Remote security Jobs

This Month

Senior Site Reliability Engineer
security aws terraform postgresql devops sysadmin Mar 23

Location: Remote. Candidates must be located between UTC-6 and UTC+2 time zones.

Summary

Hypothesis is seeking a Senior Site Reliability Engineer to join our product delivery team and lead our work to help us build efficient, reliable, secure, and scalable infrastructure and code. This role combines the activities of development and site reliability engineering to ensure Hypothesis technologies and services support our vision of a world where annotation is as common as comments, but more useful and engaging. Join us as we extend what the web can do.

About the role

Reporting to the Engineering Manager, the Senior Site Reliability Engineer leads the work to build, document and maintain efficient, reliable, scalable, secure and easy-to-use operations including deployment, QA and production environments, and monitoring.

  • Infrastructure:
    • Provision and administer infrastructure (hosts, cloud services, monitoring tools, etc.) for highly reliable and scalable web applications and data stores
    • Document our operations systems so that the whole team can understand and operate them. 
    • Oversee deployment of Hypothesis application servers
  • Automation:
    • Build automated tooling to configure and maintain our systems and services
    • Guide the team in the best way to use configuration management to grow and administer our services
  • Performance, reliability, security, and scaling:
    • Identify and solve performance, reliability, security, and scaling issues in our stack
    • Stress test our stack to find cracks in the system and help us scale
  • Auditing for security vulnerabilities at regular intervals, and enacting the practices set forth in our security policy.

Skills and experience you possess

  • You have experience in software development, site reliability, and backend/infrastructure engineering for an organization experiencing fast-paced growth.
  • You are knowledgeable in configuration management with a framework such as Ansible or Terraform.
  • You understand the ins and outs of AWS, Linux, and PostgreSQL well enough to teach others how to use them, and can comfortably operate all of them from the CLI.
  • You are proficient with a programming language like Python or Ruby, and with shell scripting.
  • You are familiar with security best practices and have helped to audit for and remediate security vulnerabilities in infrastructure.
  • Your documentation and verbal communication skills are excellent, and you’re able to collaborate and rally support with people on and off your team.
  • You are inclined to automate, but can discern when automation isn’t the best solution and present alternatives.
  • You’ve worked with continuous integration and deployment systems, and have ideas about how to build and improve them.
  • You strongly believe in the importance of security, and enjoy the idea of partnering with engineers to ensure the integrity of our customers’ data.
  • You have experience with remote work and understand the importance of good time management, self-motivation, and self-discipline as a remote worker. 

About you

You are someone who loves problem solving. You value simplicity over complexity. You take great satisfaction in helping others be more successful and productive and wouldn’t think to move on without documenting your work so 6-months-from-now you (or anybody else for that matter) can drop back in and understand it. We are interested in someone who wants to help everyone around them better understand how to operate software at scale and who is eager to take on the responsibilities outlined for this role. 

You will be successful at Hypothesis if you:

  • Love learning new things,
  • Unafraid to ask questions 
  • Are committed to improving both as a technologist and a human being,
  • Are tenacious, self-directed, and highly motivated,
  • Enjoy helping others around you grow as developers and be successful,
  • Communicate clearly and effectively (this is especially important in a remote organization), and
  • Approach your work with a mindset that allows for growth and change.

What’s next

Does this sound interesting? Drop us a line to tell us what about this role intrigues you and why you think you would be great for Hypothesis. Resumes are helpful, but so are examples of your recent work. We can’t wait to hear from you!

Share this job:
Software Engineer, IAM Authorization
Auth0  
node-js security postgresql aws javascript cloud Mar 23
Auth0 is a pre-IPO unicorn. We are growing rapidly and looking for exceptional new team members to add to our teams and will help take us to the next level. One team, one score. 

We never compromise on identity. You should never compromise yours either. We want you to bring your whole self to Auth0. If you’re passionate, practice radical transparency to build trust and respect, and thrive when you’re collaborating, experimenting and learning – this may be your ideal work environment.  We are looking for team members that want to help us build upon what we have accomplished so far and make it better every day.  N+1 > N.

Are you interested in building an amazing customer experience at scale? Do you want to improve your knowledge of security? Would you like to help our customers make their applications more secure? Are you ready to make the internet safer?

The IAM Authorization team at Auth0, develops and maintains the Authorization capabilities of our platform. We work on designing and developing new features and improvements related to security, scalability, performance and functionality to protect and empower our users and take our platform to the next level.

You will have the opportunity to gain a greater understanding and context about how Auth0 works and deepen your knowledge of authorization, security, databases and how to build reliable, highly-available distributed systems.

You will:

  • Collaborate with other developers and teams to develop new features, APIs, improvements and fixes to handle our current and future scale.
  • Strive to ensure the quality and customer value of our product.
  • Learn more, and in depth the domain of IAM.
  • Be a part of the team's on-call rotations to make sure we offer our client the best availability for our services.
  • Identify and resolve production issues and implement fixes for them.

You might be a good fit for this role if: 

  • You have 3+ years of software development experience.
  • You have previous experience using Node.js (JavaScript).
  • You have created or enjoy creating public APIs.
  • Are passionate about working on systems that are highly-reliable, maintainable and scalable.
  • You have experience and passion for good engineering practices and testing.
  • You have knowledge and experience of data modeling and principles of database systems (relational and non-relational).
  • You are a good communicator and enjoy interacting with people.
  • You excel when working autonomously, and know when to seek help from your team members.
  • You always strive to learn and are interested in improving your security knowledge.
  • You are located between UTC-5 and UTC+2

Preferred skills:

  • Have 2+ years of experience in the identity and access management (IAM) domain.
  • Have front-end development knowledge and some experience with frameworks such as React.
  • Have solid experience with cloud environments (e.g: AWS).
  • Know about security engineering, authentication and federation protocols, cryptography, and application security.
  • Have experience with OAuth2 and/or SAML auth protocols.
  • Have solid NodeJS experience.
  • Have experience running PostgresQL in a large-scale production environment.

Preferred locations:

  • #GMT; #US-E; #AR;
Share this job:

This Year

Information Security Officer
security sysadmin pci-dss executive Feb 19

Intergiro is a Swedish FinTech company with a purpose - we’re here to help businesses grow.

We are looking for an Information Security Officer to our HQ in Stockholm or someone to work for us remotely. The person must be citizen or resident of Sweden, Norway, Denmark, Finland, Germany, Netherlands, Portugal (Lisbon), UK or Ireland  

Role Description

The Information Security Officer (ISO) provides the vision and strategies necessary to ensure the confidentiality, integrity, and availability of electronic information by communicating risk to senior administration, creating and maintaining enforceable policies and supporting processes, and ensuring compliance with regulatory requirements.

To support these activities, the ISO coordinates activities with other services, including the evaluation, procurement, and deployment of security-related products and develops and coordinates information security awareness and education programs. Additionally, the ISO ensures that system-wide disaster recovery and incident response plans are in place.

Experience and Qualifications:

  • Education: Bachelor’s degree is preferable.
  • At least 8 years of varied experience within Information Technology
  • At least 2 years of direct experience in information security-related duties
  • Experience with computer and networking infrastructure including operating systems, network troubleshooting, firewall administration, Kubernetes configuration, network protocols, routers
  • Experience in working with corporate functions and processes including project management, regulatory compliance, risk management, information security policy, and providing training.

Skills:

  • Ability to understand hardware and software systems
  • Ability to maintain confidentiality in regard to information processed, stored, or accessed by the company’s information systems
  • Ability to manage multiple concurrent projects and to reason analytically
  • Ability to work with and train people possessing differing levels of technical knowledge
  • Effective English verbal and written communication skills and proficiency in writing technical documentation

Essential Duties and Responsibilities:

  • Creates information security strategies, both short-term and long-term, in support of the company’s goals and strategies.
  • Directs an ongoing, proactive risk assessment program for all new and existing systems and remains familiar with the company’s goals and business processes so effective controls can be put in place for those areas presenting the greatest information security risk.
  • Communicates risks and recommendations to the CIO and wider exec team, to mitigate risks by communicating in non-technical, cost/benefit terms and in a format relevant to senior administrators, so decisions can be made to ensure the security of information systems and information entrusted to the company.
  • Oversees all ongoing activities related to the development, implementation, and maintenance of the company’s information security policies and procedures by ensuring these policies and procedures encompass the overall security of electronic information at rest or in motion within our environment, assisting all service in local process and procedure development, ensuring alignment to company and regulatory policies.
  • Assists all services within the company to ensure regulatory compliance in the area of PCI DSS, GDPR and any other compliance areas that apply over time.
  • Ensures vulnerabilities are managed by directing periodic external vulnerability scans of our external facing servers and services.
  • Develops information security awareness training and education programs for company staff and contingent workers and participates in awareness and education events, as appropriate.
  • Evaluates security incidents and determines what response, if any, is needed and coordinates responses, including technical incident response teams, when sensitive information is breached.
Share this job:
Senior Back End DevOps Engineer
aws security kubernetes shell python devops Jan 16

As more companies adopt public cloud infrastructure and the increase sophistication and harm caused by cyber attacks, the ability to safeguard companies from these threats have never been more urgent.  

Lacework’s novel approach to security fundamentally converts cyber security into a big data problem.  They are a startup based in Silicon Valley that applies large scale data mining and machine learning to public cloud security.  Within a cloud environment (AWS, GCP, Azure), their technology captures all communication between processes/users/external machines and uses advanced data analytics and machine learning techniques to detect anomalies that indicate potential security threats and vulnerabilities. The company is led by an experienced team who have built large scale systems at Google, Paraccel (Amazon Redshift), Pure Storage, Oracle, and Juniper networks.  Lacework is well funded by a tier one VC firm and is based in San Jose, CA.

They are looking for a Senior DevOps engineer with strong AWS and Kubernetes experience who is excited about building an industry leading, next generation Cloud Security System.

You will be a part of the team that architects, designs, and implements highly scalable distributed systems that provide availability, scalability and performance guarantees. This is a unique and rare opportunity to get in on the ground floor and help shape their technologies, products and business.

Roles/Responsibilities

  • Assist in managing Technical Operations, Site Reliability, production operations and engineering environments 
  • Run production operations for their SaaS product
    • Manage the monitoring System
    • Debugging live production issues
    • Manage Software release roll-out
  • Use your engineering skills to promote platform scalability, reliability, manageability  and cost efficiency
  • Work with the engineering and QA teams to provide your valuable feedback about how to improve the product
  • Participate in on-call rotations (but there is really not a lot of work since you will automate everything!)

Requirements:

  • 4+ years of relevant experience (Technical Operation, SRE, System Administration)
  • AWS experience 
  • Experienced Scripting skills Shell and / or Python 
  • Eager to learn new technologies
  • Ability to define and follow procedures
  • Great communication skills
  • Computer Science degree 
Share this job:
Development Manager, Java Agent
java project-management security scrum manager Jan 14

As a member of the Contrast Security team, you will join a group responsible for industry leading Application Security products. Our team includes engineers, designers, and product managers, all focused on making the Internet safer for everyone.  We believe in agile practices to build our software, as well as continuously delivering features and improvements to our users. You are a person who is always pushing your teammates to do their best work and intolerant of anything else. Our team believes that a successful product is built by working with designers, product managers, and operators to understand the full cycle of software development.

The role of the Development Manager involves a balance of day-to-day personnel management, as well managing development projects in a cross-functional manner. Development managers are not just managers, as they are expected to commit code, but at a different pace than contributing engineers. This is our flagship development team and the opportunity to lead a group of very talented and motivated software engineers.

As Development Manager of the Java Agent team you have a number of responsibilities, but the primary one is to ship product out the door. Your goal is deliver results to the customer and market. To do this you need to make sure the development team is able to work as efficiently as possible and this means making sure they have clear goals, both short term and long term, and that nothing prevents them from doing their work. From the initial project scope to deploying the product out to customer sites, each step is your responsibility. You can, and should, delegate as much as you can but be ready to check that things are being done as you want and be ready to jump in if it is not.

Roles and Responsibilities

  • Own your product and software code base, including the feature road map, customer issues/defects and the technology road map.
  • Lead up cross-functional development project initiatives owning project management, issue tracking, scoping and planning.
  • Collaborate with the Product Owner, Scrum Master and Development team to deliver a high-value, first class security product.
  • Drive the daily standup meeting with the team to ensure the project is on-track and that issues are resolved timely.
  • Support all hiring and recruiting initiatives for your team.
  • Work on technical designs and architectural initiatives on a project by project basis.
  • Manage individuals supporting their personal/career growth and development.
  • Develop team and individual goals/objectives that align to the department and company goal
  • Perform consistent and regular individual one on one meetings with team members.
  • Be a team player. You love to work with others to find the right solutions.

About You

  • You love to manage others and make them better developers.
  • You love to code and deploy at scale.
  • Desire to make the Internet a safer place.
  • You approach problems from a product perspective, thinking through how the user will interact with what you're building.
  • You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.
  • You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.
  • You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.

What We Offer

  • Competitive compensation
  • Daily team lunches
  • Meaningful stock plans
  • Medical, dental, and vision benefits
  • Flexible paid time off
Share this job:
Test Engineer
testing qa automation security agile linux Jan 14

Do you love to learn and share with a team who will rely on you and your attention to detail to discover information, risks and issues to ensure we continue to deliver the service our customers trust and expect from us? Are you passionate about testing?

Skills and experience

Essential

  • Test design skills supported by strong lateral and critical thinking skills
  • Ability to document testing at all levels to meet contractual needs, whilst maintaining operational pragmatism for their own work
  • Demonstrable knowledge of relevant HMG security standards, control objectives and best practice controls from NCSC
  • Understanding of security risks when developing products and the ability to identify risks for potential testing
  • Experience of using active listening skills and questioning test requirements and designs to improve team understanding of tasks
  • Appreciation of agile principles and experience of working as a tester in Kanban, SCRUM or similar contexts
  • Experience of testing in a Linux (CentOS / RedHat) environment, ideally virtualized/cloud-based (e.g. Amazon EC2)

Desirable

  • Passionate about self-improvement, active blogger on software testing and/ or involvement in the testing community
  • Experience testing video conferencing or similar collaboration tools
  • Exposure to development techniques such as TDD, code reviews and pairing
  • Able to identify and potentially create bespoke tooling for Exploratory testing activities
  • Exposure to infrastructure automation tools such as Docker and Vagrant

Responsibilities

  • Be an advocate for agile and context driven testing approaches both internally and externally
  • Encourage a collaborative, test-first team environment and support team collaboration and ownership of quality
  • For projects, write a clear and concise test strategy covering both functional and non-functional requirements (e.g. security/vulnerability assessment, load/performance and usability), applying manual and automated methods as appropriate
  • Testing requirements to ensure they are well defined and result in teams agreeing in the understanding of requirements
  • Plan, execute and report exploratory testing sessions for risks and features
  • Assist in the strategy and maintenance of automated test frameworks (Java/JavaScript), whilst following applicable software engineering practices; such as configuration and change management
  • Work with the team to identify potential security risks and scheduled security testing when required
  • Share knowledge, expertise and best practice with other members of the team, including the application and selection of appropriate tools
  • Continuous improvement of the test engineering processes and practices
Share this job:
Back-End Software Engineer
Nor1  
mongodb python docker mysql security backend Jan 03

We are looking for a back-end Software Engineer to help us build the next generation of our upsell decisions platform. You will join the Nor1 Tech team, who are a collaborative group of engineers, product managers, and data scientists. Rather quickly, we will look to your technical expertise to create reliable, scalable, and high-performance components. 

Primary Responsibilities

  • Own the design, implementation, testing, and maintenance of our backend components:  applications, data, infrastructure, analytics, and deployment. 
  • Establish architectural principles, select design patterns, and lead engineers on their applications. 
  • Work with the team to investigate design approaches, prototype new technology, and evaluate technical feasibility. 
  • Stay current with best practices and emerging technologies to incorporate into our operations and stack. 

Skills & Qualifications

  • 5 years experience with building high-performance, highly-available and scalable distributed systems.
  • BS or MS in Computer Science or a related technical field preferred.
  • High Proficiency in Python;
  • Proficiency with Docker and containerized micro services in major clouds (AWS, GCS, Azure…)
  • PHP or NodeJS is a plus. 
  • Experience with MySQL and MongoDB data stores.
  • Know-how with secure coding practices, e.g. OWASP guidelines, is preferred. 
  • Developed and deployed applications on AWS; integration with AWS managed services is a plus. 
  • Have DevOps mentality, reduce friction with automation.
  • Working understanding of CI/CD and configuration management.
  • Exposure to machine learning pipelines and online inference 
  • A willingness to dive deep, experiment rapidly, and get things done.

Nor1 Technology Stack

  • MongoDB, MySQL, Redshift, Redis
  • NginX, Route53, Apache, ELB
  • Mix of AWS cloud services and IBM Cloud (bare metal servers)
    • Centos, Amazon Linux, Windows Server
  • Python (main), PHP, Javascript, NodeJS
  • Docker, Swarm, K8s
  • OpsGenie, Jira, Confluence, Nagios, Pingdom, ELK stack, Docker, Detectify, Tennable.io
Share this job:
Senior Backend Developer
KNØX  
security backend blockchain linux senior c Dec 16 2019

KNØX is a custodian for cryptocurrencies. We're looking for a talented backend programmer to develop secure and robust components for our core activities: key management, payment processing, and risk transfer.

The tools and systems you build will be part of our core custody infrastructure. You must be able to design and implement software securely and concisely.

To excel at KNØX you must demonstrate exceptional performance across multiple paradigms. You're likely someone who has an eye for details which gives rise to a deep interest in distributed systems, writing bug-free code, and the practice of engineering software.

If you are interested in leading projects from conception to deployment and exploring a problem space without established solutions, we'd love to talk. 


Requirements

  • 3+ years of professional programming experience
  • Fluency in one of C, Go, or Python
  • Fluency in at least one language with a real type system
  • Ability to deploy and monitor containerized software in a Linux environment
  • Proficiency in English, spoken and written
  • Deep knowledge of one of the following:
    • Information security
    • Networking
    • Distributed systems
    • Database design and operation
    • Embedded systems
    • Formal methods


Responsibilities

  • Specify and implement controls to ensure the security of our services
  • Collaborate with our product development team to specify and implement APIs that front-end implementations will consume
  • Research, communicate, and implement the state of the art in secure software


Nice to have

  • Degree in computer science or related field
  • Experience with financial services or blockchain-based systems
  • Enough group theory to be dangerous
Share this job:
Director of Engineering
Hays  
continuous-integration security automation executive testing devops Dec 12 2019
Hays Specialist Recruitment is working in partnership with Security Scorecard to manage the recruitment of this position

The end client is unable to sponsor or transfer visas for this position; all parties authorized to work in the US without sponsorship are encouraged to apply.

This position is NOT eligible for subcontractors or those that require sponsorship.

Hays is conducting an exclusive search for a Director of Engineering, for a Cybersecurity company based in NYC. Security Scorecard builds a very unique product that rates cybersecurity postures of corporate entities through the scored analysis of cyber threat intelligence signals for the purposes of third party management and IT risk management. They have a very modern Technology stack and work in a dynamic & agile environment. The position is 100% remote and you'll be responsible for the day to day management of the DevOps and IT/IS Teams, deployment of the software and maintaining the production software. Your experience should involve managing 5+ direct engineering reports and a total staff of 10-20 members, 10+ years leadership experience and Experience with Automation and the leadership of a CI/CD pipeline.

Director of Engineering - Perm - New York, NY

Responsibilities:
* Day to day management of the DevOps and IT/IS teams
* Deployment of all platform software
* Maintaining the production environment
* The management of all high value/high availability systems requiring 24/7 monitoring
* You will be the de facto leader of the Sustaining Team
* Building engineering process and workflows
* Building project plans for the deployment of all IT projects
* Leading the negotiation of all software contracts
* Process documentation
* Customer facing communications (escalations)

Leadership Requirements:
* Stay focused on customer and market needs
* Develop a culture of openness and team-work
* Communicate and translate the clients' vision into goals for multiple Software Engineering teams
* Support organizational capacity through staffing, budgeting, compensation planning, skills development, and acquisition of required tools and technologies
* Collaborate effectively across all functions to ensure organizational effectiveness
* Handle escalations that cannot be resolved independently by direct reports, and may similarly escalate to more senior management as appropriate
* Balance available resources to support the objectives of multiple teams
* Expert understanding of underlying technology, product and product domain, to participate effectively in technical and release discussions

Requirements:
* Has previously managed 5+ direct engineering reports and a total engineering staff of 10-20 employees
* Education: Bachelor's degree in Computer Science or a related field is required
* Must have previously led a Sustaining Team, or similar role
* Experience with automation, and the leadership of a CI/CD pipeline
* 10 or more years of leadership experience within the software domain

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the Information Technology industry and market trends . Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there's a position you really want, you're fully prepared to get it. Additionally, if the position is a consulting role, Hays offers you the opportunity to enroll in full medical, dental or vision benefits.

* Medical
* Dental
* Vision
* 401K
* Life Insurance ($20,000 benefit)

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is an Equal Opportunity Employer.

Drug testing may be required; please contact a recruiter for more information.
Share this job: