Staff Security Software Engineer

Posted 4 Days Ago
Easy Apply
Be an Early Applicant
Palo Alto, CA
Hybrid
150K-265K Annually
Senior level
Fintech • Information Technology • Payments • Productivity • Software • Travel • Automation
Travel & expense made easy.
The Role
The Staff Security Software Engineer is responsible for enhancing the security of Navan products by designing and implementing security frameworks, driving risk remediation, and mentoring junior engineers. This role demands robust technical skills, collaboration with engineering teams, and a focus on improving defense mechanisms within the product architecture.
Summary Generated by Built In

The Security Software Engineer will be responsible for securing Navan products by identifying unaddressed areas of weakness and driving cleverly engineered, scalable solutions that improve our defense-in-depth. You will be responsible for design and development of core services related to authentication, authorization, encryption within the product to enable a vast majority of use cases securely. Skills you will leverage in this role include the ability to break down prior technical implementations of product use cases, and the ability to deliver incremental security value through small meaningful code refactors.

Reporting to the Director of Security Engineering, you will contribute significantly to building and scaling the security of Navan products. This position requires both advanced technical skills, strong communication skills, and the ability to influence people. You will be responsible for ensuring the continuous security of Navan customer-facing products and internal tools. You will focus on driving and advising risk remediation based on research, and developing strong partnerships with engineering and product teams to accelerate the release of the software with security by design.

What You’ll Do:

  • Research, design and implement security-oriented frameworks and features with the common goal of protecting Navan’ customers.
  • Upgrade the security of the current Navan platform to cutting edge security solutions like Passkeys while balancing the needs of multiple customer personas and use cases. 
  • Liaison between the engineering and security org to execute on the security roadmap.
  • Lead security software development while building technical leverage and influencing the direction of architecture, design, and roadmap.
  • Routinely participate in cross-vertical code reviews with an emphasis on Security.
  • Break down complex problems into sub-tasks & iteratively contribute to the goal of the security initiatives using agile practices.
  • Coach and mentor junior engineers in the team.

What We’re Looking For:

  • 8+ years of experience as a software engineer with technical-leadership responsibilities
  • Prior experience architecting, building, launching and maintaining complex systems
  • Experience working in an Agile environment using technologies such as:
    • Java Spring Framework (3+ years), Hibernate or similar ORM technologies, JavaScript/Typescipt, and React
    • Containers (Docker, Kubernetes, or similar)
    • Infrastructure as code (Vagrant, Docker, Ansible, Chef, Terraform, or similar)
  • Continuous integration (Github Actions or similar)
  • Integration of Security testing tools into CI pipelines
  • Defect tracking (Jira, ServiceNow, or similar)
  • Source code management (GitLab, GitHub, or similar)
  • Cloud environment (AWS, or similar
  • Knowledge of modern authentication mechanisms like SAML, JWT, OIDC connect, Passkey.
  • Knowledge of authorization frameworks for complex multi-tenant SaaS applications.
  • Knowledge of cryptographic primitives.
  • Knowledge of application security issues and tools. 
  • Knowledge of compliance requirements for industry-standard certifications like PCI DSS, SOC2, HIPAA, and FedRAMP.
  • Experience working in small teams and delivering outsized impact.

The posted pay range represents the anticipated low and high end of the compensation for this position and is subject to change based on business need. To determine a successful candidate’s starting pay, we carefully consider a variety of factors, including primary work location, an evaluation of the candidate’s skills and experience, market demands, and internal parity.
For roles with on-target-earnings (OTE), the pay range includes both base salary and target incentive compensation. Target incentive compensation for some roles may include a ramping draw period. Compensation is higher for those who exceed targets. Candidates may receive more information from the recruiter.

Pay Range

$150,000$265,000 USD

Top Skills

Java
JavaScript
Typescript

What the Team is Saying

Anna
Brian
Roshni
Adamas Victória
Jordan
The Company
Palo Alto, CA
3,000 Employees
Hybrid Workplace
Year Founded: 2015

What We Do

Navan is the all-in-one super app that makes travel and expense easy so you can focus on being there, not getting there. Say goodbye to spending hours on the phone trying to change your flight or saving stacks of receipts to manually input expenses. From EAs and finance teams to travel managers and employees, Navan empowers people to focus on the things that matter most to them — all while providing companies with real-time visibility, savings, and control.

Navan’s investors include visionaries like Andreessen Horowitz, Lightspeed Ventures, Greenoaks, Zeev Ventures, and entrepreneurs Lee Fixel, Adam Bain, and Elad Gil. In Oct 2022, Navan announced its Series G upround at a post-money valuation of $9.2B to help accelerate future growth plans.

In April 2023, Navan expanded in the Indian market with the acquisition of Tripeur, a modern, people-centric corporate travel and expense management company. The group’s fifth acquisition in under two years, Tripeur joined the Navan Group alongside Spanish meetings and events specialists, Atlanta Events & Corporate Travel Consultants; Berlin-based modern travel management company, Comtravo; leading Scandinavian travel agency Resia AB; and London-based high-touch TMC, Reed & Mackay.

Why Work With Us

At Navan, we’re never satisfied with the status quo, and we know breakthrough ideas come from diverse perspectives. We are committed to cultivating a workplace that reflects the diversity of the customers we serve while fostering leadership and innovation.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Navan Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

In-person connections is the foundation of Navan, the connections forged through face-to-face interactions improve company culture and what we can achieve together. We operate on a hybrid working model, which we define as three days a week in-office.

Typical time on-site: 3 days a week
Palo Alto, CA

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account