• Security Engineer - Application Security Jobs in United States Of America

  • Uber Inc.
  • United States Of America, Usa
  • Save Job
  • 0 - 3 Years
  • Posted : above 1 month

Job Description:

Security Engineer - Application Security Engineering Security, Safety, Security & Insurance in Seattle, WA

At Uber, we ignite opportunity by setting the world in motion We take on big problems to help drivers, riders, delivery partners, and eaters get moving in more than 600 cities around the world

We welcome people from all backgrounds who seek the opportunity to help build a future where everyone and everything can move independently If you have the curiosity, passion, and collaborative spirit, work with us, and lets move the world forward, together

About the Role

We are seeking a talented Security Engineer to join our Vulnerability Discovery team in Seattle, WA The new member of our team will focus on providing high-quality vulnerability reports, creating one-click POCs for known vulnerabilities, as well as building out and scaling a regression testing platform to ensure that vulnerabilities that get fixed, stay fixed

What Youll Do

Work with our bug bounty triagers to validate incoming reports
Provide root cause analysis of triaged vulnerabilities
Create proof-of-concept scripts, where applicable, to enable one-click vuln reproduction
Provide on demand security guidance to Uber engineers around the world to expedite vuln fixes
Review vulnerability fixes and ensure security gaps are closed once and for all
Build out and scale a platform to continuously run regression tests against known vulnerabilities

What Youll Need

Hands-on Web-security experience discovering and fixing IDOR/XSS/SSRF/CSRF/RCE/etc vulnerabilities
Programming skills in at least one of Go, Java, Python, NodeJS, etc
Ability to communicate ideas and proposals concisely
Ability to distill complex security problems and drive towards creative solutions
Passion to do the right thing and have a global impact

Bonus Points If

Experience performing threat modeling, design and code reviews to assess security implications and requirements for the introduction of new systems and technologies
Prior bug hunting and/or bug triage experience
Experience scripting proof-of-concepts for known vulnerabilities

About the Team

We are a team of 10X engineers that lead the principled vulnerability discovery initiative at Uber We ensure code running in production adheres to company-wide security standards and is devoid of known security vulnerabilities

To that end, we build and deploy top-notch taint tracking systems leveraging control-flow and data-flow analysis techniques to scan and report new security findings in over 5,000 services

In addition, we crowdsource security intelligence via our Bug Bounty program, red team exercises, as well as manual and automated security audits

Finally, we leverage research-quality CFG and DFG principles to codify the latest security breakthroughs into custom queries, which we then deploy across our fleet of advanced security scanners As a result, we 10X the ROI of our manual labor Our constantly increasing corpus of security queries enables us to perform automated, systematic and comprehensive security analysis across all of Ubers applications and services

At Uber we dont just accept differencewe celebrate it, we support it, and we thrive on it for the benefit of our employees, our products and our community Uber is proud to be an equal opportunity workplace We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Hotel/Travel/Tourism/Airlines/Hospitality
Functional Area : Production/Manufacturing/Maintenance/Packaging
Role : Production/Manufacturi ng/Maintenance
Salary : Not Mentioned
Deadline : 03rd Dec 2019

Key Skills:

Company Profile:


Taking these free online tutorials can help you get your next job

People who search this job also searched for the following Keywords

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd DMCA.com Protection Status