Application Security Engineer

#TeamNextdoor

Nextdoor is where you connect to the neighborhoods that matter to you so you can belong. Our purpose is to cultivate a kinder world where everyone has a neighborhood they can rely on.

Neighbors around the world turn to Nextdoor daily to receive trusted information, give and get help, get things done, and build real-world connections with those nearby — neighbors, businesses, and public services. Today, neighbors rely on Nextdoor in more than 315,000 neighborhoods across 11 countries.

Meet Your Future Neighbors

As an Application Security Engineer (focusing on DevSecOps) you will be responsible for monitoring Nextdoor’s enterprise and product core platforms/systems and managing security tools and capabilities. This role requires an understanding of security threats, vulnerabilities, and the organizational best practices required to mitigate them. The ideal candidate will have a proactive mindset, staying ahead of potential security issues, and solving security challenges with practical solutions. 

At Nextdoor, we offer an inclusive work environment. We embrace a hybrid experience, enabling connectedness while providing a flexible experience for our valued employees.  

The Impact You’ll Make

In the role of Application Security Engineer, you will enable developers to build secure applications and infrastructure at Nextdoor. You will collaborate with engineers to establish secure-by-default practices and application security monitoring, striking a balance between “shift left” and “shift right” security approaches, while embedding security into fast-moving development processes.

Your responsibilities will include providing critical application security services such as security reviews, developer security education, and incident response. Additionally, you will lead engineers who champion security and reliability, helping to shape security practices across Nextdoor’s evolving platform through new tools and processes.

Your responsibilities will include: 

• Continuously monitor security infrastructure, identify suspicious activities
• Utilize data and security tools to analyze and respond to security alerts
• Lead and coordinate incident response efforts by executing the incident response strategy through incident remediation and closure
• Monitor and maintain vulnerability reporting and bug bounty programs
• Triage vulnerability and threat notifications to determine priority and necessary remediation
• Conduct regular security audits and vulnerability assessments to identify threats and reduce risk
• Evaluate, implement and maintain security controls across devices and cloud environments
• Work closely with IT, DevOps, and Cloud Infrastructure to integrate security practices and tools
• Build integrations, and implementations of technologies to support security operations
• Script and automate integrations, detections, and security reporting
• Champion security by providing awareness training for new hires and employees
• Stay informed about emerging threats and vulnerabilities, and update security measures accordingly
• Maintain detailed and up-to-date documentation of security procedures, policies, and protocols
• Ensure compliance with relevant regulations and standards (e.g., GDPR, HIPAA, ISO 27001)
• Assist with internal and external security audits
• Participate in in-person Nextdoor events, trainings, off-sites, volunteer days, and other team building exercises
• Build in-person relationships with team members and contribute to the KIND culture that Nextdoor values

What You’ll Bring To The Team

• Experience with scripting languages (e.g., Python, Bash), APIs, and integration for automation of security tasks.
• 5+ years of experience in a security operations and/or vulnerability management role.
• Get a deep understanding of Nextdoor’s platform, developer processes, CI/CD integrations, and current mechanisms for security and configuration management. 
• Lead the development and implementation of secure-by-default solutions across engineering. 
• Serve as an SME and conduct threat modeling on new and existing products with engineering. 
• Design and lead developer security training to enhance design and coding best practices. 
• Maintain automated security testing tools and scripts within CI/CD pipelines such as SCA, SAST, DAST, and CNAPP. 
• Evaluate and implement next generation tools to embed security in Development processes. 
• Identify top threats across products and services and prioritize remediation efforts. 
• Empathize with the full spectrum of our customers and our engineers by advocating for effective solutions that scale with the needs of our business and our customers. 
• Foster security champions across engineering and product and enhance the shared security program. 
• Participate in the on-call rotation for security and product incident response.
• Coordinate with internal teams to respond to incidents swiftly and effectively.
• Document incidents, response actions, and lessons learned to improve future responses.
• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Excellent communication and teamwork abilities.
• Models Nextdoors values including Earn Trust Everyday, Invest in Customer, Customer Obsessed, Experiment and Learn Quickly, and Act Like an Owner.
• Experience with macOS MDM and cloud-native environments, (e.g. AWS or GCP) is required.

Preferred

• Experience with security cloud-based microservices infrastructure and IaaC
• Experience with IdPs, SSO, and Identity and Access Management
• Threat driven or offensive security mindset with practical defense experience
• Experience building dashboards for security metrics and cross-org security posture
• Data analytics, data engineering, data science, or ML/AI experience
• Hands-on certifications (e.g. OSCP, Certified Ethical Hacker, SANS) and/or demonstrated code projects. Please share your github or public code samples with us! 
  • Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker (CEH)
  • GIAC Security Certifications (e.g. GSEC, GCIH, GCIA, GWEB, GWAPT, GPEN, GMOB)
  • AWS Security Certifications

Rewards

Compensation, benefits, perks, and recognition programs at Nextdoor come together to create one overall rewards package.

The starting salary for this role is expected to range from $135,000 to $170,000 USD on an annualized basis, or potentially greater in the event that your 'level' of proficiency exceeds the level expected for the role. Compensation may also vary by geography.

We also expect to award a meaningful equity grant for this role. With equal quarterly vesting, your first vest date would be within the first 3 months of your start date.

Overall, total compensation will vary depending on your relevant skills, experience, and qualifications. We have you covered! Nextdoor employees can choose between a variety of great health plans. We cover 100% of your personal monthly premium for health, dental, and vision – and provide a OneMedical membership for concierge care.

At Nextdoor, we empower our employees to build stronger local communities. To create a platform where all feel welcome, we want our workforce to reflect the diversity of the neighbors we seek to serve. We encourage everyone interested in our purpose to apply. We do not discriminate on the basis of race, gender, religion, sexual orientation, age, or any other trait that unfairly targets a group of people. In accordance with the San Francisco Fair Chance Ordinance, we always consider qualified applicants with arrest and conviction records.

For information about our collection and use of applicants’ personal information, please see Nextdoor's Personnel Privacy Notice, found here.