Sr. Security Engineer, Application Security

Sr. Security Engineer, Application Security

Coupa Software Inc.

Sr. Security Engineer, Application Security

Details of the offer

Coupa Software (NASDAQ: COUP), a leader in business spend management (BSM), has been certified as a Great Place to Work by the Great Place to Work organization. We deliver Value as a Service by helping our customers maximize their spend under management, achieve significant cost savings and drive profitability. Coupa provides a unified, cloud-based spend management platform that connects hundreds of organizations representing the Americas, EMEA, and APAC with millions of suppliers globally. The Coupa platform provides greater visibility into and control over how companies spend money. Customers small, medium and large have used the Coupa platform to bring billions of dollars in cumulative spend under management. Learn more at Read more on the Coupa Blog or follow @Coupa on Twitter.

Do you want to work for Coupa Software, the world's leading provider of cloud-based spend management solutions? Were a company that had a successful IPO in October 2016 (NASDAQ: COUP) to fuel our innovation and growth. At Coupa, were building a great company that is laser focused on three core values:

1. Ensure Customer Success Obsessive and unwavering commitment to making customers successful.

2. Focus On Results Relentless focus on delivering results through innovation and a bias for action.

3. Strive For Excellence Commitment to a collaborative environment infused with professionalism, integrity, passion, and accountability.

We are looking for a Sr. Security engineer to support Coupas security solutions and frameworks used within the Coupa Cloud platform. This role will involve participating in development and supporting the building blocks to secure the Coupa Cloud for our growing customer base and provide security in compliance with global laws and regulations. This is a hands-on technical role. We need people who are self-motivated, have a strong desire to learn, a can-do attitude, tenacity to solve problems, team players, and results focused. We have an unwavering zeal to make our Customers Successful.

Responsibilities Perform Application Security Testing (Web, Mobile)
Perform Source Code Review
Prepare detailed Threat model based on complex integrations, application workflows, business workflows
Create comprehensive test cases and execute with attention to details
Work with Application Owners, System Owners to prioritize testing
Prioritizing remediation efforts to ensure closure
Perform Vulnerability assessment and penetration testing for underlaying cloud Infrastructure
Participate in design, architectural reviews and highlight security concerns
Report creation and presentation for different audiences: Technical, executives, customers, Government agencies etc.
Plan and coordinate Application Security, Penetration testing requirements per release cycle
Maintain strong awareness of events in the external community to identify threats and opportunities for enhancement.
Provide support to Security Operation teams to perform forensics on security events raised for Applications and underlaying Infrastructure
Work with other security-focused engineers and developers to manage security tools such as web application firewalls, Denial of Service (DoS) protection, intrusion detection systems
Participate in On-Call duties

Requirements: Bachelors Degree with total 5 years of IT experience
3 years of experience in a Security testing or equivalent role
Experience with Threat modeling, Application Security Testing, Penetration Testing
Conversant with Secure coding concepts and Secure code review
Experienced with automating security requirements on Cloud platforms
Conversant with compliance requirements like PCI-DSS, FEDRAMP, CSA CCM, SOC-2 etc.
Familiarity with enterprise security fundamentals within cloud computing and software as a service environment
Understanding of Security integration within DevOps
Good understanding on widely used cloud-based infrastructure such as AWS, Azure and GCP
Strong communications skills, both written and verbal

Coupa offers a very comprehensive and competitive benefit package along with a creative and exciting place to work.

At Coupa, we have a strong and innovative team dedicated to improving the spend management processes of todays dynamic businesses. Its our people who make it happen, and we strive to attract and retain the best in every discipline.

We take care of our employees every way we can, with competitive compensation packages, as well as restricted stock units, an Employee Stock Purchase Program (ESPP), comprehensive health benefits for employees and their families, a 401(k) match, a flexible work environment, no limit vacations for exempt employees, non-exempt employees are on an accrual basis for PTO, catered lunchesAnd much more!

As part of our dedication to the diversity of our workforce, Coupa is committed to Equal Employment Opportunity without regard for race, ethnicity, gender, protected veteran status, disability, sexual orientation, gender identity or religion.

Please be advised, inquiries or resumes from recruiters will not be accepted.

Source: Timesjobs



Xamarin consultant

· Bachelors degree in Computer Science or a related discipline from an accredited college/university · 2-4 years’ experience delivering sophisticated high...

From Enormous It Services Private Limited - Andhra Pradesh

Published a month ago

Software engineer developer

If you are interested in the below mentioned companies, CONTACT HR ESHWAR VISHWANATH Call (or) Ping in Whatsapp at 7483294242 Feel free to contact me at anytime...

From One Degree North Human Resource - West Bengal

Published a month ago

Software developer software engineer

If you are interested in the below mentioned companies, CONTACT HR ESHWAR VISHWANATH Call (OR) Ping in WhatsApp at 7483294242 Feel free to contact me at...

From One Degree North Human Resource - West Bengal

Published a month ago

Trainee test engineer - freshers welcome

1. Sound knowledge in various testing methodologies and types. 2. Requirements understanding. 3. Preparation of testing documents. 4. Testing the applications...

From Allerin Tech Private Limited - Maharashtra

Published a month ago