Application security walkthrough

This page describes the walkthrough stage of the application security interview process, which is used instead of a take home exercise.

At Sourcegraph, application security engineers:

• Often read code that they haven’t written.
• Function in an asynchronous environment where clear communication is key.
• Assist other members of Sourcegraph’s team in understanding complex security-related issues, and developing creative solutions to those issues.

The aims of this interview are to:

• Allow you as a candidate to focus on an area that you are comfortable in.
• Allows a dialogue that simulates a technical discussion between you and your future peers.
• Use the discussion as a proxy for assessing your application security skills
• Have a time-efficient process for yourself and Sourcegraph.

We want to find engineers who are:

• Good communicators.
• Confident in identifying application security weaknesses that stem from a variety of sources.
• Creative and pragmatic about finding solutions to these issues.
• Able to advocate for better security practices across the organization.

The Application Security Walkthrough interview process