ImpactImpact
As a Staff Engineer on our Application Security team, you will be instrumental in leading and driving secure practices across Shipt. You'll be responsible for development practices across our engineering organization and building software systems to make secure development easier. In this role, you will design, implement, and scale security controls and processes that protect Shipt's users, empower Shipt developers, ensure the safety of our applications, and protect user data. As a Staff Engineer, you are expected to operate at a high level of technical proficiency, provide technical leadership, mentor other team members, and influence security culture at all levels of the company.
If you are enthusiastic about cybersecurity, enjoy sharing your knowledge, and thrive on personal and professional growth, you're exactly the kind of engineer we're looking for. Our Shipt Cybersecurity team is growing, and we're looking for talented individuals who can work both independently and collaboratively, with a passion for mentoring and developing their colleagues. You will gain valuable experience collaborating with cross-disciplinary teams, contributing to the protection of customers and shoppers nationwide
What You'll Need to Be Successful- You have extensive software engineering experience with focus on developer tooling or infrastructure
- 5+ years programming skills in Go, Python, and/or JavaScript/TypeScript
- Experience with WAF
- You have familiarity with containerization concepts and tools
- You have experience working and deploying with cloud platforms
- You have experience building APIs, automation tools, and developer-facing services
- You have experience with Infrastructure as Code tools, such as Terraform
- You have strong system design and architecture skills
- You have experience translating business requirements into practical development solutions
- You have led the design, implementation, and validation of secure coding practices, application security controls, and integration of security platforms.
- You have an understanding of tools and techniques leveraged to breach networks, server systems, cloud workloads or applications
Nice to Haves:- You have a CISSP, OSWE, CSSLP, GWAPT, GWEB, OSCP, CompTIA Security+ certification
- You have familiarity with open-source software and dependency management
- You have experience managing, configuring and troubleshooting CDN & WAF technologies
Pay Range: $95,800- $180,000Please note that the salary range above is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location.Skills & EducationThis list includes key skills used in this job but is not inclusive of all skills needed for the role. Please see any required education below.
Application Security, Python (Programming Language), Web Application Firewall (WAF)
Bachelor's Degree or equivalent experience | Required
Work ArrangementShipt considers candidates located near a Shipt office or workspace in Birmingham, San Francisco, or Minneapolis to be hybrid, which means that they have the flexibility to work from home (with leader approval) or at a Shipt office in order to facilitate the ability to innovate, collaborate, and spark team connections. In-office expectations will vary by role and leader. Certain roles may require in-office presence on a full-time basis. Please work with your recruiter to learn more about the classification of this role.
Employees (and eligible family members) are covered by medical, dental, vision and more. Employees may enroll in our company's 401k plan. Employees will also be eligible to receive discretionary vacation for exempt team members, paid holidays throughout the calendar year and paid sick leave. Other compensation includes eligibility for an annual bonus and the potential for restricted stock units based on role.
