Application Security Engineer

• 100% employer-paid medical dental and vision for employees
• Annual review with raise option
• 22 days Paid Time Off accrued annually and 4 holidays
  • After 3 years PTO increases to 29 days. Employees transition to flexible time off after 5 years with the company-not accrued not capped take time off when you want
  • The 4 holidays are: New Year's Day Fourth of July Thanksgiving and Christmas Day
• Paid Parental Leave
• Up to 6% company matching 401(k) with no vesting period
• Quarterly allowance
  • Use to make your remote work set up more comfortable for continuing education classes a plant for your desk coffee for your coworker a massage for yourself... really whatever
• Open concept office with friendly coworkers
• Creative environment where you can make a difference
• No dumb benefits like free dog walking on the weekends that snobby hipster places have to make you feel cool but mathematically won't cost the company much money because you won't use it
• Trail Mix Bar --- oh yeah

• Understand and safely use various open source penetration testing tools and when appropriate emulating hacker tactics techniques procedures
• Create security vulnerability reports for both technical and executive audiences
• While in-between assessments you will be expected to help our security engineers think through solutions to problems you find
• Automate tasks and script at a basic level to enhance penetration testing processes
• Passion for learning new technologies and processes and contributing to refining existing capabilities
• Communicate with stakeholders (technical and non-technical) both verbal and written
• Stay up to date on 0 day exploits for tech stacks we use

• Solid fundamentals in webapp and network pentesting (2+ years). Pentesting experience in mobile apps APIs and/or cloud environments a bonus
• 4+ years of professional experience in Ruby on Rails or equivalent and Vue or a Frontend equivalent framework
• Experience with Linux and cloud environment testing
• Understanding of security issues for desktop virtual cloud services and network infrastructures
• Working knowledge of information systems security standards/practices (e.g. access control and system hardening system audit and log file monitoring security policies and incident handling)
• Experience with secure network protocols and encryption of communications between networked hosts
• Experience in IT systems and security policies standards industry trends and techniques
• Experience with assessing APT threats Penetration Testing Vulnerability Management attack methodologies forensics analysis techniques malware analysis attack surface comprehension Cyber Threat Emulation operations Cyber Advanced Threat Emulation Team operations and research identification and/or verification of new APT TTPs
• Fundamental understanding of security knowledge of testing mobile native applications web applications distributed and database systems
• Must be detail-oriented and possess strong problem-solving skills and ability to analyze for potential future issues
• Solid understanding of common webapp vulnerabilities exploitation techniques and remediation options

What We Do

Corporate Tools is proudly stubbornly independent. No outside investors calling the shots. It’s just us choosing customers over profits every time. We build the behind-the-scenes tools that keep businesses running: software LLC filings registered agent service website and domain registration address services… basically all the unglamorous stuff that makes companies actually work. We’ve grown into one of the largest B2B providers in the U.S. by sticking to a simple mission: solve the real messy confusing problems of starting and running a business while keeping your privacy intact and making your life a whole lot easier.

Why Work With Us

We’re privately held debt free and focused on people. Not investors. That means we can keep hiring folks we like building tools that actually work and making sure our customers are taken care of. If you want to know more about what values drive us check out our Company Principles.

Gallery