Please scroll down, To apply

Senior Source Code Auditor

hiring now
New job

TP-Link Systems Inc.

2024-11-06 16:44:50

Job location Irvine, California, United States

Job type: fulltime

Job industry: Accounting

Job description

About Us:

Headquartered in the United States, TP-Link Systems Inc. is a global provider of reliable networking devices and smart home products, consistently ranked as the world's top provider of Wi-Fi devices. The company is committed to delivering innovative products that enhance people's lives through faster, more reliable connectivity. With a commitment to excellence, TP-Link serves customers in over 170 countries and continues to grow its global footprint.

We believe technology changes the world for the better! At TP-Link Systems Inc., we are committed to crafting dependable, high-performance products to connect users worldwide with the wonders of technology.

Embracing professionalism, innovation, excellence, and simplicity, we aim to assist our clients in achieving remarkable global performance and enable consumers to enjoy a seamless, effortless lifestyle.

Overview:

We are seeking 5 highly skilled and experienced Senior Source Code Auditors to join our cybersecurity team. In this role, you will be responsible for reviewing and analyzing source code to identify potential security vulnerabilities, ensure compliance with coding standards, and enhance the overall security posture of our applications. You will work closely with development teams, security professionals, and stakeholders to provide actionable insights and recommendations for improving code quality and security.

Key Responsibilities:

Conduct thorough audits of source code to identify vulnerabilities, security weaknesses, and coding inefficiencies.

Review and analyze code across a variety of programming languages and frameworks, including but not limited to Python, Java, C++, JavaScript, Swift and Kotlin.

Develop and maintain code auditing standards, processes, and tools to ensure consistent and high-quality reviews.

Collaborate with development teams to provide feedback and guidance on secure coding practices and remediation strategies.

Prepare detailed audit reports that outline findings, risks, and recommendations for improving code security and quality.

Stay up-to-date with the latest security threats, coding standards, and best practices to continuously improve audit processes.

Mentor junior auditors and provide guidance on auditing techniques, tools, and best practices.

Work with cross-functional teams to integrate security practices into the software development lifecycle (SDLC).

Assist in developing and conducting security training and awareness programs for development teams.

Requirements

Qualifications:

Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.

5+ years of experience in source code auditing, software development, or application security.

Strong understanding of secure coding principles, software vulnerabilities, and common attack vectors (e.g., SQL injection, cross-site scripting, buffer overflow).

Proficiency in multiple programming languages and familiarity with a variety of development frameworks and environments.

Experience with automated code review tools (e.g., SonarQube, Coverity, Checkmarx, Veracode) and manual code review techniques.

Excellent analytical and problem-solving skills with a keen eye for detail.

Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders.

Relevant certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP) are a plus.

Preferred Skills:

Experience in cloud security and auditing code for cloud-based applications (AWS, Azure, GCP).

Familiarity with DevSecOps practices and tools for integrating security into CI/CD pipelines.

Knowledge of regulatory requirements and standards related to software security (e.g., ISO27001, ISO27701, GDPR, PCI-DSS, HIPAA).

Benefits

Free snacks and drinks

Fully paid medical, dental, and vision insurance (partial coverage for dependents)

Contributions to 401k funds

Over four weeks of PTO per year

Bi-annual pay increases

Health and wellness benefits, including free gym membership

Quarterly team-building events

Inform a friend!

<!– job description page –>
Top