Our mission is to accelerate the adoption of cryptocurrency so that you and the rest of the world can achieve financial freedom and inclusion. Founded in 2011 and with over 4 million clients, Kraken is one of the world's largest, most successful bitcoin exchanges and we're growing faster than ever. Our range of successful products are playing an important role in the mainstream adoption of crypto assets. We attract people who constantly push themselves to think differently and chart exciting new paths in a rapidly growing industry. Kraken is a diverse group of dreamers and doers who see value in being radically transparent. Let's change the way the world thinks about money! Join the revolution!
The Application Security Engineer will be responsible for integrating security into the development of applications. The engineer will work closely with Kraken's Product and software development teams to threat model, vulnerability scan and penetration test the early software, system and architecture while identifying the required control points in the application stack. The engineer will also closely work with developers to diagnose, document and remediate security vulnerabilities. The engineer will also be responsible for evaluating, recommending and implementing security related software on the SDLC. Further, the engineer must be comfortable leading and training developers in secure best practices.
Requirements3+ years of Development experienceProficient in a primary development languageOrganized, responsive problem solverStrong understanding of application security frameworksThorough knowledge of OWASP Top 10 & ASVSUnderstanding of Security Code Reviews and Strong Self-started able to operate independently Excellent oral/written presentation skills with the ability to teach and communicate effectively to developers and leadership.Understanding Continuous Integrations / Testing / DeliveryKnowledge of JIRA, Burp, Confluence, SAST, DAST