About JFrog
The software supply chain platform for seamless updates
Key Highlights
- Headquartered in Sunnyvale, CA with 1001+ employees
- $226.5 million raised in Series C funding
- Serves thousands of clients including Dell, Netflix, and Facebook
- Focus on automating DevOps and DevSecOps with REST APIs
JFrog, headquartered in Sunnyvale, CA, is a leading software supply chain platform that automates the release of software updates. Founded in 2008, JFrog has raised $226.5 million in funding and serves thousands of clients, including Dell, Netflix, and Facebook. With a focus on DevOps and DevSecOps,...
🎁 Benefits
JFrog offers an Employee Stock Purchase Plan, comprehensive medical, dental, and vision coverage, a robust retirement plan, wellness programs, and gen...
🌟 Culture
JFrog fosters a culture centered on automation and security, emphasizing the importance of continuous software updates. The company prioritizes collab...
Skills & Technologies
Overview
JFrog is hiring a Senior Application Security Engineer to drive security across the SDLC and empower developers through automation and tooling. You'll work with modern architectures and collaborate closely with various stakeholders. This role requires strong knowledge of secure coding principles and vulnerability management.
Job Description
Who you are
You have a strong background in application security with hands-on experience in driving security across the software development lifecycle (SDLC). Your expertise includes working with modern architectures such as cloud, microservices, and containers, and you understand the importance of integrating security into Agile and DevOps processes. You possess strong communication and collaboration skills, enabling you to work effectively with cross-functional teams.
You are familiar with vulnerability management frameworks and have experience in developing internal security tools and automation processes. Your knowledge of penetration testing is a plus, and you have a keen interest in applying machine learning and AI concepts to enhance security measures. You are proactive in engaging with R&D teams to ensure secure development practices are followed.
What you'll do
In this role, you will contribute to the design and implementation of secure software development lifecycle (SSDLC) practices and automated security controls across the CI/CD pipeline. You will assist in building and operating scalable vulnerability management frameworks for cloud-native services and SaaS products. Your responsibilities will include collaborating with Product, Engineering, DevOps, and Security stakeholders to integrate security into their workflows and processes.
You will also be involved in the development of internal security tools and AI agents that enhance the security posture of JFrog's offerings. Your role will require you to stay updated on the latest security trends and technologies, ensuring that JFrog remains at the forefront of application security. You will work closely with teams to identify vulnerabilities and implement effective remediation strategies, fostering a culture of security awareness throughout the organization.
What we offer
At JFrog, you will be part of a dynamic team that values innovation and collaboration. We offer competitive compensation and opportunities for professional growth. You will have the chance to work on impactful projects that contribute to the security of software delivery for thousands of customers, including many Fortune 100 companies. Join us in our mission to empower developers and secure the software that runs the world.
Interested in this role?
Apply now or save it for later. Get alerts for similar jobs at JFrog.
Similar Jobs You Might Like
Based on your interests and this role
Security Engineer
AppsFlyer is hiring a Senior Application Security Engineer to lead product and application security efforts. You'll drive security design and ensure secure coding practices while collaborating with R&D and Product teams. This role requires expertise in AppSec, DevSecOps, and cloud security.
Security Engineer
HoneyBook is hiring a Staff Application Security Engineer to shape and own their Secure Software Development Lifecycle. You'll work closely with engineering teams to design secure software and manage security tooling. This position requires hands-on experience in application security.
Security Engineer
FloQast is seeking a Senior Application Security Engineer to drive the integration of 'Security by Design' across their product suite. You'll leverage your expertise in software exploitation and defensive architecture to set secure standards and mentor development teams. This role requires significant experience in application security.
Security Engineer
Brex is hiring a Senior Application Security Engineer to identify and respond to security vulnerabilities across their platform. You'll perform code reviews, design reviews, and penetration testing, utilizing tools like Burp Suite and OWASP. This role requires expertise in application security and vulnerability management.
Security Engineer
Pennylane is hiring a Senior Application Security Engineer to enhance the security of their financial operating system for SMEs. You'll work with OWASP and Burp Suite to ensure robust security measures. This position requires significant experience in application security.