Senior Information Security Engineer

Job Locations US-Remote
Posted Date 1 week ago(5/19/2022 12:59 PM)


About Appen:

Appen is the global leader in data for the AI Lifecycle. With over 25 years of experience in data sourcing, data annotation, and model evaluation by humans, we enable organizations to launch the world’s most innovative artificial intelligence systems. Our expertise includes a global crowd of over 1 million skilled contractors who speak over 235 languages, in over 70,000 locations and 170 countries, and the industry’s most advanced AI-assisted data annotation platform. Our products and services give leaders in technology, automotive, financial services, retail, healthcare, and governments the confidence to launch world-class AI products. Founded in 1996, Appen has customers and offices globally


Position Overview

Engineering Security is the part of Appen Engineering team that is responsible for ensuring that our customers’ and our own data is safe from software and infrastructure perspective. We’re looking for an experienced and self-driven engineer and leader to help us maintain, support, and develop mature Engineering processes that comply with best practices in data and infrastructure security.



  • Develop and maintain a holistic and detailed understanding of Appen’s various software and infrastructure stacks.
  • Inspect homegrown software solutions for self-generated vulnerabilities.
  • Use automated tools to discover third-party component vulnerabilities (CVEs etc.) and infrastructure vulnerabilities.
  • Continuously prioritize, scope, groom vulnerability mitigation tasks.
  • Mitigate independently or collaborate with Engineering and other teams in mitigating security issues.
  • Help Engineering and other teams develop best practices that prevent introduction of security issues.
  • Develop monitoring solutions for security issues.
  • Own and drive projects to completion.
  • Participate and lead in emergency situations, such as security incidents.
  • Answer external and internal security and privacy related questions / inquiries in a timely and well-informed manner.
  • Collaborate in externally driven audits, pen tests, certification exercises.


Required knowledge, skills, & abilities

  • Significant experience in software and cloud infrastructure security.
  • Experience and understanding of key cloud infrastructure offerings by AWS (IAM, EC2, EKS, ECS, S3, etc.).
  • Ideally, a familiarity with Infrastructure-as-Code solutions (Terraform, CloudFormation).
  • Software development and debugging skills in at least two languages (ideally Ruby / Java / Python) and frameworks.
  • Understanding of the key protocols that drive the Internet (DNS, HTTPS, TCP/IP etc.).
  • Understanding of commonly used software infrastructure components (databases, messaging / queueing solutions, etc.), SQL a must.
  • Experience with complex systems (preferably microservices architectures).
  • Good grasp on key concepts in access control (authentication, authorization, least privilege).
  • Proactive communication / interpersonal skills.
  • Creative problem solving.
  • Perseverance in the face of complexity, competing demands, large amounts of work.
  • Ability to drive a project to conclusion.



We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.




Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed