Overview
On Site
Full Time
Skills
Software security
Penetration testing
Vulnerability assessment
Code review
Incident management
Information Technology
Relationship building
Software design
Security QA
Dynamic testing
Programming languages
C#
Objective-C
Process improvement
Active listening
Problem solving
Microsoft Word
Policies
SDL
OWASP
SANS
Leadership
Training
Communication
Authentication
Authorization
API
Git
GitHub
Continuous integration
Continuous delivery
Software development methodology
Python
JavaScript
Java
Scala
Swift
Kotlin
Payment card industry
Cloud computing
Amazon Web Services
Microsoft Azure
OSCP
GPEN
Automation
Analytical skill
Microsoft Excel
Scheduling
CUP
Job Details
This position contributes to Starbucks success through the development and execution of Application Security Engineering Program practices. You will provide security guidance and conduct security assessments to ensure the technology platforms within the organization are implemented in accordance with established standards and policies.
Summary of Key Responsibilities
Responsibilities and essential job functions include but are not limited to the following:
Basic Qualifications
Preferred Qualifications
Additional Qualifications
From free coffee to competitive pay, Starbucks is proud to offer a comprehensive compensation and benefits package to our eligible part-time and full-time partners. Benefits include 100% tuition coverage through our Starbucks College Achievement Plan, health coverage with a variety of plans to choose from, and stock & savings programs like our equity reward program, Bean Stock. What's more, Starbucks offers flexible scheduling and opportunities for paid time off. Visit starbucksbenefits.com for details.
If you live in the greater Seattle area, we offer a flexible workplace that allows for hybrid work. Partners can work remotely up to two days per week.
Join us and inspire with every cup. Apply today!
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.
Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at or via email at
Summary of Key Responsibilities
Responsibilities and essential job functions include but are not limited to the following:
- Guides and performs offensive security activities including application penetration testing, static/dynamic vulnerability analysis, and code review.
- Drives remediation activities as part of the application security program and ensures application teams adhere to the SDL Framework.
- Evangelizes application security program fundamentals, tools, processes and acts as a consultative partner with Global IT and Business teams.
- Ensures teams are validating for OWASP top 10, CWE/SANS top 25 and performing industry leading application security practices
- Makes recommendations on toolset modifications and enhancements, improvements on development processes and production application security support.
- Contributes to the development and delivery of security training programs.
- Participate in security incident response activities as an application security subject matter expert
Basic Qualifications
- 7+ years of experience working in an information technology related field with at least 4 years of that time in an application security discipline.
- Strong communication and relationship building skills.
- Skilled at performing security focused application design reviews, static & manual code reviews.
- Experience using common security testing tools and techniques to perform a variety of security assessments across multiple platforms with significant expertise in either web or mobile penetration testing.
- Experience implementing and operating static and dynamic analysis tools.
- Strong understanding of authentication and authorization options and standards.
- Deeply knowledgeable about security vulnerabilities with the ability to identify them, assess risk, and provide remediation guidance.
- Experience working as a software engineer and knowledgeable about modern web, mobile, and API development practices.
- The ability to read and write code in multiple programming languages.
- Experience with Git and Github
- Knowledgable about CI/CD practices
- Experience incorporating security requirements into a SDLC.
Preferred Qualifications
- Development expertise in 2 or more of the following: Python, JavaScript, C#, Java, Scala, Objective-C, Swift, Kotlin
- An understanding of PCI practices and experience working with PCI environments.
- Experience working with cloud platforms such as AWS, Azure, from both a developer and security perspective.
- Experience working with Bug Bounty or VDP programs.
- Certifications such as OSWE, OSCP, GWAPT, GPEN.
- Experience automating application security activities
Additional Qualifications
- Ability to apply knowledge of multidisciplinary business principles and practices to achieve successful outcomes in cross-functional projects and activities
- Ability to work within large collaborative organizations
- Knowledge and ability to apply process improvement principles
- Strong written, verbal and active listening skills
- Models and acts in accordance with Starbucks guiding principles
- Foster effectiveness during changes in tasks, work environment or condition affecting the organization
- Strong analytical and problem-solving skills
- Ability to balance multiple priorities and meet deadlines
- Microsoft Word, Excel and PowerPoint
From free coffee to competitive pay, Starbucks is proud to offer a comprehensive compensation and benefits package to our eligible part-time and full-time partners. Benefits include 100% tuition coverage through our Starbucks College Achievement Plan, health coverage with a variety of plans to choose from, and stock & savings programs like our equity reward program, Bean Stock. What's more, Starbucks offers flexible scheduling and opportunities for paid time off. Visit starbucksbenefits.com for details.
If you live in the greater Seattle area, we offer a flexible workplace that allows for hybrid work. Partners can work remotely up to two days per week.
Join us and inspire with every cup. Apply today!
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.
Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at or via email at