Position: Senior Source Code Auditor - Cybersecurity
Location: Irvine, CA - RELOCATION REIMBURSEMENT AVAILABLE
Compensation: $120,000-180,000 base salary + EOY bonus
One of the world’s leading providers of networking devices and smart home products is currently looking for are looking for 5 highly skilled and experienced Senior Source Code Auditors to join the cybersecurity team. In this role, you will review and analyze source code to identify potential security vulnerabilities, ensure adherence to coding standards, and strengthen the overall security of our applications. You’ll collaborate with development teams, security experts, and stakeholders to provide actionable insights and recommendations for improving code quality and security.
Key Responsibilities:
- Conduct in-depth audits of source code to uncover vulnerabilities, security weaknesses, and inefficiencies.
- Review and analyze code across various programming languages and frameworks, such as Python, Java, C++, JavaScript, Swift, and Kotlin.
- Develop and maintain auditing standards, processes, and tools to ensure consistent, high-quality code reviews.
- Partner with development teams to offer feedback and guidance on secure coding practices and remediation strategies.
- Create detailed audit reports highlighting findings, risks, and recommendations for enhancing code security and quality.
- Stay current with the latest security threats, coding standards, and best practices to continually improve auditing processes.
- Mentor junior auditors, sharing knowledge on auditing techniques, tools, and best practices.
- Collaborate with cross-functional teams to integrate security practices into the software development lifecycle (SDLC).
- Help develop and conduct security training and awareness programs for development teams.
Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
- 5+ years of experience in source code auditing, software development, or application security.
- Strong understanding of secure coding principles, software vulnerabilities, and common attack vectors (e.g., SQL injection, cross-site scripting, buffer overflow).
- Proficiency in multiple programming languages and familiarity with various development frameworks.
- Experience with automated code review tools (e.g., SonarQube, Coverity, Checkmarx, Veracode) and manual code review techniques.
- Excellent analytical and problem-solving skills, with strong attention to detail.
- Effective communication skills for explaining technical concepts to non-technical stakeholders.
- Relevant certifications such as CEH, OSCP, or CISSP are a plus.
Preferred Skills:
- Experience with cloud security and auditing code for cloud-based applications (AWS, Azure, GCP).
- Familiarity with DevSecOps practices and integrating security into CI/CD pipelines.
- Knowledge of regulatory requirements and standards related to software security (e.g., ISO27001, GDPR, PCI-DSS, HIPAA).
Benefits:
- Free snacks and drinks
- Fully paid medical, dental, and vision insurance (partial coverage for dependents)
- 401k contributions
- Over four weeks of PTO annually
- Bi-annual pay increases
- Health and wellness benefits, including free gym membership
- Quarterly team-building events
