Application Security Engineer Washington, D.C. Tech Ops Full Time Apply for this job Our Information Security team is responsible for the security of Palantir’s people and infrastructure around the globe. As a member of the Information Security team, your technical expertise is second only to your professionalism and passion for security and technology in general. You’re a highly motivated team player that thrives on solving problems and tackling new challenges. As an Application Security Engineer, you'll work with engineering teams across Palantir to establish and improve the security of Palantir’s entire suite of products at every step of the development lifecycle. You will act as both a builder, creating tools to help our engineers write more secure code, and a breaker, performing penetration tests of internally developed applications. Requirements * Ability to communicate technical security concepts to diverse audiences, both orally and in writing * Strong familiarity with OWASP top 10 web vulnerabilities and the ability to explain them * Expert with Burp, ZAP or another intercepting proxy * Knowledge of the role of static and dynamic analysis in a robust security testing suite * Knowledge in Python, Java, or Ruby Preferred * Experience in evaluating the choice and implementation of cryptography * Experience evaluating the security of mobile applications on iOS and Android * Experience evaluating the security of applications written in Node.js or Go * Experience with web-app fuzzing * Experience with threat modeling, especially STRIDE Apply for this job
Read Full Description