Our Opportunity:
We’re seeking an experienced and collaborative engineering manager to lead Snyk’s Rules Intelligence team, which is composed of security researchers and engineers within Snyk Code and develops rules for the SAST engine.
The team regularly looks at new and emerging languages, technologies, and frameworks to better model threats and vulnerabilities in source code, helping developers identify potential security vulnerabilities before their code reaches production.
You’ll Spend Your Time:
* Overseeing Rule Development: Direct the creation and refinement of security rules using Snyks proprietary languages and tools. This includes developing software tools that automate the writing, debugging, and testing of security rules, as well as integrating AI to enhance these processes.
* Collaborate Across Teams: Work closely with the Program Analysis and Machine Learning teams to enhance the capabilities of our security engine and automate the rule development process through advanced algorithms and AI technologies.
* Grow Technical Expertise: Expand team expertise in new programming languages and frameworks, applying software engineering principles to improve tooling around rule development, focusing on best practices and identifying common vulnerability patterns.
* Customer Engagement: Engage directly with customers to comprehend their security challenges and deliver robust solutions that protect their systems before production.
* Strategic Influence: Play a key role in shaping our product roadmap by identifying new security risks.
* Foster Research and Learning: Encourage the team to engage with the wider security community through research, publications, and presentations.
What Youll Need:
* A minimum of 4 years of experience in a technical leadership role, preferably within cybersecurity or a related field.
* Demonstrated experience and knowledge of application security vulnerabilities.
* Proficiency with Python and/or JavaScript, with some familiarity with OOP languages such as Java or C#.
* Interest in learning about the mechanics and inner workings of a language or a framework.
* A passion for cybersecurity and a desire to contribute actively to the security community.
* Proven ability to work in a distributed organization and lead a geographically dispersed team.
* A focus on support, coaching, and facilitation to lead the team.
We’d be Lucky if You:
* Are experienced with developing or using AppSec tools.
* Have experience building software solutions for scaling operational tasks.
* Have researched or programmed low-level languages and vulnerabilities.
* Are an active participant in community efforts, such as CTFs, bug-bounty programs, or similar.
* Have disclosed security vulnerabilities responsibly or have CVE/paper publications.
* Are skilled in providing APIs for both internal and external customers.
* Have managed large traffic volumes and substantial data efficiently.
* Possess strong leadership, team management skills, and excel in cross-functional collaboration.
* Demonstrate problem-solving abilities in complex technical environments and a track record of delivering high-quality, scalable software solutions.
J-18808-Ljbffr