Stack Overflow

SeniorInformationSecurityEngineer

Anywhere - Remote Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Senior candidates.

The Brief

“Senior Information Security Engineer at Stack Overflow. Skills: Information Security Engineering, Secure Application Design, Threat Modeling, Vulnerability Management, Cloud Security (Azure, GCP), Network Security, Secure Coding Practices, Security Architecture. Reduce risk. Mentor Security Analysts”

Industry & Context.

Problems you'll solve

discovering, and resolving issues before they become problems.

What They're Looking For.

Must Have

Experience in best practices and secure builds for Windows, Linux, MacOS, Azure Cloud, Networking, and software development, Experience with Splunk or similar SIEM, Experience with Nexpose or similar vulnerability scanning tools, Experience integrating security tools to work as an ecosystem, Solid experience in threat modeling and identification techniques, Ability to work with developers to resolve security issues, Experience in code reviews, vulnerability detection, and root cause analysis, 25+ years of experience in web application security, secure application design and architecture, threat modeling, secure coding, and cryptography

Nice to Have

Containers, Cloud, Servers, Networking, DNS, PaaS & SaaS, OWASP Top 10, Python, Terraform, Puppet, C#, ASP.NET, MacOS, Windows

What You'll Do.

Mentor Security Analysts

Represent the security team in cross-functional projects

Build an SecOps program

Create an infosec ecosystem

Contribute to security requirements in designing

and deploying large-scale services and platforms

Conduct security architecture reviews of the application stack

Design and develop platform-level solutions to promote security-related initiatives and improvements

Review source code for potential security issues

Recommend and implement fixes for security issues

Provide specific risk assessment and remediation guidelines for developers and business owners

Document and disseminate security guidelines for common security issues

and security baselines

Contribute to SOC2 and ISO 27001/27701 audits

Work with developers to provide security guidance

Actively promote improving the security culture and education within the organization

How You'll Work.

Team & Collaboration

Represent our team in cross functional projects; Work with developers to provide security guidance; Pairing with team members to learn and develop skills

Communication Scope

verbal communication; written communication

Full Job Description

Every developer has a tab open on Stack Overflow. We are one of the most popular websites in the world - a community-based space focused on increasing productivity, decreasing cycle times, accelerating time to market, and protecting institutional knowledge. Innovation is at the heart of everything we do. We embrace collaboration, transparency, and believe in leading with empathy; creating an environment where every Stacker knows they belong. We embrace that the unique contributions and points of view of all Stackers contribute to our success. We are a Best Company to Work For, in addition to being recognized for Best Company Leadership, Best Company Happiness, Best Company Perks and Benefits, Best Company Work-Life Balance, Best Company Compensation, and Best Company Outlook. We are a remote-first company with Hiring HUBs based in the US, Canada, UK, and Germany. Stack Overflow is growing fast, and our technology needs just keep getting bigger. We’re looking for an Information Security Engineer to join our existing team and help us support engineering, lines of business, and our customers. As a Senior Information Security Engineer, you’ll bring your expertise to reduce risk, mentor Security Analysts, and represent our team in cross functional projects. You’ll also be helping us build an SecOps program and create an infosec ecosystem We’re looking for someone with experience in best practices and secure builds for Windows, Linux, MacOS, Azure Cloud, Networking, and software development, but we don’t expect you to know every part of our stack coming in, so we’ll pair you with other members of the team to learn and develop your skills across our entire environment. What you’ll work on: Lead Contribute to security requirements in designing, developing, and deploying large-scale services and platforms Conducting security architecture reviews of the application stack, including applications built on cloud and emerging technologies Design and develop platform-level solutio

Free ATS check

Applying for this Senior Information Security Engineer role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 72 detected · ranked by frequency

Secure Application Design ×6

Threat Modeling ×6

Terraform ×5

Puppet ×5

AzureAD ×5

Carbon Black ×5

WorkspaceOne ×5

Cisco ×5

Fortinet ×5

OpenVPN ×5

WAF ×5

SASE ×5

Zero Trust ×5

code reviews ×4

vulnerability detection ×4

root cause analysis ×4

web application security ×4

secure architecture ×4

secure coding ×4

cryptography ×4

Python ×4

ASP.NET ×4

Containers ×4

Cloud ×4

Servers ×4

Networking ×4

DNS ×4

PaaS ×4

SaaS ×4

OWASP Top 10 ×4

Azure ×4

Google Cloud Platform ×4

BEHAVIOURAL

collaborationtransparencybelongingcuriosityownershipurgencydriveself-motivatedproactive

Role Details

Experience 5–10 yrs

Level Senior

Work Mode Remote-first

Category information-security

AI-Extracted Insights

Domain Areas

web-application-securitysecure-application-designsecure-architecturethreat-modelingsecure-codingcryptographyiso-27001iso-27701

Certifications

ISO 27001ISO 27701SOC2

ANONYMOUS · UNFILTERED

What do employees actually say about Stack Overflow?

Real rants from real employees. Read before you apply.

Read Company Rants →