Job description

The Puma Security team is looking for a software security engineer to contribute to the Puma Scan secure code analysis platform. This position would be responsible for writing security rules, working with clients to gather requirements, providing product support, assisting with code reviews, remediation and more.

Puma Scan provides secure code analysis for development teams writing .NET C# applications in Visual Studio. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings,preventing security bugs from entering your applications. Puma Scan also supports scanning C# applications from the command line and continuous integration systems such as Azure DevOps, Jenkins and Team City.

Candidates will work side by side with experienced principal security engineers on a variety of projects and tasks:

  • Building demonstration applications and test suites in C#, NodeJS and JavaScript with vulnerable code examples

  • Writing security analyzers to identify vulnerabilities in C#, NodeJS and JavaScript

  • Documenting technical product documentation and how to guides

  • Developing new features and enhancements for the Puma Scan web site

Candidates are expected to have experience in:

  • Programming in .NET C# and NodeJS

  • Front end JavaScript frameworks (Angular / React)

  • Product/application security vulnerabilities, exploitation and secure coding techniques (OWASP Top 10, OWASP ASVS)

  • Markdown

  • Naturally creative, curious and inspired to learn new things

Compensation Range

The range for this role varies from $50,000 - $75,000USD per year.