Our Cybersecurity team is here to protect the data of millions of customers globally. We strive to adopt innovative solutions to problems and apply concepts of attack driven defense to improve our security posture. We design solutions that mitigate risk rather than check boxes.
We are seeking a passionate Application Security Architect to join our growing Product Security team. This individual will help build security into our software development process and partner with our engineering teams to secure our diverse product ecosystem.
You will guide our product and engineering teams with your security expertise to make more confident product decisions. You'll take ownership of building an application security program that makes the secure decision the easier option.
Guide product and engineering teams to building secure features through security architecture design reviews and threat modeling
Evangelize secure coding practices across all engineering teams
Build security into continuous integration and delivery pipelines
Use attack driven techniques to defend our applications and systems by discovering weaknesses in our web and mobile application portfolio
Participate in incident response and vulnerability remediation efforts.
Manage relationships with external security researchers
Build a security conscious engineering culture
Take a leadership role in driving security and privacy initiatives
Participate in recruiting & training new team members as we build out our Product Security team
Experience integrating security controls into agile software development processes
Familiarity with containerization and protecting cloud-native architectures
Minimum of 5 years of experience with any combination of the following: penetration testing, threat modeling, secure software development, application security
Experience with multiple programming languages (e.g., Scala, Java, Node, C#, Swift)
Substantial knowledge of web application attacks and defense strategies (e.g., the OWASP Top 10 and CWE Top 25)
Understand the people aspects of security and enjoy collaborating with others to build secure things
Contributions to the security community (e.g., research, CVEs, bug bounties, open source projects)
Knowledge of public cloud services a plus (preferably AWS, GCP)
Regulatory regimes like PCI, GDPR, HIPAA, CCPA, etc.
We hire only the best people. Here are the benefits to being top-notch:
The opportunity to work with some of the best innovators in the industry
Generous healthcare coverage.
401(K) with company match.
Paid Time Off
Paid parental leave
Annual wellness allowance
Weight Watchers is an equal opportunity employer. Weight Watchers does not discriminate on the basis of sex, race, color, creed, national origin, marital status, age, religion, sexual orientation, gender identity, gender expression, veteran status, or disability.