Senior Application Security Engineer

Who Are We? 
We’re not just a company; we’re a global force. Fiercely committed to ensuring that everyone, everywhere, can live their lives digitally safe. Our family of brands – Norton, Avast, LifeLock, Avira, AVG, ReputationDefender and CCleaner – unite the brightest minds, the sharpest tech and the most diverse thinking to protect over 500 million people. And we’ve built an inclusive workplace, where your well-being is a priority because true success comes from a place of balance and authenticity. When you're thriving, you’re unstoppable. So, bring us your bold ideas and passion that refuses to quit. The digital world isn’t some distant reality – it's the world we live in, and we’re ready for it. If you’re ready to push boundaries and be part of something bigger, join #TeamGen.

How We Work?

Our hybrid work style—2-3 days in the office—gives us the face-to-face time to have creative conversations, meaningful meetings, make quick decisions and build relationships. And it’s flexible enough to give you the space to do your best work.  

Mission and Goals:

• Take initiative and drive changes in our bug bounty program which positions us as the leading authority amongst other programs. 

• Lead and influence cross-functional positive changes across the Security organization. 

• Drive the most difficult or highly complex application security reviews and threat modeling.

• Own documentation and procedures surrounding application security reviews as well as lead by example for what successful application security reviews look like. 

• Have significant ownership in and evangelize security training with development teams. 

• Own documentation and procedures surrounding application security reviews as well as lead by example for what successful application security reviews look like. 

• Integrate threat modeling practices into the Software Development Lifecycle. 

• Train and educate developers and teams in secure coding techniques including use of supporting toolsets and enable them to self service 

• Build and drive program level activities through the use and publication of metrics and dashboards that clearly show program and tool impact and outcomes. 

• Highly effective communicator; well-honed influencing and negotiating skills. 

• Solid problem solving and analytical skills; able to quickly digest issue/problem encountered and recommend an appropriate solution. 

• Serve as mentor to other AppSec team members, providing guidance and support. 

Competencies:

• Familiarity and ability to explain common security flaws and ways to address them (e.g., OWASP Top 10). 

• A basic understanding of network and web related protocols (such as TCP/IP, UDP, HTTP, HTTPS, protocols). 

• You use data to inform and influence decision making. 

• You have strong critical thinking and problem-solving skills. 

• You have the ability to build simple solutions to complex problems. 

• You have the ability to iterate and improve on existing processes and programs. 

• You have a proven ability to create new security programs and deliver successful results. 

• You execute program-level leadership across teams inside and outside of Security. 

• Written and spoken English at least on B2 level. 

#LI-VP1

Gen is proud to be an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive and accessible environment for all employees. All employment decisions are based on merit, experience, and business needs, without regard to race, color, national origin, age, religion, sex, pregnancy (including childbirth or related medical conditions), genetic information, disability (physical or mental), medical condition, marital status, sexual orientation, gender identity or gender expression, military or veteran status, or any other consideration made unlawful by federal, state, or local law. Gen strictly prohibits unlawful discrimination based on such protected characteristics and seeks to recruit the most talented candidates from diverse cultures and backgrounds. 

We also consider employment-qualified individuals with arrest and conviction records. In addition, we will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Learn more about pay transparency. 

Gen complies with all anti-discrimination laws. 

To conform to U.S. export control regulations, applicant should be eligible for any required authorizations from the U.S. Government.