Quizlet is hiring a

Sr. Staff Application Security Engineer

New York, United States
Full-Time
About Quizlet:

Inspired by our belief that anyone can learn anything and powered by our own curiosity, we build the smartest tools we can imagine to help students learn.  

Quizlet is the popular, global learning platform and app that millions of students, teachers and everyday people use to study any subject imaginable for school, work or as part of their personal interests -- including two-thirds of high school students and half of all college students in the US. Combining cognitive science and machine learning, Quizlet guides students through adaptive study activities to confidently reach their learning goals. We’re on track to become the undisputed leader in user-generated learning content and engagement, at the scale of YouTube.  

Valued at $1 billion, Quizlet has raised over $60 million in venture capital from investors including Icon Ventures, Union Square Ventures, General Atlantic, Costanoa Ventures, Owl Ventures, and Altos Ventures.  

To serve our global community of learners, our teams tackle lofty technical challenges and design for use cases across cultures and languages. We work hard, act like owners, and collaborate every chance we get. We’re energized by the potential to power more learners through multiple approaches and various tools.


About the Team:

The Security Engineering team is responsible for all aspects of technical security, with the goal of providing all of our employees with the right guidance to help provide a safe environment for our users!

About the Role:

As a senior member of our Application Security (AppSec) wing, you will lead some of our key AppSec initiatives, such as the cultivation of a security-centric culture within the organization. Additionally, you will manage the integration and maturation of security measures within our SDLC. You'll ensure that security is a fundamental aspect of all software development processes and work closely with developers to ensure our security standards and industry best practices are followed for new products.

This is a hybrid role based out of our Denver, Los Angeles, New York, Seattle, and San Francisco office hubs.

In this role, you will:

  • Mature our application security posture by fostering a security culture that includes developing and refining coding standards, partnering with engineering teams, and developing threat models
  • Collaborate with other technical leaders to develop and enforce security policies and standards organization-wide
  • Coordinate with product and development teams to advocate for security-first design in all software projects
  • Perform code reviews with a focus on identifying security issues and ensuring adherence to best security practices
  • Work with external researchers to ensure that findings are mitigated effectively to reduce overall risk
  • Managing the integration and maturation of security measures within our CI/CD systems
  • Act as a mentor to junior security team members, guiding them in their professional development and security projects

What you bring to the table:

  • 8+ years of application security engineering experience
  • 12+ years of experience in software engineering
  • Solid experience in OWASP best practices
  • Proficiency in Javascript or Typescript
  • Proficiency in one or more programming languages such as Golang, Java, Ruby, Python, or PHP
  • Experience in SAST/DAST technologies
  • Excellent written and oral communication skills
  • Open, humble, and candid approach to communication

Bonus points if you have:

  • Experience building a strong security culture
  • Red Team/Penetration testing experience

Compensation, Benefits & Perks:

  • Quizlet is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. Salary transparency helps to mitigate unfair hiring practices when it comes to discrimination and pay gaps.  Total compensation for this role is market competitive, including a starting base salary of $170,000 - $250,000, depending on location and experience, as well as company stock options
  • Collaborate with your manager and team to create a healthy work-life balance
  • 20 vacation days (and we expect you to take them!)
  • Competitive health, dental, and vision insurance (100% employee and 75% dependent PPO, HMO, VSP Choice)
  • Employer-sponsored 401k plan with company match
  • Access to LinkedIn Learning and other resources to support professional growth
  • Paid Family Leave, FSA, HSA, Commuter benefits, Wellness benefits
  • 40 hours of annual paid time off to participate in volunteer programs of choice

We strive to make everyone feel comfortable and welcome! 
We work to create a holistic interview process, where both Quizlet and candidates have an opportunity to view what it would be like to work together, in exploring a mutually beneficial partnership.
We provide a transparent setting, that gives a comprehensive view of who we are!  


In Closing:

We hope you are excited about everything you read so far. We highly encourage you to apply for this position, even if you feel you do not meet all the requirements. Quizlet is always looking for amazing folks that believe in our mission and can contribute to our team in various ways - not merely candidates that fit a certain mold.

We have a bias for action, take initiative, and take pride in delivering results. We make informed decisions whenever possible but are unafraid to take calculated risks on great ideas to promote learning. We embrace challenges and see effort as the path to mastery. We’re constantly seeking opportunities to learn and we embrace curiosity. Quality matters at Quizlet, and we hold the bar high on everything we do.
 
We treat each other with honesty and respect, encourage vigorous debate, and seek critical feedback. We value diversity, humility, transparency, and collaboration as the best paths to our success — as individuals, as a team, and as a company.

Quizlet’s success as an online learning community depends on a strong commitment to diversity, equity, and inclusion. We are actively working to build a team that is representative of the diverse communities we serve, and an open, inclusive work environment where all employees can thrive. As an equal opportunity employer and a tech company committed to societal change, we welcome applicants from all backgrounds. Women, people of color, members of the LGBTQ+ community, individuals with disabilities, and veterans are strongly encouraged to apply. Come join us!

To All Recruiters and Placement Agencies:
At this time Quizlet does not accept unsolicited agency resumes and/or profiles. 
Please do not forward unsolicited agency resumes to our website or to any Quizlet employee. Quizlet will not pay fees to any third-party agency or firm nor will it be responsible for any agency fees associated with unsolicited resumes. All unsolicited resumes received will be considered the property of Quizlet.

Apply for this job

Please mention you found this job on AI Jobs. It helps us get more startups to hire on our site. Thanks and good luck!

Get hired quicker

Be the first to apply. Receive an email whenever similar jobs are posted.

Ace your job interview

Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.

Staff Application Security Engineer Q&A's
Report this job
Apply for this job