Principal Application Security Engineer

Roblox-posted 10 months ago
$351,130 - $425,990/Yr
Full-time • Senior
San Mateo, CA
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

As a Principal Application Security Engineer, you will play a pivotal role in shaping the growth of Information Security's (InfoSec) Product Security team, collaborating with engineering teams early in their processes to provide secure design solutions and establish security standards. Your responsibilities will include penetration testing, threat modeling, and code reviews. You will also participate in evaluation and integration of DevSecOps tools. As a key member of the team, you will drive company-wide projects across diverse tech stacks, working with engineering leaders to remediate security challenges. You will define and evolve the technical vision for scaling application security practices across the organization.

  • Lead company-wide security initiatives to address critical security challenges.
  • Build and nurture cross-company relationships to achieve security objectives.
  • Provide guidance on product security processes and standards.
  • Define and expand partnerships with key engineering teams across Roblox.
  • Apply critical thinking and analytical skills to develop security protocols and communicate effectively with stakeholders.
  • Research and evaluate new technologies to enhance the company's security posture.
  • Identify potential threats and vulnerabilities in our systems and data, as well as help develop and implement solutions to safeguard them.
  • Enable cross-functional teams to implement security solutions aligned with Trust-by-Design principles.
  • Contribute to security education and awareness programs by preparing and delivering training materials across the company.
  • Shape strategies to automate and scale application and product security efforts.
  • Design and integrate security frameworks into CI/CD pipelines.
  • Test application code following the OWASP Testing Methodology.
  • Mentor and guide other security engineers.
  • 8+ years of professional experience in cybersecurity, with a deep background in application security, data encryption, and compliance with security standards, as well as knowledge of network and cloud security.
  • Expertise in explaining complex security challenges and solutions to both technical and non-technical leadership.
  • Proven ability to build strong relationships and influence principal engineers across teams.
  • Experience in software and infrastructure architecture with a focus on security.
  • Extensive experience with common code and network vulnerabilities, their impacts, and remediation strategies.
  • Background in writing code in at least one programming language, such as Python, Golang, or C#, and a scripting language like Bash or Python.
  • Applied knowledge of cryptography, PKI, TLS, and practical implementations.
  • Experience with threat modeling and Secure Software Development Life Cycles.
  • Experience operationalizing security best practices in large-scale internet environments.
  • Familiarity with network and server hardware, as well as Linux and Windows security.
  • Industry-leading compensation package
  • Excellent medical, dental, and vision coverage
  • A rewarding 401k program
  • Flexible vacation policy (varies by exemption status)
  • Roflex - Flexible and supportive work policy
  • Roblox Admin badge for your avatar
  • Free catered lunches five times a week and several fully stocked kitchens with unlimited snacks
  • Onsite fitness center and fitness program credit
  • Annual CalTrain Go Pass
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Application Engineer Resume Examples
Application Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service