Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

Basis Technology Senior Security Engineer in Somerville, Massachusetts

Basis Technology is dedicated to engineering a safer and more productive world by building proven AI solutions for analyzing text, connecting data silos, and uncovering digital evidence. From making governments smarter to national security to fighting financial fraud, we make sense of messy, voluminous data by applying our AI, machine learning, and cyber forensics to power the most important systems on earth. It?s challenging work, but we love it. Because we?re wholehearted believers in the power of persistence to solve any problem, and we solve problems that matter. Overview: Basis Technology is looking for an experienced Senior Security Engineer to join the new Architecture team and advance the security properties of our mission-critical software as well as the development process and tooling we use to create it. You?ll partner closely with product teams, engineers, and software architects. You?ll be hands-on in our products and development tooling to integrate security capabilities and remediations; you?ll also be reviewing our software and development processes against a range of relevant concerns and standards (e.g. OWASP Top 10 and SLSA). Our flagship product line, Rosette, is an integrated AI platform, applying machine learning to understand and discover business' unstructured knowledge in order to manage risk, uncover opportunities, and discover connections. We strive to delight our customers by building products that center their needs. Duties: Collaborate with stakeholders to, jointly, propose and implement security standards, methods, and architectures Assess and integrate security tools, including code repositories, artifact repositories, and analyzers Proactively identify and mitigate security risks Find and mitigate outdated or vulnerable code and code libraries Provide subject matter expertise on secure software architecture Provide subject matter expertise on authentication and authorization methods and technologies Educate other engineers on secure coding best practices Provide occasional, as-needed assistance with general software architecture and development activities Provide as-needed assistance with administrative work Requirements: 3+ years experience in a security role including in managing the design process, ideally with both public and private sector customers Ability to design code and architecture that is both secure and scalable for (in the case of devops) a growing team of engineers and for (in the case of software products) high throughput and latency-sensitive applications Familiarity with common security libraries, security controls, and common security flaws that apply to Java and/or Python applications. Ability to discover and patch SQLi, XSS, CSRF, SSRF, authentication and authorization flaws, and other web-based security vulnerabilities (OWASP Top 10 and beyond). Knowledge of common authentication technologies including OAuth, SAML, PKIs, OTP/TOTP Strong technical communication skills We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We are also committed to the full inclusion of all qualified individuals. As part of this commitment, we will ensure that persons with disabilities are provided with reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact