Gallup Security Engineer

Anticipate attacks, outsmart threats and safeguard innovation.

Gallup is seeking a Security Engineer (Product Security) who thrives at the intersection of engineering and security. You'll apply deep offensive security expertise to test Gallup's products and collaborate with developers to turn findings into secure, resilient applications. This role offers the autonomy to innovate, the responsibility to safeguard critical systems and the opportunity to leave a lasting impact on how security scales across Gallup.

What You'll Do

• Review and advise on secure architecture and design for SaaS applications built and hosted in AWS
• Perform penetration testing across web, mobile and API applications to identify and validate security vulnerabilities
• Partner with engineering teams to incorporate security into applications from the start through secure coding guidance, reviews and awareness
• Use static code analysis and code reviews to augment penetration testing and uncover vulnerabilities earlier in the development process
• Secure open-source and third-party components through software composition analysis (SCA) and package management best practices

What Makes You Stand Out

• Clear communication: You turn complex risks into clear, actionable guidance.
• Self-starter mindset: You thrive working independently while knowing when to pull in others.
• Impactful speed: You move quickly without cutting corners, ensuring durable results.
• Adaptive focus: You stay effective across shifting priorities and varied demands.
• Calm under pressure: In urgent incidents, you bring clarity and steadiness.
• Persistence and precision: You solve tough security challenges with practical, scalable solutions.

What You Need

• Bachelor's degree in cybersecurity, information assurance, computer science or a related field required
• At least two years of experience in enterprise application security engineering required
• Demonstrat
  
  Please mention the word **ECSTATIC** and tag RMzguNjguMTM0LjE5NA== when applying to show you read the job post completely (#RMzguNjguMTM0LjE5NA==). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.