Software Security Engineer Job Description Template

Job Brief

We are looking for a skilled Security Engineer to analyze software designs and implementations from a security perspective, and identify and resolve security issues. You will include the appropriate security analysis, defences and countermeasures at each phase of the software development lifecycle, to result in robust and reliable software.

Responsibilities

Implement, test and operate advanced software security techniques in compliance with technical reference architecture
Perform on-going security testing and code review to improve software security
Troubleshoot and debug issues that arise
Provide engineering designs for new software solutions to help mitigate security vulnerabilities
Contribute to all levels of the architecture
Maintain technical documentation
Consult team members on secure coding practices
Develop a familiarity with new tools and best practices

Requirements

Proven work experience as a software security engineer
Detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation
Software development experience in one of the following core languages: Ruby on Rails, Java, Javascript and .NET
Adequate knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols
Interest in all aspects of security research and development
BS degree in Computer Science or related field

What does Software Security Engineer do?

A Software Security Engineer is responsible for identifying and mitigating vulnerabilities and security risks in software systems. On a day-to-day basis, their tasks may include:

Conducting security assessments: Reviewing code, architecture, and design specifications to identify security flaws and vulnerabilities in software applications or systems.
Performing risk assessments: Assessing potential threats and vulnerabilities, analyzing impact severity, and recommending appropriate risk mitigation strategies.
Developing and enforcing security standards: Collaborating with development teams to establish secure coding practices, reviewing code for compliance, and ensuring adherence to security standards.
Implementing security controls: Designing, implementing, and configuring security features and controls, such as authentication mechanisms, encryption protocols, and access control mechanisms.
Conducting security testing: Performing various types of security testing, including vulnerability scans, penetration testing, and code reviews, to identify and remediate potential weaknesses.
Collaborating with cross-functional teams: Working closely with software developers, system administrators, and other stakeholders to integrate security into the development lifecycle and provide necessary guidance and support.
Monitoring and incident response: Monitoring software systems for security breaches, promptly investigating any suspicious activities, and responding to security incidents by implementing necessary countermeasures.
Keeping up with industry trends: Staying updated on the latest security vulnerabilities, threats, and best practices in software security to ensure continuous improvement and proactive defense.
Documentation: Maintaining comprehensive documentation of security procedures, guidelines, and processes.
Providing security awareness and training: Educating development teams and stakeholders on security best practices, emerging threats, and promoting a security-conscious culture within the organization.

Jobs similar to Software Security Engineer

System Security Engineer job description

Python Developer job description

Database Developer job description

DevOps Engineer job description

Senior Software Engineer job description

Senior .NET Developer job description

Software Engineer job description

Technical Architect job description

Software Security Engineer Job Description Examples

It Security Engineer• OneStream Software

Remote, USA OneStream Software LLC

Benefits Offered $100,000 - $125,000 Benefits/Variable Comp./Equity – Range may vary based on experience...

Employment Type Full-Time

About The Job

We are looking for a red team focused Security Engineer to join our Information Security team to help safeguard our organization’s systems. This individual will be responsible for improving our security posture...

Software Engineer, Security• OpenSea

OpenSea is the first and largest marketplace for non-fungible tokens, or NFTs. Applications for NFTs include collectibles, gaming items, domain names, digital art, and many other items backed by a blockchain. OpenSea is an open, inclusive web3 platform, where individuals can come to explore NFTs and connect with each other to purchase and sell NFTs. At OpenSea, we're excited about building a......

Security Software Engineer• Veridise Inc.

Title: Security Software Engineer

Job type: Full time...

Location: Remote

Overview: Veridise is developing cutting-edge tools for guaranteeing correctness of DeFi software and blockchain infrastructure. We are looking for security engineers who can collaborate with clients to advise them on the security of their source code.

Description: Veridise is developing cutting-edge tools for guarant...

Software Security Engineer• Elevate

Job Title:

Software Security Engineer...

Job Description:The Software Security Engineer will evaluate, implement and operationally maintain tooling and systems which keep development processes secure, you will help resolve vulnerabilities in code and will drive automation. The candidate will perform application Static and Dynamic application security testing (SAST and DAST), software composi...