About The Role
Pagoda's growing security team seeks an Application Security Engineer to help us enhance the security of our cutting-edge blockchain applications. Partnering closely with our engineering and product teams, you'll play a vital role in applying your security expertise throughout the software development lifecycle.
What You’ll Be Doing
- Work alongside engineers to integrate security best practices into design reviews, threat modeling, code reviews, and penetration testing.
- Participate in secure code review and penetration testing efforts, honing your skills with hands-on experience under the guidance of senior team members.
- Contribute to deep-dive security reviews of our web, mobile, and API products to ensure they adhere to secure design principles.
- Participate in security training and share your learnings with the broader engineering team to foster a culture of security awareness.
- Assist in incident response to gain valuable real-world experience and help protect Pagoda's systems and data.
- Gain exposure to SAST/DAST tools (Snyk, Stackhawk), bug bounty analysis, and risk assessment, building a foundation for future growth.
What We’re Looking For
- 5+ years of experience in application security or a related field, with a passion for learning and growing your skillset.
- A solid understanding of security fundamentals and common vulnerabilities (e.g., XSS, CSRF, SQL Injection).
- A knack for identifying potential risks and collaborating with engineers to find effective solutions.
- The ability to effectively communicate security concepts to both technical and non-technical audiences.
- A collaborative mindset and a willingness to learn from and teach others
We’d Love If You Have
- Familiarity with one or more programming languages (Python, JavaScript, Rust) to aid in code review and vulnerability analysis.
- An interest in blockchain technology and a desire to contribute to the security of the Web3 ecosystem.
Here’s What Our Interview Process Looks Like
Our interviews take place via Zoom and typically consists of the following stages:
- Recruiter Call
- Hiring Manager Call
- 1st Round
- Bug Bounty Interview
- Technical Assessment with Engineering
- Final Round
- Meet with CTO
- Pagoda Values Interview
Compensation
The base salary range for this role is $153,000 - $170,000. This reflects the minimum and maximum range across all US locations. This does not include bonus, incentives, or benefits.
The actual base pay is dependent upon many factors, such as: leveling, relevant skills, and work location. If you are based outside of the US, there are other geographic considerations that may impact your final compensation. Your recruiter can share more about the compensation and benefits applicable to your preferred location during the hiring process.