Security Engineer • Senior

Who you are

You have 5+ years of experience in application security, with a strong background in securing products throughout the software development lifecycle. Your expertise includes identifying vulnerabilities early and implementing security measures that promote a 'shift left' culture within development teams. You possess advanced technical skills in security tooling and processes, and you are adept at communicating complex security concepts to non-technical stakeholders.

Your experience includes developing automated security solutions and conducting thorough security assessments. You are familiar with industry standards and frameworks such as OWASP, and you have hands-on experience with tools like Burp Suite for vulnerability scanning and analysis. You thrive in collaborative environments, working closely with engineering and product teams to ensure security is integrated into every aspect of the development process.

You are a proactive problem solver who enjoys researching the latest security threats and trends. Your ability to influence and guide teams in adopting best practices for security is one of your key strengths. You understand the importance of continuous security monitoring and are committed to maintaining the integrity of customer-facing products and internal tools.

Desirable

Experience with cloud security and familiarity with DevSecOps practices would be a plus. Knowledge of regulatory compliance standards such as GDPR or PCI-DSS is also beneficial. You may have certifications in security such as CISSP or CEH, which further demonstrate your commitment to the field.

What you'll do

In this role, you will act as the technical lead for high-priority product security initiatives, ensuring the timely delivery of impactful security measures. You will be a key advisor to the overall strategy and roadmap of the Product Security Program, participating in the expansion and maturation of the Navan Secure Software Development Lifecycle (S-SDLC) program. Your responsibilities will include reviewing product designs for security defects, performing threat modeling, and recommending effective remediations.

You will collaborate with cross-functional teams to integrate security into the application development process, conducting training sessions to promote a security-first mindset among developers. Your role will involve conducting security-related research and assessments, as well as developing custom automated security and anti-fraud solutions tailored to the needs of the organization.

You will also be responsible for ensuring the continuous security of Navan's customer-facing products and internal tools, proactively discovering security vulnerabilities and advising on risk remediation based on your research findings. Your contributions will significantly impact the overall security posture of the organization, helping to build and scale a robust application security program.

What we offer

TripActions offers a competitive salary range of $127,500—$230,000 USD, reflecting your experience and expertise in the field. You will have the opportunity to work in a dynamic environment where your contributions directly influence the security of our products. We encourage you to apply even if your experience doesn't match every requirement, as we value diverse perspectives and backgrounds in our team.

You will be part of a collaborative culture that prioritizes security and innovation, with opportunities for professional growth and development. Join us in our mission to secure our products and protect our customers while working with cutting-edge technologies and methodologies.