Senior Application Security Engineer 


Corporate IT | United States

Senior Application Security Engineer

  • Remote
  • United States
  • Corporate IT
  • Full-time

About Ancestry:

When you join Ancestry, you join a human-centered company where every person’s story is important. We believe that by discovering the struggles and triumphs of our past, we can foster deeper bonds and more meaningful connections among families and communities. Our talented team of scientists, engineers, genealogists, historians, and storytellers is dedicated to empowering customers around the world from all backgrounds on their journeys of personal discovery. 


With more than 30+ billion digitized global historical records, 125+ million family trees, and 22+ million people in our growing AncestryDNA database, Ancestry helps customers discover their family story and gain a new level of understanding about their lives. Passionate about dedicating your work to enriching people’s lives? You belong at Ancestry.


Ancestry is seeking a Senior Application Security Engineer to join a great team and grow their career. Reporting to our Director of Application Security & Tools, you will join an experienced team of highly skilled Pentesters and Engineers to help protect the security of Ancestry and it's most valued assets. As a member of the Ancestry Red team your primary focus will be manual web application pentesting, vulnerability management, advocate security and secure coding practices. You will be provided many opportunities for professional growth.

What you will do...

  • Manual Web Testing
  • Code audits and design reviews
  • Perform vulnerability and code reviews, working with developers to get stack rolled out.
  • Find and resolve security vulnerabilities on a variety of platforms.
  • Help design secure web application architecture and secure design principles
  • Complete manual focused web application vulnerability assessments
  • Advocate security and secure coding practices
  • Perform secure code trainings with groups of developers
  • Analyze, assess and respond to various security threats
  • Seek out opportunities to automate processes wherever relevant

Who you are...

  • 4 + years Experience in a variety of programming/scripting languages (Nodejs/Javascript, Java, C#, Go, Python, Ruby, C/C++, etc..)
  • Experience working in Application Security (application-level vulnerability testing, code-level security auditing, and exploit development)
  • Familiarity with common web application testing tools (Burp Suite, nikto, w3af, WebScarab,
  • Familiar with industry and privacy standards such as PCI, SOX, and HIPAA

Benefits: Benefits: 401K Plan, Tuition Reimbursement, Life & Accident Insurance, 12 Paid Holidays, Flexible Vacation PTO, Sick Leave, Volunteer Time, Employer Perks: Ancestry Subscription and Discounts for Employee, Commuting and Parking Benefits, Ski Passes, Employee Referral, Fitness Reimbursement


(Colorado only*) Minimum salary of $148,000/year + eligible for bonus, equity, and comprehensive benefits including health, dental and vision.  Read more about our benefits HERE.

*Note: Disclosure as required by sb19-085(8-5-20)



#GD-Sponsored

#IND2

#LI-MY1

#LI-GT1


Additional Information:

Ancestry is an Equal Opportunity Employer that makes employment decisions without regard to race, color, religious creed, national origin, ancestry, sex, pregnancy, sexual orientation, gender, gender identity, gender expression, age, mental or physical disability, medical condition, military or veteran status, citizenship, marital status, genetic information, or any other characteristic protected by applicable law. In addition, Ancestry will provide reasonable accommodations for qualified individuals with disabilities.


All job offers are contingent on a background check screen that complies with applicable law.  For San Francisco office candidates, pursuant to the San Francisco Fair Chance Ordinance, Ancestry will consider for employment qualified applicants with arrest and conviction records.  


Ancestry is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at Ancestry via-email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of Ancestry. No fee will be paid in the event the candidate is hired by Ancestry as a result of the referral or through other means.


Apply Now!

Not You?

Thank you