Application Security Engineer, Whatnot

• We’ve found that low ego, a growth mindset, and leaning into action and high impact goes a long way here
• As our next Application Security Engineer you should have a minimum 5+ years experience in application security, software engineering, or SRE at scale
• Bachelor’s degree in Computer Science, a related field, or equivalent work experience
• 5+ years of experience performing security-focused code reviews
• Development experience required with one or more of the following languages: Python, Elixir, or JavaScript

• Support and consult with product and development teams in the area of application security, including threat modeling and appsec reviews
• Assist teams in reproducing, triaging, and addressing web / mobile application security vulnerabilities
• Support the bug bounty program and the preparation of security releases
• Assist in development of security patterns, processes and automated tooling that prevent classes of security issues

• Wellness: Health, dental, vision, and life insurance plans. We also cover some of the cost for your dependents as well.
• Compensation: Full-time Whatnauts receive equity, a WFH stipend to support your remote workspace and a monthly stipend to dogfood the app.
• Recharge: Flexible Time Off policy, holiday week off at the end of year, and paid parental leave after 1 year with us.
• Flexibility: Remote-first work culture. We provide a working environment where you're in charge of your time and schedule.

Total funding: $749.2m

The collectible toy market is large, and Whatnot has built a unique social platform that enables sellers to use livestreams to showcase their products and reach more buyers. The company’s focus is on collectible toys, some of which are rare and can cost thousands of dollars, and has also expanded to sports cards.