Sr. Software Engineer

Product & Engineering – Engineering /
Full-time /
Contrast Security Named One of the Hottest Cybersecurity Companies in the 2024 Citizens JMP Securities LLC Cyber 66 Report 
Contrast recognized for its innovation in Runtime Security

Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks, heralding the new era of self-protecting software. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate assessment and always-on protection of an entire application portfolio without disruptive scanning or expensive security experts. Only Contrast has sensors that work actively inside applications to uncover vulnerabilities, prevent data breaches, and secure the entire enterprise from development to operations to production.

About the Position 

As a Senior Software Engineer on the PHP agent team, you will work with a small group of software engineers focused on building our deep instrumentation agent-based solution for detecting, reporting, and blocking security vulnerabilities.   You must be able to work independently (remotely) while still collaborating with other technical team members and product stakeholders.  Working on our PHP agent is a team sport where you will be called on to provide deep technical insights about the PHP ecosystem and build WordPress and Druple plugins to test our product’s capabilities.  You will be tasked with reviewing pull requests and troubleshooting customer issues.  While working in this position, you will develop expertise in AppSec, Interactive Application Security Testing (IAST), Run-Time Self Protection (RASP), and Software Composition Analysis (SCA).


    • Working with a team of engineers to research and design PHP instrumentation strategies for a Contrast PHP agent
    • Building, shipping, curating, and iterating on features supported by the agent
    • Improving the accuracy, reliability, and resilience of the agent
    • Work with architecture, design, and product teams to build amazing, jaw-dropping features
    • Implementing security rules designed to detect and defend against common attack patterns and security anti-patterns
    • Investigating third-party web frameworks and servers to derive and implement instrumentation approaches
    • Building many variations of simple to complex PHP web servers to provide robust testing of our agents
    • Enhancing acceptance criteria for the agents, including performance, integration test, unit test, and code coverage metrics
    • Performing forensic investigations when the agent negatively impacts the performance or functionality of instrumented web applications


    • You develop code in PHP and/or other interpreted languages (like Python) and have at least five (5) years of industry experience as a software engineer
    • You have experience with writing and compiling C99 programs
    • You have experience with using Git or similar code management, tooling
    • You are obsessive about writing unit and integration tests to maintain our code quality
    • You have experience developing code with Continuous Integration and automated deployment
    • Experience with Apache, Docker, and running containerized web servers
    • You are comfortable developing on MacOS and running apps in Linux containers
    • You approach problems from a product perspective, thinking through how the user will interact with what you're building
    • You are a good communicator. You ask questions, let others know when you need help, and tell others what you know
    • You are a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges
    • You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally 

    • While not requisite, it’d be helpful if you have experience with some of the following:
    • Developing code in PHP web frameworks and platforms
    • Experience with C and developing PHP plug-ins

    • We are focused on building a diverse and inclusive workforce. If you’re excited about this role, but do not meet 100% of the qualifications listed above, we encourage you to apply.

What We Offer

    • A fun and dynamic environment where you work with other like-minded people on products which make a real difference to the security of our customers
    • Flexible paid time off
    • The onboarding, training, and tools to allow you to excel from day one
    • A team who are generous with their knowledge and time, who work collaboratively and provide each other a platform to succeed 
    • A competitive salary package that includes stock options

We are changing the world of software security. Do it with us.  
We believe in what we do and are passionate about helping our customers secure their business.
If you’re looking for a challenge and want to enjoy where you work, you’ll love Contrast Security.

Contrast Security is committed to a diverse and inclusive workplace. We are an equal-opportunity employer, and our team is comprised of individuals from many diverse backgrounds, lifestyles, and locations. At Contrast, we strive to build diverse teams that reflect the people we want to empower through our products. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. Equal Opportunity is the Law, and Contrast is proud to be an equal-opportunity workplace. If you have a specific need that requires accommodation, please let a member of the People Team know.

By submitting your application, you are providing Personal Information about yourself (cover letter, resume, email address, etc.) and hereby give your consent for Contrast Security, Inc. and/or our HR-related Service Providers to use this information for the purpose of processing, evaluating and responding to your application for current and future career opportunities. If you are a resident of the European Economic Area or are applying for a position in the European Economic Area, Contrast’s Privacy Statement reflects our policies around compliance with the General Data Protection Regulation (“GDPR”) and your rights respective to GDPR as a California resident, you are entitled to certain rights under CCPA: The California Consumer Privacy Act of 2018 (“CCPA”) will go into effect on January 1, 2020. Under CCPA, businesses must be overtly transparent about the personal information they collect, use, and store on California residents. CCPA also gives employees, applicants, independent contractors, emergency contacts, and dependents (“CA Employee”) new rights to privacy.

Recruitment Agencies: Although we value the services you provide, at this time, we are only accepting resumes from agencies, headhunters, or other suppliers who have signed a formal agreement with us.