Company: Asana, Inc.
Location: San Francisco, CA
Position Type: Full Time
Experience: See below for details
Education: See below for details
(40% Telecommuting permitted). Work across multple phases prodct securty dvlpmnt lifecycle to suggest new ideas, progrms & tech that make prodct more secure. Reqs Mastr degr or foreign equiv, in Comp Sci, Eng, MIS, Info Securty or closly rltd tech field & 3 yrs exp in positn offerd, or as Securty Eng, or closly rltd positn. Alterntvly, employr will accept Bach degr & 5 yrs progrssve, post-bach exp in above positns. Full term exp must incl follwg: Utilzg securty contrl methodlgies & procsses, incl app code change mngmnt, periodc access review, access provisng/ de-provisng, vulnerablty mngmnt, incidnt respnse procsses, backup & recovry, &/or data encryptn, to enhnce securty posture of currnt info sys envirnmnt; Utilzg threat modls to identfy vulnerablties & priortze mitigtn & contrls; Perfrmg Penetratn Testg to evaluate securty sw & app featres; Utilzg vulnerablty & patch mngmnt to discovr & identfy severty securty bugs found in apps & infrastrctre & actiong removl/fixes while follwg compny procsses & making sure not to violate any compliance or contractl reqs; Utilzg SAST tools to analyze source codes to find securty vulnerablties; Onboardg M&A into compny procsses & tooling rltd to Info Securty; Utilzg Risk Mngmnt to identfy & assess securty risks & recommnd approprte action to mitigte/reduce them; & Respndg to securty breaches, viruses & othr potentl incidnts that face signfcnt securty risks. 40 hrs/wk. $206,315 - $316,000/yr. To apply, qualified applicnts email resumes to recruiting@asana.com & refernce job code # 14772.01461. Direct applicnts only.