Senior Security Engineer, Application Security

Описание вакансии

About Crunchyroll

Founded by fans, Crunchyroll delivers the art and culture of anime to a passionate community. We super-serve over 100 million anime and manga fans across 200+ countries and territories, and help them connect with the stories and characters they crave. Whether that experience is online or in-person, streaming video, theatrical, games, merchandise, events and more, it’s powered by the anime content we all love.

Join our team, and help us shape the future of anime!

About The Role

Our team is looking for an experienced security engineer with the passion and skills to support the evolution of our corporate information security program. This role will be responsible for ensuring we are designing and evolving security technologies in consideration of employee needs, supporting long-range strategy, cross-functional projects, and initiatives across Crunchyroll globally. This role will require a strong partnership across Crunchyroll's teams, including Legal, Engineering, IT, People, Workplace Experience, Trust & Safety, as well as third party contractors, and suppliers.

This is a hybrid position and can be based in any of our offices; Dallas, San Francisco, or Los Angeles. We work a hybrid schedule, in-office three days a week; Tuesday, Wednesday, and Thursday.

This position reports to our Head of Information Security.

About You:

• You have 8+ years of experience in Information Security
• You have experience as a Security Engineer that implements and maintains security solutions
• You have experience with responding to security incidents
• You have a strong fundamental understanding of security best practices
• You have a strong fundamental understanding of secure coding best practices
• You have a strong fundamental understanding of web and mobile application security
• You have demonstrated experience maintaining effective working relationships across all levels of an organization and with a variety of external constituents
• You have the ability to partner with cross-functional teams to identify product and application vulnerabilities and help drive prioritization and remediation efforts
• You are curious and want to grow in a dynamic, security-focused environment
• Pluses

+ You have security certification(s)

+ You have experience in environments that are consumer facing

+ You have experience identifying and protecting against fraud & abuse exploits

+ You have knowledge of data privacy laws and regulations, including GDPR, CCPA

+ You have experience with static code analysis and open source dependency monitoring tools such as Snyk

+ You have experience with dynamic assessment security testing using tools such Burp Suite or OWASP ZAP

+ You have experience with Web Application Firewalls such as Cloudflare and AWS WAF

+ You have experience with CI/CD tooling such as Github Actions or Jenkins

+ You have experience with cloud environments such as GCP or AWS

+ You have advanced experience working with TypeScript, Go, or Python

+ You have a BS in Computer Science or a related or have equivalent experience

A Day In The Life Of a Security Engineer:

• Working with a focus to level-up security at Crunchyroll
• Implementing security technology and controls
• Responding to security incidents and coordinating response across multiple teams
• Reviewing, recommending, and implementing security architecture standards
• Partnering with teams across the company to monitor and implement security standards
• Supporting and improving processes related to the Vulnerability Management Program
• Lead initiatives such as threat modeling with the goal of implementing the appropriate proactive security measures
• Supporting the GRC and Privacy Programs as needed
• Staying up to date on technology trends and security best practices
• Creating reports and documentation to support the security program

Why you will love working at Crunchyroll

In addition to getting to work with fun, passionate and inspired colleagues, you will also enjoy the following benefits and perks:

• Receive a great compensation package including salary plus performance bonus earning potential, paid annually.
• Flexible time off policies allowing you to take the time you need to be your whole self.
• Generous medical, dental, vision, STD, LTD, and life insurance
• Health Saving Account HSA program
• Health care and dependent care FSA
• 401(k) plan, with employer match
• Employer paid commuter benefit
• Support program for new parents
• Pet insurance and some of our offices are pet friendly!

#LifeAtCrunchyroll #LI-Hybrid

About our Values

We want to be everything for someone rather than something for everyone and we do this by living and modeling our values in all that we do. We value

• Courage. We believe that when we overcome fear, we enable our best selves.
• Curiosity. We are curious, which is the gateway to empathy, inclusion, and understanding.
• Kaizen. We have a growth mindset committed to constant forward progress.
• Service. We serve our community with humility, enabling joy and belonging for others.

Our commitment to diversity and inclusion

Our mission of helping people belong reflects our commitment to diversity & inclusion. It's just the way we do business.

We are an equal opportunity employer and value diversity at Crunchyroll. Pursuant to applicable law, we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Crunchyroll, LLC is an independently operated joint venture between US-based Sony Pictures Entertainment, and Japan's Aniplex, a subsidiary of Sony Music Entertainment (Japan) Inc., both subsidiaries of Tokyo-based Sony Group Corporation.

Questions about Crunchyroll’s hiring process? Please check out our Hiring FAQs:https://help.crunchyroll.com/hc/en-us/articles/360040471712-Crunchyroll-Hiring-FAQs

Please refer to our Candidate Privacy Policy for more information about how we process your personal information, and your data protection rights: https://tbcdn.talentbrew.com/company/22978/v1_0/docs/spe-jobs-privacy-policy-update-for-crpa-dec-21-22.pdf

Please beware of recent scams to online job seekers. Those applying to our job openings will only be contacted directly from @crunchyroll.com email account.