Overview
Position Title: Application Security Engineer
Company: Bulb
Location: Halesowen, UK
Job Description:
As an Application Security Engineer, you’ll join a team and play a key role in contributing to Bulb’s wider goals and helping our members by securing key systems (by the way, we refer to our customers as members).
Responsibilities:
- Lead the cross-technology security champions network to improve security practices across our products and services
- Lead the threat modelling process for new products within Bulb
- Pair with developers on security code reviews, imparting secure development practices while you find and help remediate vulnerabilities
- Track the security of Bulb’s third-party libraries and managing the integration of urgent vulnerability mitigations
- Work on our internal development frameworks to build systemic solutions for vulnerability types and to shield developers from places where third-party code wasn’t designed with safe defaults
- Manage external code reviews for high-exposure projects
- Integrate security analysis (SAST, DAST) into our continuous integration process and help developers work with it
- Build security-critical product infrastructure like key management for column-level control of data access by microservices
Requirements:
- 3-5 years work experience in application security
- Professional development in Typescript/Node.js and Python 3
- Web and service level security vulnerabilities and bug-class-killing mitigations
- Building effective controls into a Continuous Integration pipeline
- Auditing code for security and communicating vulnerabilities and mitigations
- Technologies such as GraphQL, Koa, React, JWT, GCP, Kubernetes, Docker
- Library design, particularly in seeing libraries as a designed user interface for developers
- Deploying and tuning Static Application Security testing (SAST) eg. Shift Left, Vera code
- Deploying and tuning Dynamic Application Security testing (DAST) eg. Vera code, Nets parker
- Artifact repository managers and dependency management eg. Arti factory, renovate
- Ability to thrive and succeed in a dynamic, fast growing, startup environment
- Experience with training and coaching development teams
- Able to act as a cheerleader and champion for security at Bulb
- Strong written and verbal communication skills
About Bulb
Bulb is a startup energy supplier that provides 100% renewable electricity and gas to homes and businesses across the UK. We offer energy at a fair price, that’s simple to get and simple to manage.