Application Security Architect

Hi! Thanks for checking out our Application Security Architect position.

Who are we?

Riverside empowers companies to record podcasts and video interviews remotely in a studio-quality. Since launching, we have experienced rapid growth and are trusted by customers such as Spotify, NY Times, NBC, CNN and iHeartMedia.

Our product is all tech - and our R&D team creates elegant solutions for complex engineering challenges.

What’s an Application Security Architect at Riverside?

As an AppSec Architect at Riverside you’ll act as a key player and mentor across r&d and throughout the company in ensuring the security of our application. You’ll be the face of the company in any external facing discussion around security with our large enterprise customers. Riverside is SOC 2 type 2 certified and also ISO 27001 certified.

Tachles, What you’ll be doing:

Provide security standards, requirements, and guidelines for securing our products
Hands-on development of security features and improvements
Take a part in the development lifecycle and integration of security features into all phases of software design and development
Provide support for sales activities and customers' security questionnaires
Review architecture and design for new products, features, and services
Identify, facilitate, and execute together with R&D and devops remediation of application and cloud security exposures and vulnerabilities
Own the security tools and technologies used in the company
Work closely with R&D and Product to enhance application security on all layers
Creatively teach and mentor R&D about security best practices and how to write secure code
Perform periodic application level penetration tests and reviews on major features and versions
Coordinate third-party penetration tests and security assessments
Manage and execute our security and risk roadmap

Requirements:

What you bring to the table

3+ years of experience in application security within R&D
Deep knowledge in web & application security
Proficiency in JS, Node.js, Typescript
Proficiency with Cloud technologies
Experience with secure coding techniques
Stay up to date with the latest security technologies, and attack techniques
Enjoy mentoring
Excellent communication skills, ability to be customer-facing and focal point in the company
Excellent English, both verbal and written

If the above description sounds like you but you don’t check every box, please don’t hesitate to apply!