Senior Software Engineer, Etsy
Application Security
$175-205k
+ Equity + Bonus
More information about location
eCommerce platform for handcrafted goods
Job no longer available
eCommerce platform for handcrafted goods
1001+ employees
Job no longer available
$175-205k
+ Equity + Bonus
More information about location
1001+ employees
Company mission
To keep human connection at the heart of commerce.
Role
Who you are
- 5+ years of experience in manual penetration testing
- Deep appsec expertise
- Excellent written communication
- Experience in professional software development
- Application security subject matter expertise, including
- Web application security
- Mobile application security
- Authentication/Authorization
- Cryptography
- Experience threat modeling large-scale distributed systems
- Experience with security architecture and security by design
- Track record of contributing to public bug bounties and CVEs a strong plus
- Experience with finding vulnerabilities in PHP codebases a plus
What the job involves
- Etsy is seeking a Senior Security Engineer to join our Application Security team
- As part of the larger Security and Privacy Engineering org, we help product teams build secure software and develop and maintain security critical parts of our web application
- We do this by partnering at the design stage for larger features, reviewing code, developing threat models, performing pentests, and leading security initiatives
- This role is focused on the security assessments part of the program
- In it, you’ll be tasked with discovering impactful vulnerabilities that can’t be found with off-the-shelf tools or scanners
- It will require you to develop in depth threat models and dive deep into our tech stack and code bases
- You’ll work with engineering teams to develop mitigation strategies for the vulnerabilities you discover, and we will also rely on your expertise to provide security feedback to new project and service proposals
- This is a full-time position reporting to the Engineering Manager - Application Security
- Mentor other application security engineers
- Lead threat modeling exercises
- Select penetst targets and lead pentest
- Guide teams through remediation discussions
- Research new attack vectors and technologies
- Develop proof of concept exploits for novel findings
- Perform security focused code reviews
- Support development teams during the design phase of development
- Identify opportunities where we can address classes of vulnerabilities or areas of risk
- Of course, this is just a sample of the kinds of work this role will require! You should assume that your role will encompass other tasks, too, and that your job duties and responsibilities may change from time to time at Etsy's discretion, or otherwise applicable with local law
Otta's take
Theo Margolius
COO of Otta
Created as an alternative to more corporate eCommerce sites, Etsy is a peer-to-peer (P2P) website where users buy and sell handmade crafts, vintage items, art, and photography. The online marketplace works similarly to Amazon and eBay, only with an emphasis on unique items rather than mass-produced merchandise.
Since its IPO in 2015, it has managed to hold its own in an increasingly competitive eCommerce industry, including from Amazon's handmade section that launched in 2015. Further, by providing sellers with ownership over pricing and branding, the site is attractive for those wanting to set up a business on an established platform.
However, the seller-side of Etsy is not without problems. The recent hike in transaction fees and the introduction of mandatory marketing fees for artists with high turnovers has created significant discontent amongst sellers. Etsy must reconcile these issues to ensure artists continue to operate on the same scale within the platform. It plans to attract shoppers with its message of extraordinary, handmade and affordable products.
Insights
Few candidates hear
back within 2 weeks
8% employee growth in 12 months
Company
Funding (last 2 of 6 rounds)
May 2012
$40m
LATE VC
Aug 2010
$20m
SERIES E
Total funding: $91.7m
Company benefits
- Equity (offers vary by country)
- Performance bonuses
- Paid gender neutral parental leave
- Adoption and family planning
- Back-up care
- Volunteer time off
- Donation matching
- Employee resource groups
- Global virtual events
- Employer paid health benefits
- Fitness benefits
- Wellness programming
- Mental health benefits
- 401K matching/Pension contributions
Company values
- We commit to our craft - Our work has the power to change lives. That’s why we strive to learn continuously and excel at what we do
- We minimize waste - Time, resources, and energy are precious, so we focus only on what will have the greatest impact
- We embrace differences - Diverse teams are stronger, and inclusive cultures are more resilient. When we seek out different perspectives, we make better decisions and build better products
- We dig deeper - The best solutions to meaningful challenges are rarely easy or obvious. We stay curious, balance our intuition with insights, and decide with confidence
- We lead with optimism - We believe in our mission, and we believe in each other. We see the world as it is, set ambitious goals, and inspire one another with generosity of spirit. Together, we reimagine what is possible
Company HQ
Downtown Brooklyn, NY
Articles
Founders
Josh Silverman
(CEO)Previously senior executive at eBay, CEO of Shopping.com, CEO of Skype and President of Consumer Products & Services at American Express.
People progressing
Became the Director of International Strategy and Operations after a year and 2 months as a senior manager in the division. After nearly 5 years in that role, they became Director of Marketing and International Strategy & Operations, and six months after that was promoted to Senior Director in that same department.
Salary benchmarks
We don't have enough data yet to provide salary benchmarks for this role.
Submit your salary to help other candidates with crowdsourced salary estimates.
Diversity & Inclusion at Etsy
- Diversity is a priority at Etsy, owned by everyone:
- A diverse workforce is critical to Etsy’s success—it makes us a stronger, better, more resilient and more relevant company. We have an inclusive culture and each of us actively creates opportunities for underrepresented groups to join, thrive and advance at Etsy
- We welcome all perspectives:
- As individuals, we invite a variety of viewpoints and experiences—especially when they conflict with our own. We encourage questions more than statements, and provide a safe environment in which all employees can surface and discuss concerns
- We measure and share openly:
- We contribute to broader progress by evaluating, iterating and transparently communicating our successes and failures internally and externally
Share this job
View 28 more jobs at Etsy