What are the responsibilities and job description for the Staff Software Security Engineer position at DaySmart?
DaySmart a provider of business management software that specializes in scheduling, payments, and workflow solutions for businesses worldwide. We deliver award-winning software to thousands of users across various industries.
We are seeking an experienced Staff Software Security Engineer to join our team and lead the charge in strengthening our security practices. This is a newly created position, marking a pivotal moment for DaySmart as we establish our first role dedicated exclusively to security. With our rapid growth through mergers and acquisitions, this role offers a unique opportunity to tackle complex security challenges in a dynamic and evolving environment. If you’re looking for a rewarding challenge where you can make a lasting impact, this may be the perfect role for you.
Responsibilities
The salary for this role is $140,000 to 175,000 per year. Pay is based on several factors including but not limited to education, work experience, certifications, internal equity, etc.
What We Offer
In this role, you will report directly to a Principal Engineer and collaborate closely with the CTO to achieve our security objectives.
This Will Be a US-based Position. We Offer Flexible Work Arrangements, Including Fully Remote, In-person, Or Hybrid Opportunities. For Those Looking To Work In Person, We Have Physical Offices In The Following Cities
We are seeking an experienced Staff Software Security Engineer to join our team and lead the charge in strengthening our security practices. This is a newly created position, marking a pivotal moment for DaySmart as we establish our first role dedicated exclusively to security. With our rapid growth through mergers and acquisitions, this role offers a unique opportunity to tackle complex security challenges in a dynamic and evolving environment. If you’re looking for a rewarding challenge where you can make a lasting impact, this may be the perfect role for you.
Responsibilities
- Lead the implementation of security-focused initiatives, including:
- Integrating Keycloak (SSO) for authentication across all products.
- Connecting source code repositories to tools like Snyk or other security analysis platforms.
- Automating Jira ticket creation and remediation workflows.
- Collaborate across teams to address security challenges arising from our diverse tech stacks and M&A-driven platform diversity.
- Work closely with development teams to:
- Establish best practices for API security, logging, data obfuscation, and more.
- Consult on secure development strategies tailored to their specific technology stack.
- Assist with security reviews, audits, and vulnerability assessments to identify and remediate risks.
- Automate security processes to ensure consistent application of security standards across the organization.
- Stay up to date with the latest security technologies, tools, and threats, and proactively recommend improvements.
- Provide mentorship and training to teams to elevate their security awareness and practices.
- 8 years of experience in software security engineering or a related role.
- Strong understanding of security principles, including application, API, and infrastructure security.
- Proficiency in multiple programming languages and frameworks, with the ability to work across various tech stacks (e.g., PHP, Python, Ruby on Rails, .NET, Node.js, etc.).
- Experience implementing SSO solutions (e.g., Keycloak, Okta) and integrating them into existing applications.
- Hands-on experience with security tools like Snyk, Dependabot, or similar vulnerability scanning platforms.
- Familiarity with CI/CD pipelines and integrating security into development workflows.
- Strong understanding of secure software development practices, including OWASP, threat modeling, and static/dynamic code analysis.
- Proficiency with Git, Jira, and related tools for collaboration and tracking.
- Excellent problem-solving, communication, and collaboration skills.
- Experience with secure configuration management, container security, and cloud security.
- Knowledge of logging frameworks and best practices for monitoring and incident response.
- Familiarity with compliance frameworks like PCI, SOC 2, and HIPAA.
- Experience building internal tools and automation to enhance security processes.
The salary for this role is $140,000 to 175,000 per year. Pay is based on several factors including but not limited to education, work experience, certifications, internal equity, etc.
What We Offer
- Competitive salary and benefits including medical, dental, vision, HSA, FSA, and more.
- 401k plan with company match on your contributions.
- Open PTO and a generous paid holiday schedule.
- A supportive work environment with the flexibility to work where/how you want – in-office, remote, or hybrid.
- Opportunities to ensure you are always learning and growing.
In this role, you will report directly to a Principal Engineer and collaborate closely with the CTO to achieve our security objectives.
This Will Be a US-based Position. We Offer Flexible Work Arrangements, Including Fully Remote, In-person, Or Hybrid Opportunities. For Those Looking To Work In Person, We Have Physical Offices In The Following Cities
- Ann Arbor, MI
- Scottsdale, AZ
- Wayne, PA
- Austin, TX
Salary : $140,000 - $175,000
