Application Security Engineer

Who Are We? 
We’re not just a company; we’re a global force. Fiercely committed to ensuring that everyone, everywhere, can live their lives digitally safe. Our family of brands – Norton, Avast, LifeLock, Avira, AVG, ReputationDefender and CCleaner – unite the brightest minds, the sharpest tech and the most diverse thinking to protect over 500 million people. And we’ve built an inclusive workplace, where your well-being is a priority because true success comes from a place of balance and authenticity. When you're thriving, you’re unstoppable. So, bring us your bold ideas and passion that refuses to quit. The digital world isn’t some distant reality – it's the world we live in, and we’re ready for it. If you’re ready to push boundaries and be part of something bigger, join #TeamGen.

How We Work:

Are you the kind of technical contributor who wants to influence how an organization builds a world class Application Security program? Do you enjoy solving multifaceted technical challenges with a focus on collaboration and team work? We're looking for a skilled technical contributor to do just that. You will be on the forefront of our software development activities and ensuring we produce the best possible outcomes to ensure security and privacy of our millions of users.

Mission and Goals:

The Application Security team at Gen is responsible for the tools, process, policies, and technical leadership to build best practices for software development. We work closly with our developer and release engineering partners to deliver high quality, high fidelity findings, training, guidance, and tools. Additionally we provide outreach to external security researchers via our bug bounty program. We're a multi-cultural team that values team work, technical acumen, autonomy, and critical thinking.

Objectives:

• Perform security-focused code reviews. 

• Support and consult with product and development teams in the area of application security, including threat modeling and application security reviews. 

• Assist teams in reproducing, triaging, and addressing application security vulnerabilities. 

• Support the bug bounty program. 

• Support the preparation of security releases. 

• Assist in development of security processes and automated tooling that prevent classes of security issues. 

Competencies:

• Able to work well with software development teams. 

• Experience identifying security issues through code review. 

• Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner. 

• Familiarity with some common security libraries and tools (e.g., static analysis tools, proxying / penetration testing tools). 

• Familiarity and ability to explain common security flaws and ways to address them (e.g., OWASP Top 10). 

• Basic development or scripting experience and skills.  

• A basic understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols). 

• Written and spoken English at least on B2 level. 

What We Can Offer:

• Annual bonus scheme.

• Unlimited PTO (paid time off), flexible working hours & home office.

• The chance to join a major global tech company listed on the S&P 500.

• Opportunity to learn and work with the best in the Digital Security industry.

• Cafeteria points are provided by Benefit Plus (meal plan, pension insurance, travel, free time activities, multisport card, and much more).

• Tuition reimbursement for job-related courses.

• Learning & Development plan.

• Sustainable home improvement bonus.

• Mac/Windows laptop and mobile phone.

#LI-VP1

Gen is proud to be an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive and accessible environment for all employees. All employment decisions are based on merit, experience, and business needs, without regard to race, color, national origin, age, religion, sex, pregnancy (including childbirth or related medical conditions), genetic information, disability (physical or mental), medical condition, marital status, sexual orientation, gender identity or gender expression, military or veteran status, or any other consideration made unlawful by federal, state, or local law. Gen strictly prohibits unlawful discrimination based on such protected characteristics and seeks to recruit the most talented candidates from diverse cultures and backgrounds. 

We also consider employment-qualified individuals with arrest and conviction records. In addition, we will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Learn more about pay transparency. 

Gen complies with all anti-discrimination laws. 

To conform to U.S. export control regulations, applicant should be eligible for any required authorizations from the U.S. Government.