Staff Security Engineer
AIX Ventures
Aisera is a leading provider of AI Copilot solutions, utilizing AiseraGPT and Generative AI to facilitate business transformation and drive revenue growth through a self-service model. Aisera’s AI Copilot uses industry and domain-specific LLMs to deliver human-like experiences and auto-remediate requests through AI workflows. With 400+ integrations and 1200+ prebuilt workflows, customers achieve 75%+ automation and 90% cost reduction.
Aisera has received numerous recognitions, including the following: FastCompany Best Workplaces for Innovators; Inc 5000 Award for Fastest Growth; Forbes AI50; EY Entrepreneur of the Year 2023; CNBC Upstart 100 Top Startup; Gartner Cool Vendor; Red Herring Top 100 Global Innovator; CIO Innovation Startup Award; CIO Review Top ITSM Solution; and Silicon Review 50 Most Admired Companies.
Our seasoned founding team has led companies through several prior successful startups and acquisitions. We give our employees a lot of responsibility and ownership of their work, and we hire people from a very wide range of backgrounds and experience. Our team members operate with a high degree of empathy for our customers and each other.
Join our dynamic and fast-paced team and be a part of our journey to revolutionize the industry.
The Role
Aisera is at the forefront of AI-driven solutions, helping enterprises enhance productivity and security. We prioritize innovation and are committed to building secure and reliable products for our customers. We are seeking a highly skilled Staff Security Engineer to join our dynamic team.
As a Staff Security Engineer at Aisera, you will play a pivotal role in ensuring the security of our applications and development processes. You will collaborate closely with development teams to integrate security best practices into the Software Development Lifecycle (SDLC) and drive the adoption of DevSecOps principles across the organization.
This role is based out of our Palo Alto, CA office, and an Onsite interview is required as part of the process.
Responsibilities:
Application Security:
- Conduct thorough code reviews to identify and mitigate security vulnerabilities.
- Perform regular vulnerability assessments and penetration testing on applications.
- Develop and maintain secure coding standards and guidelines for development teams.
DevSecOps:
- Integrate security tools and processes into CI/CD pipelines to automate security checks.
- Collaborate with DevOps teams to ensure security is embedded in all stages of development and deployment.
- Provide security guidance and training to development and DevOps teams.
Security Implementation:
- Implement robust security measures throughout the SDLC to protect applications from threats.
- Develop and deploy security monitoring and response mechanisms for applications in production.
- Stay up-to-date with the latest security threats, trends, and technologies, and apply this knowledge to improve our security posture.
Collaboration and Guidance:
- Work closely with cross-functional teams to address security concerns and ensure compliance with security standards.
- Mentor and guide junior security engineers and developers on security best practices.
- Participate in incident response and provide expertise during security investigations.
Basic Qualifications:
- 5+ years of experience in application security, DevSecOps, or a related role.
- Strong understanding of secure coding practices, vulnerability management, and penetration testing techniques.
- Hands-on experience with security tools such as static and dynamic analysis tools, vulnerability scanners, and CI/CD security integrations.
- Proficiency in scripting and programming languages (e.g., Python, Java, JavaScript).
- Experience with Kubernetes and Terraform.
- Experience with one or more cloud providers: AWS, Azure, or Google Cloud.
- Excellent communication skills, with the ability to convey complex security concepts to technical and non-technical audiences.
- Relevant certifications (e.g., CISSP, OSCP, CEH) are a plus.
- Bachelor's degree in Computer Science, Information Security, or a related field.
Aisera is Global and our success draws upon the diverse viewpoints, skills and experiences of our employees. We are proud to be an equal opportunity employer and are committed to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, marital status, disability, gender identity or veteran status.
#LI-NV1
At Aisera, we strive to design equitable and explainable compensation programs. Base pay within the range is ultimately determined by a candidate's skills, expertise, or experience.