New York City, NY, United States Posted 2 days ago
At Weight Watchers, we inspire and guide the healthier choices that transform lives. We meet our members where they are and leverage the latest nutritional and behavioral science to help them eat healthier, move more, and shift their mindset. We are a purpose-driven organization and we understand how to create community and deliver personalized services to help our members throughout every step of their journey. We have more than 50 years of history and trust to build on, and we are leveraging technology, community, and behavior science to help more people around the world reach their goals. Our approach is science-based and evidence proven to help people lose weight and develop healthy habits to live life fully. If being part of a purpose-driven, member-focused, high-performing digital culture sounds exciting to you; we encourage you to apply for this position.
We are uniquely positioned to lead the way in the exciting Health Tech industry. With several million people logging in and using Weight Watchers’ Apps and systems we are modernizing and rebuilding most of our core experiences and embracing modern engineering practices and techniques. Our strategy is to compete in an increasingly digital weight loss market. Our innovative technology fundamentally improves the way people manage their weight, health and wellness. We are agile service oriented, data-driven, cloud enabled and efficient. We’ve built Simple UIs on Angular, micro services in Play/Scala & Node, moved our core data to Mongo and Cassandra and enhanced our mobile apps. As reliance on health and wellness awareness increases, come make an impact on a team that is leading the way!
Our cyber-security team is here to protect the security of millions of customers globally. We strive to adopt innovative solutions to problems and apply concepts of attack driven defense to improve our security posture. We design solutions that mitigate risk rather than check boxes.
We are seeking a passionate application security engineer to automate the manual, and build security into our software development pipelines. This individual will partner with our engineering teams to ship products securely and easily.
You will guide our product and engineering teams with your security expertise to make more confident product decisions. You’ll take ownership of building an application security program that makes the secure decision the easier option.
Guide product and engineering teams to building secure features through security architecture design reviews and threat modeling
Evangelize secure coding practices across all engineering teams
Build security into continuous integration and delivery pipelines
Use attack driven techniques to defend our applications and systems by discovering weaknesses in our web and mobile application portfolio
Participate in incident response and vulnerability remediation efforts.
Manage relationships with external security researchers
Build a security conscious engineering culture
Take a leadership role in driving security and privacy initiatives
Detailed understanding of various web development frameworks
Minimum of 5 years of experience with any combination of the following: threat modeling, secure software development, application security
Experience with multiple programming languages (e.g., Scala, Java, Node, C#, Swift)
Substantial knowledge of web application attacks and defense strategies (e.g., the OWASP Top 10 and CWE Top 25)
Understand the people aspects of security and enjoy collaborating with others to build secure things
Contributions to the security community (e.g., research, CVEs, bug bounties, open source projects)
We hire only the best people. Here are the benefits to being top-notch:
The opportunity to work with some of the best innovators in the industry