Application Security Engineer

#TeamNextdoorNextdoor is where you connect to the neighborhoods that matter to you so you can belong. Our purpose is to cultivate a kinder world where everyone has a neighborhood they can rely on.Neighbors around the world turn to Nextdoor daily to receive trusted information, give and get help, get things done, and build real-world connections with those nearby — neighbors, businesses, and public services. Today, neighbors rely on Nextdoor in more than 315,000 neighborhoods across 11 countries.Meet Your Future NeighborsAs an Application Security Engineer (focusing on DevSecOps) you will be responsible for monitoring Nextdoor’s enterprise and product core platforms/systems and managing security tools and capabilities. This role requires an understanding of security threats, vulnerabilities, and the organizational best practices required to mitigate them. The ideal candidate will have a proactive mindset, staying ahead of potential security issues, and solving security challenges with practical solutions. At Nextdoor, we offer an inclusive work environment. We embrace a hybrid experience, enabling connectedness while providing a flexible experience for our valued employees.  The Impact You’ll MakeIn the role of Application Security Engineer, you will enable developers to build secure applications and infrastructure at Nextdoor. You will collaborate with engineers to establish secure-by-default practices and application security monitoring, striking a balance between “shift left” and “shift right” security approaches, while embedding security into fast-moving development processes.Your responsibilities will include providing critical application security services such as security reviews, developer security education, and incident response. Additionally, you will lead engineers who champion security and reliability, helping to shape security practices across Nextdoor’s evolving platform through new tools and processes.Your responsibilities will include: Continuously monitor security infrastructure, identify suspicious activitiesUtilize data and security tools to analyze and respond to security alertsLead and coordinate incident response efforts by executing the incident response strategy through incident remediation and closureMonitor and maintain vulnerability reporting and bug bounty programsTriage vulnerability and threat notifications to determine priority and necessary remediationConduct regular security audits and vulnerability assessments to identify threats and reduce riskEvaluate, implement and maintain security controls across devices and cloud environmentsWork closely with IT, DevOps, and Cloud Infrastructure to integrate security practices and toolsBuild integrations, and implementations of technologies to support security operationsScript and automate integrations, detections, and security reportingChampion security by providing awareness training for new hires and employeesStay informed about emerging threats and vulnerabilities, and update security measures accordinglyMaintain detailed and up-to-date documentation of security procedures, policies, and protocolsEnsure compliance with relevant regulations and standards (e.g., GDPR, HIPAA, ISO 27001)Assist with internal and external security auditsParticipate in in-person Nextdoor events, trainings, off-sites, volunteer days, and other team building exercisesBuild in-person relationships with team members and contribute to the KIND culture that Nextdoor valuesWhat You’ll Bring To The TeamExperience with scripting languages (e.g., Python, Bash), APIs, and integration for automation of security tasks.5+ years of experience in a security operations and/or vulnerability management role.Get a deep understanding of Nextdoor’s platform, developer processes, CI/CD integrations, and current mechanisms for security and configuration management. Lead the development and implementation of secure-by-default solutions across engineering. Serve as an SME and conduct threat modeling on new and existing products with engineering. Design and lead developer security training to enhance design and coding best practices. Maintain automated security testing tools and scripts within CI/CD pipelines such as SCA, SAST, DAST, and CNAPP. Evaluate and implement next generation tools to embed security in Development processes. Identify top threats across products and services and prioritize remediation efforts. Empathize with the full spectrum of our customers and our engineers by advocating for effective solutions that scale with the needs of our business and our customers. Foster security champions across engineering and product and enhance the shared security program. Participate in the on-call rotation for security and product incident response.Coordinate with internal teams to respond to incidents swiftly and effectively.Document incidents, response actions, and lessons learned to improve future responses.Bachelor’s degree in Computer Science, Information Security, or a related field.Excellent communication and teamwork abilities.Models Nextdoors values including Earn Trust Everyday, Invest in Customer, Customer Obsessed, Experiment and Learn Quickly, and Act Like an Owner.Experience with macOS MDM and cloud-native environments, (e.g. AWS or GCP) is required.PreferredExperience with security cloud-based microservices infrastructure and IaaCExperience with IdPs, SSO, and Identity and Access ManagementThreat driven or offensive security mindset with practical defense experienceExperience building dashboards for security metrics and cross-org security postureData analytics, data engineering, data science, or ML/AI experienceHands-on certifications (e.g. OSCP, Certified Ethical Hacker, SANS) and/or demonstrated code projects. Please share your github or public code samples with us! Offensive Security Certified Professional (OSCP)Certified Ethical Hacker (CEH)GIAC Security Certifications (e.g. GSEC, GCIH, GCIA, GWEB, GWAPT, GPEN, GMOB)AWS Security CertificationsRewardsCompensation, benefits, perks, and recognition programs at Nextdoor come together to create one overall rewards package.The starting salary for this role is expected to range from $135,000 to $170,000 USD on an annualized basis, or potentially greater in the event that your 'level' of proficiency exceeds the level expected for the role. Compensation may also vary by geography.We also expect to award a meaningful equity grant for this role. With equal quarterly vesting, your first vest date would be within the first 3 months of your start date.Overall, total compensation will vary depending on your relevant skills, experience, and qualifications. We have you covered! Nextdoor employees can choose between a variety of great health plans. We cover 100% of your personal monthly premium for health, dental, and vision – and provide a OneMedical membership for concierge care.At Nextdoor, we empower our employees to build stronger local communities. To create a platform where all feel welcome, we want our workforce to reflect the diversity of the neighbors we seek to serve. We encourage everyone interested in our purpose to apply. We do not discriminate on the basis of race, gender, religion, sexual orientation, age, or any other trait that unfairly targets a group of people. In accordance with the San Francisco Fair Chance Ordinance, we always consider qualified applicants with arrest and conviction records.For information about our collection and use of applicants’ personal information, please see Nextdoor's Personnel Privacy Notice, found here.