The Impact of a Lead Application Security Engineer at Coupa: We are looking for an extremely talented Lead Software Engineer to join our Application Security Team. You will be part of a global agile group that is responsible for building the best in class SaaS platform, deployment infrastructure, and services. The position will require a candidate to design, develop, maintain, and scale Coupa's security features and application security tooling.
\n What You'll Do:Expand the application security landscape at CoupaBeing a hands-on developer is a key responsibility in this roleStrong software development skills in languages such as Java, .Net and PythonAbility to perform code reviews and mentor junior team membersPassion for building security-focused features that perform at scaleTrack vulnerability reports and contribute security fixesDesign and implement application changes to meet security compliance requirementsParticipate in development and operational design reviews with a focus on application securityEvaluate new security technologies and make recommendations to strengthen our applicationBe a champion of Coupa's Secure Software Development Lifecycle (SSDLC) methodologiesWork closely with the Operations Security team to review and define our best practices What You Will Bring to Coupa: Minimum of 2 years of experience as a Lead Software EngineerExpertise in one or more of the following languages: Java, .Net, PythonExpertise in developing secure web applications or microservicesKnowledge of common application security issues (e.g. OWASP Top 10, SANS Top 25)Knowledge of identity management tools, SAML, OIDC, and SSO integrationsKnowledge of OAuth, client-server authentication, server-server authenticationKnowledge of different crypto-algorithms, such as DES, RSA, HMAC, SHA, etc.Experience designing, estimating, and leading the implementation of complex systemsProven understanding of software development best practices and design patternsDemonstrated knowledge of security/access control, scalability, high availability, and concurrencyExperience working with SQL and NoSQL databasesProven ability to work independently and take projects from design to development to deliverySelf-motivated, passion for learning, strong communication skillsBachelor's or Master's degree in Computer Science (or equivalent), or equivalent experience Extra Consideration: Knowledge of compliance requirements: HIPAA, PCI, SOX, FedRAMP, etcPresented security-related topics at conferences or meet-upsOpen source project contributions
\nThe estimated pay range for this role is as follows:
•Based in California: $171,275 - $201,500
•Based in Colorado: $147,050 - $173,000
•Based in New Jersey: $171,275 - $201,500
•Based in New York: $171,275 - $201,500
•Based in Washington: $155,550 - $183,000
The successful candidate's starting salary will be determined based on permissible, non-discriminatory factors such as skills, experience, and geographic location within the state.