Responsibilities
)
1. Identify, triage, and provide remediation guidance for application vulnerabilities, with a specific focus on IAM-related issues.
2. Select, implement, design, or build tools to manage and secure identity and access across Toast platforms.
3. Improve developer tooling and adoption to build a more robust SSDLC with respect to IAM best practices.
4. Practice a #OneTeam attitude to help other Toast teams make informed, security-conscious decisions when building new software with IAM considerations.
5. Support and expand the Security Champions program, providing IAM-specific training and guidance.
6. Assist incident response teams with application security expertise and tools, especially related to IAM incidents.
7. Build threat models on IAM applications and architecture.
8. Guide in the design and maintenance of secure authentication and authorization mechanisms.
9. Provide signals for IAM events to the SOC for better alerting and response.
Do you have the right ingredients? (Requirements)
10. Minimum 7+ years of experience in application security
11. Experience reading, reviewing, and providing security guidance forplex code in a variety of languages and frameworks (Java/Kotlin, Javascript/ES6, React, and Python are a priority), with a strong emphasis on IAM implementations.
12. Strong understanding of cloud application architecture andmon IAM weaknesses (, insecure authentication, authorization flaws, privilege escalation).
13. Experience identifying and helping to resolvemon application security flaws (, OWASP, SANS) related to IAM.
14. Successful history of being a subject matter expert to guide products and lines of business to better security oues related to IAM.
15. Previous security experience working with fintech applications and associated IAM requirements.
16. Strong understanding of privacy, security, and cryptography patterns and when to apply them, especially within IAM (such as PKIs, access management, data tokenization, and anonymization).
17. Deep understanding of IAM concepts (, OAuth, OIDC, SAML).
Special Sauce (Nonessential Skills/Nice to Haves)*
18. Cloud and container security technologies.
19. SSDLC tooling (, SAST/DAST/SCA), particularly those focused on IAM.
20. AWS IAM.
21. Infrastructure-as-code (IaC) technologies like Terraform to manage cloud security services.
22. Mobile apps/threats (iOS, Android), and their related IAM challenges.
23. Securing financial technologies and associated IAM requirements.
24. Directory services (, LDAP, Active Directory).
**This is a hybrid role, requiring two days in the office per week**
Our Spread* of Total Rewards
We strive to providepetitivepensation and benefits programs that help to attract, retain, and motivate the best and brightest people in our industry. Our total rewards package goes beyond great earnings potential and provides the means to a healthy lifestyle with the flexibility to meet Toasters' changing needs. Learn more about our benefits at //careers.toasttab/toast-benefits.
*Bread puns encouraged but not required
Diversity, Equity, and Inclusion is Baked into our Recipe for Success
At Toast, our employees are our secret ingredient-when they thrive, we thrive. The restaurant industry is one of the most diverse, and we embrace that diversity with authenticity, inclusivity, respect, and humility. By embedding these principles into our culture and design, we create equitable opportunities for all and raise the bar in delivering exceptional experiences.
We Thrive Together
We embrace a hybrid work model that fosters in-person collaboration while valuing individual needs. Our goal is to build a strong culture of connection as we work together to empower the restaurantmunity. To learn more about how we work globally and regionally, check out: //careers.toasttab/locations-toast.
Apply today
Toast ismitted to creating an accessible and inclusive hiring process. As part of thismitment, we strive to provide reasonable amodations for persons with disabilities to enable them to access the hiring process. If you need an amodation to access the job application or interview process, please contact candidateamodations@toasttab.
For roles in the United States, It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Job ID 6623175