Lead Application Security Engineer

About Virtualitics

Virtualitics is a leader in AI decision intelligence, transforming enterprise and government decision-making. Our AI-powered platform applications, built on a decade of Caltech research, enhance data analysis with interactive, intuitive, and visually engaging AI tools. We transform data into impact with AI-powered intelligence, delivering the insights that help everyone get to impact faster. Trusted by governments and enterprises, Virtualitics makes AI accessible, actionable, and transparent for analysts, data scientists, and leaders alike, driving significant business results.

We are proud to be included in:

BuiltIn Best Places to Work in LA 2022, 2023, 2024

Inc. Best Places to Work 2024

Globee Golden Bridge Awards 2024

Our team is excited to find our next Lead Application Security Engineer to join the company

Role: Lead Application Security Engineer

What you will be doing:

• Build a deep understanding of Virtualitics’s software development life cycle, software supply chain, build pipelines, delivery mechanisms and configuration management.
• Manage third-party vulnerabilities and implement a process to track them from discovery to resolution within required SLAs.
• Enhance our SDLC program while serving as a subject matter expert regarding secure development and deployment practices.
• Drive implementation and usage of engineering security tools - static, dynamic code analysis, dependency checks, container scanning, and code licensing compliance.
• Provide mentorship and guidance to team members and foster a positive team culture.

What we are Looking for:

• 7+ years of experience in the field of Application Security, Product Security, Security Engineering or related security roles.
• A deep understanding of application architecture and design principles, ability to effectively identify vulnerabilities across multiple programming languages
• Development or software engineering experience and proficiency with one or more high-level programming languages and frameworks (e.g. Python, JavaScript, C#/.NET, Flask, React, Blazor etc.).
• Strong knowledge of one or more cloud service providers (e.g. AWS, GCP, Azure), and technologies including Docker, Kubernetes, etc.
• Demonstrated experience collaborating with product managers and engineers to infuse security throughout the development lifecycle.
• Demonstrated experience integrating common security tools (Wiz, Snyk, Github Advanced Security, etc) with vulnerability management and ticketing platforms.
• Security clearance may be required

What are our Preferred requirements:

• Knowledge of FedRAMP or IL5 security controls and implementations.
• Strong opinions on how to build vulnerability management into a highly regulated & containerized tech stack.

What are some Valued skills:

• Communication
• Technical Leadership
• Self-driven

Salary range $150,000 - $220,000

What We Offer You

We are a team of ambitious individuals who are passionate about creating a revolutionary software company. At Virtualitics, you will have a significant career development opportunity and a chance to contribute to one of the fastest growing startups in Southern California. Our benefits include highly competitive pay, equity, and fully paid health / vision / dental insurance for you + dependents, unlimited PTO and flexible work from home schedule (or hybrid if you are located in the Los Angeles area)!

Virtualitics is committed to building a company where every individual can bring their full impact and reach their fullest potential. Our mission is to build a diverse and inclusive environment where talented people of all cultures, ages, perspectives, opinions, education, backgrounds, races, gender identity, religions, orientations, abilities, and beliefs can grow and thrive with Virtualitics.