Career Opportunities with Backblaze

A great place to work.

Careers at Backblaze
Share with friends or Subscribe!

Come join us over here at Backblaze, we're neat! Our approach is guided by honesty, transparency, and a commitment to doing the right thing. If you share the same values and see a position below that excites you, we want to hear from you!


Sr. Application Security Engineer

Department: Engineering
Location: San Mateo, CA

About Backblaze

Backblaze is a public company that makes storing and using data astonishingly easy. When our founding team got together, they committed to helping people save their data. Today, the Backblaze Storage Cloud provides a foundational platform around the world for a broad community of developers, IT generalists, entrepreneurs, and individuals who seek the easy, affordable, trusted solutions we provide.

We’ve managed to nurture a team-oriented culture with amazingly low turnover. Our approach is guided by honesty, transparency, and a commitment to doing the right thing. Our customers are happy, and so are our coworkers: In the most recent “Great Place to Work” survey, 94% of our team rated Backblaze as “a great place to work.” Check out what our employees are saying on Glassdoor!

But while there is a lot to celebrate in our past, there is almost as much opportunity ahead of us. We are seeking a Sr. Application Security Engineer!

What You’ll Do:

  • Work as part of the engineering team to implement secure software
  • Provide leadership and advice on secure architecture, design, and implementation
  • Help with selection of tools and frameworks that can help with improving security
  • Help evangelize security and share your knowledge within Engineering
  • Help to develop relevant application security training for Engineering
  • Improve secure coding practices, application security requirements, and security automation
  • Integrate threat modeling practices into the Software Development Lifecycle
  • Maintain an active understanding of industry practices for secure software development and incident response
  • Fix and/or guide the team on security issues identified by our security bounty program
  • Review, analyze, and evaluate internally developed software to address security requirements
  • Provide vulnerability remediation guidance and mentoring to product development software engineers
  • Develop companywide security projects to remediate security defects in source code, dependencies, and/or other artifacts

The Right Fit:

  • 6+ years of software security engineering experience, including 4+ years of experience doing full-stack development
  • BS/MS in Computer Science or equivalent experience
  • Strong coding skills; preferably in Java, JavaScript and familiarity with front-end frameworks
  • Solid understanding of application security, especially web application security
  • Understanding of cloud security architecture and infrastructure
  • Experience performing security design reviews, threat modeling and defining test requirements
  • In-depth knowledge of OWASP Top 10 and CWE 25, with proven track record and expertise in implementing and integrating remediation strategies
  • Deep understanding of HTTP and SSL/TLS protocols and associated encryption
  • Understanding of modern auth frameworks (OAuth, OpenID, and SSO/SAML)
  • Experience in web application design, penetration testing, and application risk assessment
  • Experience with SAST, DAST, IAST, SCA and fuzz testing tools
  • Experience with implementing secure development practices in to SDLC

    Backblaze Perks:

  • 100% healthcare for family
  • Dental and vision plan
  • Competitive compensation and 401K 
  • RSU grants for full-time employees
  • ESPP program 
  • Flexible vacation policy
  • Maternity & paternity leave
  • MacBook Pro to use for work plus a generous stipend to personalize your workstation
  • Childcare bonus (human children only)
  • Fertility treatment and support
  • Learning & development program
  • Commuter benefits
  • Culture that supports a healthy work-life balance

To provide greater transparency to candidates, we share base pay ranges for all US-based job postings regardless of state. We set standard base pay ranges for all roles based on function, level, and country location, benchmarked against similar-stage growth companies. Final offer amounts are determined by multiple factors, including candidate location, skills, depth of work experience, and relevant licenses/credentials, and may vary from the amounts listed below.

The base pay range for this position is $145 000 to $215 000.

At Backblaze, we value being fair and good to our customers, partners, and employees. That’s why diversity, equity, and inclusion are at the core of our values. We are committed to fostering a workforce where all employees feel a sense of belonging regardless of race, ethnicity, nationality, gender, sexual orientation, age, religion, socio-economic status, ability, veteran status, and education. We believe that our dedication to cultivating a diverse workspace not only allows us to better serve our customers in over 175 countries, but further reinforces our commitment to doing the right thing. We are proud to be an Equal Opportunity Employer.


Please submit any privacy-related requests or questions to hrdatarequest@backblaze.com

#LI-REMOTE
#LI-HYBRID
 #LI-EP1

Applicant Tracking System Powered by ClearCompany HRM Applicant Tracking System