Tesla is seeking a highly skilled Application Security Engineer to join their Infrastructure team. This role is crucial in elevating security standards across Tesla's entire vehicle ecosystem. The engineer will be responsible for conducting in-depth security assessments, performing code reviews, and working closely with development teams to ensure robust software security at scale.
Key responsibilities include:
- Conducting thorough security assessments of Tesla's web applications, APIs, and mobile apps supporting the vehicle ecosystem
- Identifying and mitigating vulnerabilities in the software supply chain
- Performing security architecture reviews and threat modeling
- Conducting code reviews to identify security flaws
- Developing and maintaining secure coding guidelines
- Implementing and managing application security tools within the CI/CD pipeline
- Providing security training to development teams
- Collaborating with other security teams on complex challenges
- Staying current on emerging web application security threats
The ideal candidate will bring:
- Strong understanding of OWASP Top 10 and common web application vulnerabilities
- Experience with application security testing tools (SAST, DAST, SCA)
- Proficiency in at least one relevant programming language (e.g., Python, JavaScript)
- Familiarity with modern web frameworks and architectures
- In-depth knowledge of secure coding practices and secure SDLC integration
- Experience in implementing and managing application security programs
Tesla offers a comprehensive benefits package, including competitive pay, multiple health insurance options, family-building benefits, 401(k) with employer match, and various other perks. The company is committed to diversity, equal opportunity, and providing reasonable accommodations to individuals with disabilities.
Join Tesla's Application Security team and play a crucial role in safeguarding the infrastructure that powers the future of sustainable transportation.