Application Security Engineer

4 weeks ago

Tempe, United States Carvana Full time

About Carvana

If you like disrupting the norm and are looking for a company revolutionizing an industry then you will LOVE what Carvana has done for the car buying experience. Buying a car the old fashioned way sucks and we are working hard to make it NOT suck. At Carvana, our customers can hop online to...

  • Search and browse our inventory of over 20,000 vehicles that we own and certify.
  • Narrow down search results using highly intelligent filtering tools/components.
  • View vehicle details, Carfax reports, and 360 rotating studio images for every vehicle.
  • Secure financing in minutes using Carvana’s in-house service or their own bank.
  • Interact with GUI components to easily customize loan length, down payment, and monthly payment.
  • Generate, upload, and eSign all documents online (no ink necessary).
  • Schedule front door delivery or pick up at one of our vending machines.
  • Trade-in their existing vehicle or just sell it to Carvana (no purchase necessary).

For more information on Carvana and our mission, sneak a peek at our company introduction video or learn more about what it’s like to work here from the people that already do.

About the team and position

We are looking for a proactive and experienced Team Lead, Information Security to manage our Application Security Program within our Information Security Team. In this role, you will be responsible for building and maturing our Application Security Program with a strong focus on initiatives designed to “shift left”. This role is crucial in promoting early detection and prevention of security risks in our software development lifecycle.

What you’ll be doing

  • Develop, manage and mature our application security program.
  • Identify and drive prioritization of key initiatives to mature the application security program.
  • Partner with cross-functional stakeholders to drive prioritization of key security initiatives alongside time-sensitive releases and features.
  • Implement “shift left” initiatives that include metrics to measure adoption, compliance, etc.
  • Engineer, design, implement and configure security into the Secure Software Development Lifecycle (SSDLC) to ensure security by design.
  • Introduce and implement security controls into the CI/CD pipeline and partner with engineering teams to increase adoption of automated security controls in CI/CD pipeline.
  • Work independently and collaboratively to discover and remediate security risks and vulnerabilities discovered.
  • Partner with engineering teams to ensure corporate-wide security policies, guidelines and best practices are implemented and promote secure coding practices.
  • Consult and advise development teams by serving as a Subject Matter Expert in the area of application security.
  • Evangelize security with our cross-functional stakeholders and engineering teams through a Security Champions Program.
  • Manage our bug bounty and responsible disclosure programs through the vulnerability management lifecycle.
  • Grow and manage a team of information security professionals over time.

What you should have

  • 7+ years of experience in Information Security.
  • 2+ years of leadership or experience maturing an enterprise-wide security program.
  • Deep technical expertise in web security (e.g. OWASP Top 10, CWE Top 25, etc.).
  • Deep technical proficiency with various build technologies, code repositories, and CI/CD pipeline processes.
  • Strong technical knowledge on scripting languages (e.g. Python, Javascript, Powershell, etc.).
  • Strong understanding of “shift left” concepts, DevSecOps principles and secure coding practices.
  • Exceptional analytical and problem solving skills.
  • Strong technical acumen, communication and influence skills.
  • Self-starter that works with minimal guidance and supervision.
  • Proven experience in recognizing complex problems and developing risk-based solutions to balance security and engineering requirements.
  • Proven ability to reprioritize or adapt with changes to the business needs and requirements.
  • Proven ability to drive influence and change with stakeholders with varying opinions on security topics.

It would be great if you also had

  • Information Security Certification.
  • Multi-Cloud Security Experience.
  • Consulting Experience.
  • Security Champions Program Experience.

What we’ll offer in return

  • Full-Time Salary Position with a competitive salary.
  • Medical, Dental, and Vision benefits.
  • 401K with company match.
  • A multitude of perks including student loan payments, discounts on vehicles, benefits for your pets, and much more.
  • A great wellness program to keep you healthy and happy both physically and mentally.
  • Access to training and conference opportunities as well as great on-the-job training.
  • A company culture of promotions from within, with a start-up atmosphere allowing for varied and rapid career development.
  • A seat in one of the fastest-growing companies in the country.

Other requirements

To be able to do your job at Carvana, there are some basic requirements we want to share with you.

  • Must be able to read, write, speak, and understand English.
  • Requires excellent visual acuity and manual dexterity.

Of course, we’ll make any reasonable accommodations for those with disabilities to perform the essential functions of their jobs.

Legal stuff

Hiring is contingent on passing a complete background check.  This role is not eligible for visa sponsorship.

Carvana is an equal employment opportunity employer.  All applicants receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, marital status, national origin, age, mental or physical disability, protected veteran status, or genetic information, or any other basis protected by applicable law.  Carvana also prohibits harassment of applicants or employees based on any of these protected categories.

Please note this job description is not designed to contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

  • Applications Engineer I

    5 days ago

    Tempe, United States PREMISE ONE Full time

    Job DescriptionJob DescriptionJOB DESCRIPTION The Applications Engineer I assists with the system and device level installation and programming of low voltage solutions including network, security and/or audio-visual systems. This position requires a broad technical understanding of troubleshooting, service, and repair of surveillance, access control,...

  • Applications Engineer I

    5 minutes ago

    Tempe, United States PREMISE ONE Full time

    Job DescriptionJob DescriptionJOB DESCRIPTION The Applications Engineer I assists with the system and device level installation and programming of low voltage solutions including network, security and/or audio-visual systems. This position requires a broad technical understanding of troubleshooting, service, and repair of surveillance, access control,...

  • Director, Security Engineering

    2 days ago

    Tempe, United States ACHIEVE Full time

    Job Description We are seeking a highly skilled and experienced leader for our Security Engineering and Operations team. As the Director of Security Engineering and Operations, you will be responsible for ensuring the security and integrity of our organization's systems, networks, and data. You will play a critical role in designing, implementing, and...

  • Senior Security Engineer

    2 weeks ago

    Tempe, United States Phoenix Staff, Inc. Full time

    Title: Senior Security EngineerLocation: Tempe, AZ (Hybrid 3 days per week onsite) Type: Contract Our client is looking for a Senior Security Engineer to join their team in Tempe, AZ. Responsibilities: Security Operations: Monitor and analyze security alerts and incidents, responding promptly to mitigate potential threats and breaches.Identity and Access...

  • Director, Security Engineering

    4 days ago

    Tempe, United States ACHIEVE Full time

    Director, Security Engineering & Operations Full-time work location: Remote Achieve is a leading digital personal finance company. We help everyday people move from struggling to thriving by providing innovative, personalized financial solutions. By leveraging proprietary data and analytics, our solutions are tailored for each step of our member's financial...

  • Director, Security Engineering

    3 days ago

    Tempe, United States Achieve Full time

    Job DescriptionJob DescriptionCompany DescriptionAchieve is a leading digital personal finance company. We help everyday people move from struggling to thriving by providing innovative, personalized financial solutions. By leveraging proprietary data and analytics, our solutions are tailored for each step of our member's financial journey to include...

  • Security Field Supervisor

    3 days ago

    Tempe, United States Secureone Security Services Full time

    **Position Overview**: **Schedule: Night shift - TBD between hours of 8p-6a (Discussed further in interview)** **Compensation: $21.04-$23.54 Hourly DOE** **POSITION OVERVIEW** - Effectively manage, motivate, coach, and formally evaluate the performance of all assigned staff and officers. - Assist with the development and implementation of measurement and...

  • Dispensary Security Guard

    1 week ago

    Tempe, United States Secureone Security Services Full time

    Job DescriptionJob DescriptionSecureone Security Services is seeking a vigilant full-time Security Officer / Security Guard to join our team. Can you manage access control, patrol properties, and report issues? Do you have an eagle eye? Are you responsible, dependable, and courteous? If you're looking for a top-notch career with a company that promotes...

  • Security Lead Officer

    2 weeks ago

    Tempe, United States Secureone Security Services Full time

    Job DescriptionJob DescriptionSecureone Security Services is currently recruiting additional motivated, responsible leaders to join our leadership team as a Security Lead Officers in Tucson, Arizona!Position Overview:Schedule: Night shift- TBD between hours of 8p-6a (Discussed further in interview)Compensation: $20.54-$22.04 Hourly DOEPOSITION...

  • Security Lead Officer

    2 weeks ago

    Tempe, United States Secureone Security Services Full time

    Secureone Security Services is currently recruiting additional motivated, responsible leaders to join our leadership team as a Security Lead Officers in Tucson, Arizona!Position Overview:Schedule: Night shift- TBD between hours of 8p-6a (Discussed further in interview)Compensation: $20.54-$22.04 Hourly DOEPOSITION OVERVIEWPresent a mature, level-headed...

  • Security Officer

    4 days ago

    Tempe, United States American Security & Investigations Full time

    Job DescriptionJob DescriptionOverviewAmerican Security has been delivering ‘peace of mind’ to our customers for over 45 years! We are an innovative team of safety and security professionals that bring a customer service mindset to all of our duties. Our reputation has been built on customer responsiveness and employee engagement strategies. Job...

  • Flex Security Officer

    1 month ago

    Tempe, United States Secureone Security Services Full time

    Job DescriptionJob DescriptionSecureone Security Services is seeking a vigilant full-time Security Officer / Security Guard to join our team. Can you manage access control, patrol properties, and report issues? Do you have an eagle eye? Are you responsible, dependable, and courteous? If you're looking for a top-notch career with a company that promotes...

  • Security Guard

    2 days ago

    Tempe, United States LionHeart Security Services Full time

    **Full Time** **Must be available weekends/overnights** **Days off vary** **$16.50/hr-$17.50/hr(Suit and tie) +.50/hr Bonus for being on time, every shift, every two weeks.** LionHeart is seeking **Professional Security Personnel.** Our Security Personnel allow us to contribute to our company’s core purpose of providing unparalleled service, systems and...

  • Security Service Technician

    3 days ago

    Tempe, United States Cook Security Group Full time

    Cook Solutions Group, listed as a 100 Best Companies to Work for, is looking for a Full-Time Security Service Technician with excellent customer service, communication, and time management skills, a professional attitude and appearance, and the ability to integrate into our "We Make It Happen!" culture. Responsibilities include, but are not limited to,...

  • Electrochemical Applications Engineer

    4 weeks ago

    Tempe, United States Admiral Instruments Full time

    Job DescriptionJob DescriptionAdmiral Instruments is searching for a full-time Electrochemical Applications Engineer knowledgeable about electrochemistry, electrical metrology, and battery technology. Your efforts will directly benefit thousands of our customers comprised of engineers and scientists in over 40 countries who use our instruments to manufacture...

  • Associate Solutions Engineer

    4 days ago

    Tempe, United States Securitas Electronic Security Inc Full time

    The actual salary offer will take into account multiple factors including skills, experience, education and location. Please note that the salary details listed in role postings reflect the base salary only, not total compensation, which includes paid time off and benefits. Securitas Healthcare, part of Securitas, empowers caregivers to deliver connected,...

  • Application & Support Engineer, Structural

    4 weeks ago

    Tempe, United States Phoenix Analysis And Design Technologies Full time

    Job DescriptionJob DescriptionDescription:Summary: The Application and Simulation Support Engineer provides technical expertise to support PADT’s customers while also assisting PADT’s customers while also assisting PADT's ANSYS sales team through strategic pre-sales and technical scoping activities, utilizing engineering knowledge, simulation...

  • Associate Solutions Engineer

    5 days ago

    Tempe, United States Securitas Electronic Security Inc Full time

    The actual salary offer will take into account multiple factors including skills, experience, education and location. Please note that the salary details listed in role postings reflect the base salary only, not total compensation, which includes paid time off and benefits. Securitas Healthcare, part of Securitas, empowers caregivers to deliver connected,...

  • Mgr, Information Security

    5 days ago

    Tempe, United States Gen Digital Full time

    About Gen: Gen is a global company powering Digital Freedom through consumer brands including Norton, Avast, LifeLock, Avira, AVG, ReputationDefender, and CCleaner. Our combined heritage is rooted in providing safety for the first digital generations. We bring leading technology solutions in cybersecurity, privacy and identity protection to more than 500...

  • Application Penetration Tester

    2 weeks ago

    Tempe, United States Experis Full time

    Our client is seeking an Application Penetration Tester to join their team. The ideal candidate will have effective communication skills with the ability to articulate technical concepts and findings which will align successfully in the organization. Job Title: Application Penetration Tester Location: RemotePay Range: $75.00/hour - $80.00/hour As an...