Sr. Software Engineer - Security Enablement

Company: First American Financial Corp.
Location: Santa Ana
Posted on: November 6, 2024

Job Description:

Who We AreJoin a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For list for nine consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.What We DoRemote Work WelcomeBe part of a transformative team that is shaping the way First American builds and delivers world-class technology products that fuel the real estate industry. We are looking for the best-of-the-best technology experts who will envision, design, build, and deliver innovative solutions that provide exceptional experiences and lasting value to our customers.First American seeks a Senior Software Engineer - Security Enablement to help validate that our services, applications, and tools are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios.What You'll Do:

• Enhance the security posture of our applications throughout their lifecycle.
• Conduct application security design reviews to identify potential vulnerabilities and recommend mitigation strategies.
• Collaborate with development teams to integrate security into the software development lifecycle.
• Provide guidance and mentorship to developers on secure coding practices and security architecture.
• Contribute to the continuous improvement of security processes and practices within the organization.
• Perform security code reviews of source code changes and advise developers on remediating vulnerabilities and following secure coding practices.
• Review code for vulnerabilities and then remediate these (either alone or with Software Engineers).
• Security training and outreach to internal development teams.
• Stay abreast of emerging security threats, vulnerabilities, and technologies to continuously improve application security measures.
• Collaborate with product management and other cross-functional teams to iteratively design, develop, and validate outcome-driven technology solutions.
• Join a team determined to achieve ambitious goals, provide regular feedback, and drive continuous improvement.What You'll Bring:
  • 5+ years' experience as a software engineer.
  • 1+ years of application security experience.
  • Experience in vulnerability discovery and code-level security reviews.
  • Strong background in application security best practices and familiarity with common vulnerabilities (e.g., SSRF, race conditions, privilege escalations, etc.).
  • Familiarity with and ability to understand business objectives, business context, and security risk.
  • Ability to mentor and influence software engineers to share knowledge and improve quality.
  • Ability to unblock yourself and help accelerate the team in achieving their goals.Ideally, you will also have experience with:
    • Proficient in one of the following: C# (.NET Core, .NET Framework), TypeScript & React / Node.js, or Golang.
    • Working within a highly regulated industry such as Financial Services or Healthcare.
    • In-depth knowledge of AWS or Azure and associated tools.
    • Experience with security tools such as Burp Suite, Fortify, Vercode, etc.
    • Effective communication skills, both verbal and written, with strong relationship, collaborative, and organizational skills.Pay Range: $145,000 - $175,000 AnnuallyThis hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements, and geographic location.What We OfferBy choice, we don't simply accept individuality - we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it's the right thing to do, but also because it's the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term. Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.
      #J-18808-Ljbffr

Keywords: First American Financial Corp., Pico Rivera , Sr. Software Engineer - Security Enablement, IT / Software / Systems , Santa Ana, California