Software Security Engineer

Job Description / Skills Required

About GoPro

GoPro makes it easy for people to celebrate and share experiences. We believe life is more meaningful when shared. We build cameras, software, and accessories that help the world share itself in immersive and exciting ways.

GoPro is a global movement whose business is driven by shared experiences. We celebrate diversity. We practice inclusion. We foster belonging. We demand equality. And we share the experiences of individuals and communities who also hold these values as core to who they are. From Sao Paolo to Munich, Silicon Valley to Shenzhen, we are dedicated to building a company that reflects and honors the diverse global communities where we live, work, and play.

We have a world class security team that helps ensure a secure experience for our users all over the world. Our team is primarily focused on identifying vulnerabilities across application, network, and operational security domains. We work closely with our developers, providing offensive perspective to their business. Our goal is to continually improve the security posture of the organization by finding bugs before our adversaries.

What You Will Do

Identify security issues and risks, and develop mitigation plans
Architect, design, implement, support, and evaluate security-focused tools and services
Mentor software engineering team on security best practices
Participate in company level security compliance efforts
Develop and deliver security training for software development teams
Help manage GoPro’s Bug Bounty program
Evangelize security within the company and be an advocate for customer trust and privacy protection
Skills We’re Stoked About

BS or MS in Computer Science, a related field, or equivalent experience
Experience performing offensive security engagements (Experience leading offensive engagements is highly desired)
Strong coding skills including X86/X64, C++, C#, HTML, JavaScript, Python, Ruby
Strong experience in Windows, Mac and Unix.
Strong Operational Security skills
Solid Networking/Identity Isolation Active Directory, and Linux skills
Experience reverse engineering Native and Managed Code
Experience testing web services, identifying and remediating OWASP top 10 security flaws, and understanding large complex systems quickly
OSCP/OSCE certifications are desired
Solid verbal and written communication skills
Solid teamwork and cross group collaboration skills
Ability to deal with ambiguity

Perks

Fully-stocked kitchen with snacks galore
Live it. Eat it. Love it. –Two dedicated hours during your week to explore your passions and capture it with your GoPro.
Get your very own GoPro (Mounts and accessories included)
Discounted employee stock purchase plan
Competitive salary
401(K) matching
Discretionary Time Off
12 weeks paid Parental Leave for new Moms and Dads
Medical, dental, and vision insurance –premiums are fully paid for employees
Life insurance and disability benefits
Employee commuter shuttles