View on Hacker News
Roles
Compensation
Base annual salary target: $120000 - $150000
- Salary period
- yearly
Tech stack
Location
US, NL
Work setup
- Employment
- full-time
- Level
- Senior
- Remote policy
- REMOTE (US/NL).
- Remote scope
- timezone-limited
Role details
Responsibilities
- Support and promote product security strategy
- Safeguard the integrity of products throughout their lifecycle
- Partner with delivery teams to integrate security practices and activities into their pipelines
- Optimize security workloads and testing tools
- Foster collaboration with development teams
- Champion secure development practices across the organization
- Conduct security architecture reviews and threat modeling sessions with development teams using STRIDE methodology
- Perform application security assessments across our security verification service offerings including SAST/DAST analysis, manual code review, API security testing, authentication/authorization testing, and vulnerability validation
- Execute hands-on security testing of applications,APIs, mobile applications,agentic solutions,and cloud-native services
- Analyze and validate security findings from automated security tools and provide actionable remediation guidance
- Build and maintain security verification tooling, scripts, and automation to improve assessment efficiency and coverage
- Develop custom security testing scripts and proof-of-concept exploits to validate vulnerabilities
- Contribute to security tooling integration within CI/CD pipelines
- Create reusable security patterns, code snippets, and reference implementations for common security controls
- Contribute to security training and enablement sessions on secure coding practices, common vulnerabilities, and threat modeling
- Provide just-in-time security guidance during sprint planning, design reviews, and code reviews as requested
- Translate security findings into developer-friendly remediation guidance with code examples and implementation patterns
- Contribute to SSDLC policy development and security requirements documentation grounded in OWASP SAMM practices
- Guide the evolution of the SSDLC to address emerging risks and controls introduced by AI‑assisted development
- Support the standardization of security assessment intake, execution, and reporting processes via ServiceNow
- Maintain security verification documentation including testing methodologies, checklists, and runbooks
- Track and report on security assessment metrics including coverage, finding severity distribution, and remediation timelines
Requirements
- Highly skilled and experienced
Application
Tell ’em you found out via HN!
- Portfolio
- unclear
- GitHub
- unclear
- Cover letter
- unclear
- Apply flow
- ats
Company context
help pet owners worldwide keep their companion animals healthy and happy, and ensure safe drinking water for billions
- Product
- Veterinary diagnostics and water testing
- Industry
- Veterinary diagnostics and water testing
Description
IDEXX is a global leader in veterinary diagnostics and water testing, helping pet owners worldwide keep their companion animals healthy and happy, and to ensure safe drinking water for billions. We’re seeking a highly skilled and experienced Senior Application Security Engineer to join our product security team. We’re also hiring a Cloud Security Architect. At IDEXX you will play a pivotal role in supporting and promoting our product security strategy. Your mission: safeguard the integrity of our products throughout their lifecycle. You’ll partner with delivery teams to integrate security practices and activities into their pipelines. With your expertise, we’ll optimize security workloads, testing tools, foster collaboration with development teams, and champion secure development practices across the organization. Tell ’em you found out via HN!
Similar jobs
-
Loading similar jobs...