure communication channels between services (e.g., API security)
- Secure data storage and access controls
- Collaborate with cross-functional teams (engineering, product) to integrate security best practices throughout the development lifecycle
- Stay up-to-date on the latest security threats, vulnerabilities, and mitigation strategies
- Conduct security code reviews and identify potential security risks in existing codebases
- Develop and implement automated security testing procedures
- Respond to security incidents and participate in incident response procedures
- Continuously improve the platform's security posture by identifying and implementing security enhancements
- Document security processes, procedures, and best practices
Requirements:
- BA/BS in computer science, or related degree, MS a strong plus
- Minimum 5+ years of experience in software development with a strong focus on security aspects
- Proven experience in designing and implementing secure authentication and authorization systems
- In-depth understanding of secure coding principles and best practices (e.g., OWASP Top 10)
- Experience with secure communication protocols (e.g., TLS/SSL)
- Familiarity with security testing tools and methodologies (e.g., static code analysis, penetration testing)
- Excellent problem-solving and analytical skills
- Strong communication and collaboration skills
- Ability to work independently and as part of a cross-functional team
- Passion for security and a commitment to building secure and reliable systems
- Thrive in a customer-focused, tight-nit and cross-functional environment - being a team player and willing to take on whatever is most impactful for the company is a must
- A proactive and positive attitude to lead, learn, troubleshoot and take ownership of both small tasks and large features
- An interest/desire to learn and own various aspects of security
- Strong coding skills (for example in Go/Python/Java/C++ etc) with an emphasis on designing for reliability and scale, and writing well-tested components
- Experience with cloud security principles and tools (AWS Security, GCP Security)
- Experience with container security (Docker Security, Kubernetes Security)