Contrast Security named to Inc.'s “Best Workplaces of 2020” Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development, to operations, to production. As a Senior Data Engineer, you have the unique opportunity to apply your technical talents building a Data Engineering team from the ground up. You come with the relentless desire to improve the practice of data engineering and its impact on the business every day. As a technical lead reporting directly to the team’s Senior Manager, you are responsible for helping design and develop the technical aspects of Contrast’s data ecosystem. This includes data pipelines, schema management, analytics data storage, and related metrics/KPIs. You maintain a vigilant eye on the business data needs while developing the technology to answer the most important questions of internal and external stakeholders. An ideal candidate can help organize around problems, define outcomes, plan achievement and execute by writing scalable code. As such, you must be an excellent communicator in written word as well as in code. Traveling to an off-site event may be happen on an annual basis but this can be a fully remote position anywhere in the U.S.
Roles and Responsibilities
- Conduct basic and applied research on important and challenging problems in application security
- Help define and drive research projects, either on your own or in collaboration with others on the team
- Engage with Contrast’s product teams and customers to promote and seek out new research initiatives
- Support the gathering of language, library, license and application security research
- Process emerging threats, such as evaluating externally found CVEs and risks
- Development and presentation of content associated with the security research through conference speaking and/or blogging
- Provide tier-3 support for reported incidents and escalation of security findings review
- Ability to perform vulnerability and penetration testing assessments
- Support and drive the security evaluation of third party software and tool
About You
- You have a software background in Java or .NET (plus if you have experience with Python, NodeJS, Ruby and/or GoLang)
- You understand the OWASP Top 10 and SANS/CWE Top 25
- You have experience with ethical hacking and vulnerability management reporting
- You have knowledge of cloud hosting environments (AWS, Azure, GCP, OCI, etc)
- You have strong communication skills
- You ask questions, let others know when you need help, and tell others what you need
- You have 5+ years of experience in industry application security research or direct application
What We Offer
- Competitive Compensation
- Medical, dental, and vision benefits
- 401(k) plan
- Flexible paid time off