Senior Application Security Engineer

About Revinate

We support full remote work but also maintain offices in Amsterdam, Singapore and Bend Oregon, Revinate seeks to build specialized and easy-to-adopt technology to solve these challenges. Revinate enables hoteliers to transform their guest data into revenue. With Revinate Marketing and Revinate Guest Feedback, hoteliers are empowered to make smarter decisions, resulting in increased direct revenue and guest engagement. Much like the industry we serve, we are a team of hard-working and passionate individuals who love our customers and are committed to surprising and delighting them with every new innovation and disruption.

The company is backed by leading Silicon Valley investors, including Serent Capital, Benchmark Capital, Tenaya Capital, and Sozo Ventures. Headquartered in San Francisco with regional offices in Amsterdam and Singapore, Revinate counts tens of thousands of the world’s leading hotels as customers.

To learn more, please visit www.revinate.com

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status

What We Believe

We believe that hoteliers deserve better. The global hotel sector is a booming $500B+ industry, yet hotels are facing many complex challenges, including increased pressure from online travel agencies and intense competition from ever-growing room inventory and the shared economy. That coupled with aging, cumbersome technology is making the job of the hotelier more difficult than ever. At Revinate, we use cutting edge technology to build powerful software for hotels to take back control and drive direct revenue. The simplicity and beautiful UX of our solutions are a breath of fresh air in an industry of old technology.

Role Overview

Revinate is looking for an experienced Professional for our Security Team. The Security Team works directly with our application development, data engineering, infrastructure, Human Resources Teams and all business verticals to secure Revinate’s Employees, Business, Applications, Data, Technology Infrastructure and Physical Infrastructure. You will continue to  grow and develop Revinate’s Security Program, our Security Professionals, the Teams and their respective Functions.

Top Three Outcomes for Year One

• Intimately understand Revinate’s business, our application stack and own (technically and operationally) the Application Security function
• Lead and execute two major Application Security initiatives, full bi-directional engagement of AppSec function between Security and all of engineering
• Ensure all SaaS Applications adhere to AppSec Security Standards and improvements are well managed (identified, documented and tracked to resolution)

What You'll Do

• Own and maintain engineerings applications security standards, procedures, and execution with the AppDev, Data Science and Product Teams
• Drive application security standards
• Own and maintain day to day Application Security Monitoring, Observability, Triage, Resolution, Improvements, Internal Investigations, Incident Response
• Full participation in internal and external compliance initiatives including but not limited to internal and external PenTesting,  Annual NIST Evaluation, engineering Security Training, Application Scans, Phish Testing)
• Participate in 24x7 Security Support
• Monitor, Audit and harden existing infrastructure, automation (event handling), code and processes
• Proactively protect Revinate from all external threats to Revinate’s SaaS Applications
• Manage and resolve new threats to Revinate’s SaaS Applications
• Maintain your industry leading knowledge and understanding of Security, Risk and Compliance and Privacy as it relates to Security
• Ensure security requirements and considerations are woven into the development of each system
• Maintain and enhance IAM framework and function with IT/Security for the organization, platforms and applications
• Automate Revinate’s security processes using AWS and GCP tools (others where applicable), as well as developing custom security automation
• Architect, build and enforce end to end security tools which are embedded into the SDLC process and integrated into current & future CICD pipelines
• Administer network and data security, including directory, group policy, firewalls, antivirus, email security, etc.
• Mobile Device Management tools for Security purposes

What You'll Bring

• 7+ years of experience in Cyber Security
• 5+ years of experience with Security Operations
• 5+  years of Cloud Infrastructure
• 3+ years of GCP and AWS
• 3+ years of Security Technical Leadership/Project experience
• Excellent communication and problem solving
• Ability to communicate technical instructions to technical and non-technical audiences
• Application Security structure and maturity to our CICD pipelines, Change & Release tooling, GuestFeedback, Marketing, the DataPlatform, ResSales and Messaging products
• Hands on expertise in Cyber Security to ensure our SaaS applications are secure
• Subject Matter expertise on Application Security Engineering

Benefits

• Health insurance-employee premium paid 100% by Revinate
• Dental insurance-employee and dependents’ premium paid 100% by Revinate
• Vision insurance-employee and dependents’ premium paid 100% by Revinate
• 401(k) with employer match
• Short & Long Term Disability insurance
• Life insurance
• Paid time off
• Monthly work from home stipend
• Telehealth access
• Employee Assistance Program (EAP)

$165,000 - $275,000 a year

This salary range may be inclusive of several career levels at Revinate and will be narrowed during the interview process based on a number of factors, including (but not limited to) the candidate’s experience, qualifications and location.

#LI-Remote

#LI-AE1