Remote Engineer + Security Jobs in Feb 2021 Open Startup
RSS
API
Remote HealthPost a job

find a remote job
work from anywhere

Browse 10+ Remote Engineer Security Jobs in February 2021 at companies like Aha!, Doximity and Numbrs Personal Finance AG working as a Software Engineer, Security, Sr Security Engineer — Ruby on Rails or Security Engineer. Last post

Join 89,877+ people and get a  email of all new remote Engineer + Security + jobs

Subscribe
×

  Jobs

  People

👉 Hiring for a remote Engineer + Security position?

Post a job
on the 🏆 #1 remote jobs board
Remote Health by SafetyWing
Global health insurance for freelancers & remote workers
Remote Health by SafetyWing
Global health insurance for freelancers & remote workers
Advertise here

Previous remote Engineer + Security jobs

This job post is closed and the position is probably filled. Please do not apply.
Aha! engineering is a mid-sized, fully remote team that is highly productive. We are centered around North American time zones so we can collaborate during the workday.\n\n**Our team**\n*  **We utilize [The Responsive Method](https://www.aha.io/company/the-responsive-method)**: The eight principles drive how we operate Aha! and serve customers and employees.\n*  **We move quickly**: We ship code multiple times a day. We believe in getting new features in front of customers and iteratively improving as we learn what works and what does not.\n*  **We collaborate:** We each bring unique experiences and skills to the table. Working together to share that knowledge benefits the entire team and helps us produce the best results for our customers.\n*  **We value product over process:** We want the team to have the time and focus to solve complex challenges. We aim to minimize the overhead introduced by heavyweight processes and excessive meetings.\n*  **We are happy:** it is important to us that you love your job and are happy at work. Learn more about our company [values](https://www.aha.io/company/culture). Check out our generous [benefits](https://www.aha.io/company/careers/benefits).\n\n**Our technology**\n\nOur sole product is the Aha! web application. It is a single-instance, multi-tenant Ruby on Rails monolith supported by Postgres (database), Redis (background jobs), and memcached (Rails caching). We also run a Node.js webserver to support collaborative editing and real-time updates. Our application is hosted on Amazon Web Services and architected with ECS for reproducibility and scalability.\n\nWe use React for rich client-side experiences on the front end. Some of the features we have built with React include:\n\n* Our fully collaborative [text editor](https://www.aha.io/blog/collaborative-writing): Supports multiple cursors and simultaneous editing by any number of users. We also published a [blog post](https://www.aha.io/engineering/articles/how-to-build-collaborative-text-editor-rails) explaining the underlying technology.\n* Our [presentation editor](https://www.aha.io/blog/product-roadmap-presentation-editor): Allows users to create presentations with slide themes, shapes, text, and embedded Aha! reports (which update live so the presentation is always current).\n* Our [Gantt chart](https://www.aha.io/blog/roadmap-gantt-chart): Supports scaling and scrolling to change the timeline, drag-and-drop, and quick actions to create records or sort the bars.\n* We embrace new technologies that help us deliver a lovable product, but we also remain cognizant of the maintenance overhead that a new library or platform brings. We solve the problems in front of us, rather than prematurely optimizing to address issues that may never materialize.\n* We do most of our collaboration and planning in Aha! itself, which we find especially rewarding. We also utilize GitHub, Slack, and GoToMeeting for video calls.\n\n**Your experience**\nWe believe that being a kind person who elevates the rest of the team is just as valuable as writing great code. You have strong problem-solving skills and experience working on important functionality for a cloud-based product. You are humble, eager to learn, and always willing to help others learn as well. You want to work with people who enjoy picking up a problem and solving it, regardless of the technologies and techniques involved.\n\nThe Aha! security team is part of the engineering team and is product focused. As a Senior Security Engineer, you can expect to spend the majority of your time working with Ruby on Rails and JavaScript code for security reviews, investigations, updates, and implementing security features.\n\n**Your work at Aha!**\nWe maintain security controls and perform security reviews on a broad range of features across the full stack. Your work will include:\n\n* Security code reviews that go above and beyond what can be found through scanning tools (which we use too!)\n* Cloud and network security reviews of Amazon Web Services infrastructure that is implemented via infrastructure as code\n* Monitoring third-party dependency vulnerability reports and applying fixes and mitigations\n* Sharing security findings and new developments internally for ongoing education\n* Participating in security monitoring, incident response, and investigations\n\nIf this sounds appealing, we would love to hear from you. A real human reviews every application. \n\n#Salary\n$110,000 — $160,000\n\n\n#Location\nNorth America


See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Aha!

 

closed
North America

Sr Security Engineer — Ruby on Rails  


Aha!

North America

security

 

ruby on rails

 

code review

 

infosec

 

security

 

ruby on rails

 

code review

 

infosec

 
This job post is closed and the position is probably filled. Please do not apply.
Aha! engineering is a mid-sized, fully remote team. We are centered around North American time zones so we can collaborate during the workday.\n\n# Our core values\n# \n* [The Responsive Method](https://www.aha.io/company/the-responsive-method): These 8 principles drive how we operate Aha! and serve customers and employees.\n* Moving quickly: We ship code multiple times a day. We believe in getting new features in front of customers and iteratively improving as we learn what works and what does not.\n* Product over process: We want our engineers to have the time and focus to solve complex challenges. We aim to minimize the overhead introduced by heavyweight processes and excessive meetings.\n* Collaboration: We each bring unique experiences and skills to the table. Working together to share that knowledge benefits the entire team and helps us produce the best results for our customers.\n# Who we're looking for\n# \nWe believe that being a kind person who elevates the rest of the team is just as valuable as writing great code. We look for strong problem-solving skills and experience working on important functionality for a cloud-based product. We need people who are humble, eager to learn, and always willing to help others learn as well. We want to work with people who enjoy picking up a problem and solving it, regardless of the technologies and techniques involved.\n\nThe Aha! security team is part of the engineering team and is product focused. As a Senior Security Engineer, you can expect to spend the majority of your time working with Ruby on Rails and JavaScript code for security reviews, investigations, updates, and implementing security features.\n\n# Our technology\n# \nOur sole product is the Aha! web application. It is a single-instance, multi-tenant Ruby on Rails monolith supported by Postgres (database), Redis (background jobs), and memcached (Rails caching). We also run a Node.js webserver to support collaborative editing and real-time updates. Our application is hosted on Amazon Web Services and architected with ECS for reproducibility and scalability.\n\nWe use React for rich client-side experiences on the front end. Some of the features we have built with React include:\n\n* Our fully [collaborative text editor](https://www.aha.io/blog/collaborative-writing): Supports multiple cursors and simultaneous editing by any number of users. We also published a blog post explaining the underlying technology.\n* Our [presentation editor](https://www.aha.io/blog/product-roadmap-presentation-editor): Allows users to create presentations with slide themes, shapes, text, and embedded Aha! reports (which update live so the presentation is always current).\n* Our [Gantt chart](https://www.aha.io/blog/roadmap-gantt-chart): Supports scaling and scrolling to change the timeline, drag-and-drop, and quick actions to create records or sort the bars.\n\nWe embrace new technologies that help us deliver a lovable product, but we also remain cognizant of the maintenance overhead that a new library or platform brings. We solve the problems in front of us, rather than prematurely optimizing to address issues that may never materialize.\n\nWe do most of our collaboration and planning in Aha! itself, which we find especially rewarding. We also utilize GitHub, Slack, and GoToMeeting for video calls.\n\n# What you’ll be doing\n# \nWe maintain security controls and perform security reviews on a broad range of features across the full stack. Your work will include:\n\n* Security code reviews that go above and beyond what can be found through scanning tools (which we use too!)\n* Cloud and network security reviews of Amazon Web Services infrastructure that is implemented via infrastructure as code\n* Monitoring third-party dependency vulnerability reports and applying fixes and mitigations\n* Sharing security findings and new developments internally for ongoing education\n* Participating in security monitoring, incident response, and investigations\n\nIf this sounds appealing, we would love to hear from you. A real human reviews every application, so please use the form to help us learn more about you.\n\n#Location\nNorth America


See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Doximity


verified closed
North America

Software Engineer Security


Doximity

North America

software engineer

 

security

 

health tech

 

hackerone

 

software engineer

 

security

 

health tech

 

hackerone

 
This job post is closed and the position is probably filled. Please do not apply.
Doximity is transforming the health care industry. Our mission is to help clinicians be more productive, informed, and connected. As a software engineer, you'll work within cross-functional delivery teams alongside other engineers, designers, and product managers in building software to help improve health care.  \n\nOur [team](https://www.doximity.com/about/company#theteam) brings a diverse set of technical and cultural backgrounds and we like to think pragmatically in choosing the tools most appropriate for the job at hand.\n\n**Here's How You Will Make an Impact**\n\n* Help maintain our private security bug bounty program hosted on [hackerone](https://www.hackerone.com/): this involves engaging security researchers, validating security finds, determining impact/risk, awarding bounties, and fixing or coordinating remediation efforts.\n* Help set good security posture; this includes finding bad security habits in applications and encapsulating good secure defaults into libraries/modules, creating training materials for application developers, etc.\n* Work side-by-side with the rest of the infrastructure, application, and data teams to empower all of engineering to move quickly while meeting security requirements.\n* Design and implement secure and easy-to-use tooling and abstractions for other teams to leverage.\n* Active involvement in the design, implementation, and maintenance of the development, staging, and production infrastructure.\n* Participate in an on-call rotation for the services owned by your team.\n* Help ensure the stability and uptime of services within the organization.\n* Create concise post-mortems in the event of an outage.\n* Write and maintain run-books for other engineers to leverage.\n* Ensure proper security, monitoring, alerting, and reporting.\n\n**What we’re looking for**\n\n* You’re a software engineer with more than 4 years of experience and a deep understanding of software engineering practices.\n* You either have experience with security or really want to dive in headfirst and learn.\n* You don’t shy away from:\n* Reading, reviewing, and implementing our implementation of the [oauth spec](https://tools.ietf.org/html/rfc6749).\n* Getting dirty with CORS, CSRF, XSS, etc\n* Our web applications are built primarily using Ruby, Rails, Javascript (Vue.js), and a bit of Golang\n* You have experience working with Terraform and Chef (or similar tooling).\n* You are proficient with Linux/Unix, AWS, and Git.\n* You are able to maintain a minimum of 5 hours overlap with 9:30 to 5:30 PM Pacific time.\n* You can dedicate about two weeks per year for travel to company events.\n\n**Benefits & Perks**\n\n* Generous time off policy\n* Comprehensive benefits including medical, vision, dental, Life/ADD, 401k, flex spending accounts, commuter benefits, equipment budget, educational resources and conference access\n* Family support and planning benefits\n* Pre-IPO stock incentives\n* .. and much more! For a full list, see our [career page](https://work.doximity.com/)\n\n**About Doximity**\n\n* Here are [some of the ways we bring value to doctors](https://drive.google.com/file/d/1qimYh0mG3i1nTJe6jDCDepJt2i4o8MEB/view)\n* Our web applications are built primarily using Ruby, Rails, Javascript (Vue.js), and Golang\n* Our data engineering stack run on Python, MySQL, Spark, and Airflow\n* Our production application stack is hosted on AWS and we deploy to production on average 50 times per day\n* We have over 350 private repositories in Github containing our applications, forks of gems, our own internal gems, and [open-source projects](https://github.com/doximity)\n* We have worked as a distributed team for a long time; we're currently about [65% distributed](https://blog.brunomiranda.com/building-a-distributed-engineering-team-85d281b9b1c)\n* Find out more information on the [Doximity engineering blog](https://technology.doximity.com/)\n* Our company [core values](https://work.doximity.com/)\n* Our [recruiting process](https://technology.doximity.com/articles/engineering-recruitment-process-doximity)\n* Our [product development cycle](https://technology.doximity.com/articles/mofo-driven-product-development)\n* Our [on-boarding & mentorship process](https://technology.doximity.com/articles/software-engineering-on-boarding-at-doximity)\n\nWe’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $3.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunities for you to make an impact—join us!\n\n*Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.*\n\n#Location\nNorth America


See more jobs at Doximity

# How do you apply?\n\n This job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.

Doximity


verified closed
North America

Software Engineer Security


Doximity

North America

security

 

devops

 

health care

 

hackerone

 

security

 

devops

 

health care

 

hackerone

 
This job post is closed and the position is probably filled. Please do not apply.
Doximity is transforming the healthcare industry. Our mission is to help doctors be more productive, informed, and connected. As a software engineer, you'll work within cross-functional delivery teams alongside other engineers, designers, and product managers in building software to help improve healthcare.  \n\nOur team brings a diverse set of technical and cultural backgrounds and we like to think pragmatically in choosing the tools most appropriate for the job at hand.\n\n**Here's How You Will Make an Impact**\n\nHelp maintain our private security bug bounty program hosted on [hackerone](https://www.hackerone.com/): this involves engaging security researchers, validating security finds, determining impact/risk, awarding bounties, and fixing or coordinating remediation efforts.\nHelp set good security posture; this includes finding bad security habits in applications and encapsulating good secure defaults into libraries/modules, creating training materials for application developers, etc.\nWork side-by-side with the rest of the infrastructure, application, and data teams to empower all of engineering to move quickly while meeting security requirements.\nDesign and implement secure and easy-to-use tooling and abstractions for other teams to leverage.\nActive involvement in the design, implementation, and maintenance of the development, staging, and production infrastructure.\nParticipate in an on-call rotation for the services owned by your team.\nHelp ensure the stability and uptime of services within the organization.\nCreate concise post-mortems in the event of an outage.\nWrite and maintain run-books for other engineers to leverage.\nEnsure proper security, monitoring, alerting, and reporting.\n\n**What we’re looking for**\n\nYou’re a software engineer with years of experience and a deep understanding of software engineering practices.\nYou either have experience with security or really want to dive in headfirst and learn.\nYou are not afraid of:\nReading, reviewing, and implementing our implementation of the oauth spec.\nGetting dirty with CORS, CSRF, XSS, etc\nYou’re proficient in:\nRuby, Python, or Golang. Not afraid to learn the rest.\nJavascript\nYou have experience working with Terraform and Chef (or similar tooling).\nYou are proficient with Linux/Unix, AWS, and Git.\nYou are self-motivated and able to manage yourself and your own queue.\nYou are a problem solver with a passion for simple, clean, and maintainable solutions.\nYou agree that concise and effective written and verbal communication is a must for a successful team.\nYou are able to maintain a minimum of 5 hours overlap with 9:30 to 5:30 PM Pacific time.\nYou can dedicate about two weeks per year for travel to company events.\n\n**Benefits & Perks**\n\nGenerous time off policy\nComprehensive benefits including medical, vision, dental, Life/ADD, 401k, flex spending accounts, commuter benefits, equipment budget, and continuous education budget\nPre-IPO stock incentives\n.. and much more! For a full list, see our career page\n\n**About Doximity**\n\nHere are some of the ways[ we bring value to doctors](https://drive.google.com/file/d/1qimYh0mG3i1nTJe6jDCDepJt2i4o8MEB/view)\nOur web applications are built primarily using Ruby, Rails, Javascript (Vue.js), and Golang\nOur data engineering stack run on Python, MySQL, Spark, and Airflow\nOur production application stack is hosted on AWS and we deploy to production on average 50 times per day\nWe have over 350 private repositories in Github containing our applications, forks of gems, our own internal gems, and [open-source projects](https://github.com/doximity)\nWe have worked as a distributed team for a long time; we're currently [about 65% distributed](https://blog.brunomiranda.com/building-a-distributed-engineering-team-85d281b9b1c)\nFind out more information on the [Doximity engineering blog](https://technology.doximity.com/)\nOur [company core values](https://work.doximity.com/)\nOur [recruiting process](https://technology.doximity.com/articles/engineering-recruitment-process-doximity)\nOur [product development cycle](https://technology.doximity.com/articles/mofo-driven-product-development)\nOur [on-boarding & mentorship process](https://technology.doximity.com/articles/software-engineering-on-boarding-at-doximity)\n\nWe’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $3.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunities for you to make an impact—join us!\n\n*Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.*\n\n \n\n \n\n#Location\nNorth America


See more jobs at Doximity

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Aha!


closed
North America

Security Engineer Ruby on Rails


Aha!

North America

security

 

ruby on rails

 

infosec

 

ruby

 

security

 

ruby on rails

 

infosec

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
Are you a Security Engineer who is passionate about finding and fixing security vulnerabilities in a sophisticated SaaS platform? Do you want to work with cutting-edge visualization, collaboration, and social ideation technologies at the same time?\n\nAs a Senior Security Engineer at Aha!, you will have an excellent opportunity to join a self-funded and profitable company that is growing fast. Aha! was founded by a proven team of experts. More than 300,000 users worldwide trust our roadmap software to build products customers love.\n\n# Responsibilities\n **We are looking for someone who:**\n* Finds joy in breaking (and then fixing) software\n* Has experience with Ruby on Rails and Javascript based applications\n* Has experience with AWS\n* Has worked on compliance projects and security policy development\n* Has driven security initiatives or delivered security training\n* Wants to be great and work in a fast-moving, online environment where the end-user is key \n\n# Requirements\n**We are committed to being great, and we want someone who:**\n* Can work at a fast-paced company where the feedback cycle is measured in hours rather than weeks\n* Has a background of delivering superb work again and again\n* Is seeking a career-defining opportunity and a proven, results-oriented team that has sold multiple software companies\n* Is interested in collaborating with software engineers to grow their skills and career\n\n#Location\nNorth America


See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Numbrs Personal Finance AG


closed
🌏 Worldwide

Security Engineer


Numbrs Personal Finance AG

🌏 Worldwide

security

 

aws

 

python

 

infosec

 

security

 

aws

 

python

 

infosec

 
This job post is closed and the position is probably filled. Please do not apply.
At Numbrs, our engineers don’t just develop things – we have an impact. We change the way how people are managing their finances by building the best products and services for our users. \n\nNumbrs engineers are innovators, problem-solvers, and hard-workers who are building solutions in big data, mobile technology and much more. We look for professional, highly skilled engineers who evolve, adapt to change and thrive in a fast-paced, value-driven environment.\n\nJoin our dedicated technology team that builds massively scalable systems, designs low latency architecture solutions and leverages machine learning technology to turn financial data into action. Want to push the limit of personal finance management? Join Numbrs.\n\n**Job Description**\n\nYou are responsible for planning, developing, and monitoring all information security aspects of the organisation and our large scale micro-service based distributed systems. From establishing security policies, implementing active defense-in-depth strategies, to conducting reviews of software and infrastructure, you are leading a security-first organisation without compromise. You enjoy learning new things and keep yourself up to date on the latest security threats and defenses. You are a great teammate who thrives in a dynamic environment with rapidly changing priorities.\n\n**All candidates will have**\n* a Bachelor's or higher degree in a technical field of study or equivalent work experience\n* experience in establishing organisation wide security policies and procedures in a regulated environment\n* experience in security auditing of back-end distributed systems and infrastructure\n* experience with encryption standards, and securing sensitive data in flight and at rest\n* good knowledge of at least one modern programming language, such as Go, Java, C++, or Python\n* hands-on experience with performing code and design reviews\n* excellent troubleshooting and creative problem-solving abilities\n* excellent interpersonal skills, English written and oral communication\n\n**Ideally, candidates will also have**\n* experience with the management of personal data according to the GDPR\n* hands-on experience in securing and monitoring Amazon Web Services infrastructure\n* good understanding of modern authorization protocols like OAuth2 and OpenID Connect\n\n#Location\n🌏 Worldwide


See more jobs at Numbrs Personal Finance AG

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Virtual Pediatric Systems, LLC


closed
USA

DevOps Security Engineer


Virtual Pediatric Systems, LLC

USA

devops

 

devsecops

 

security

 

infosec

 

devops

 

devsecops

 

security

 

infosec

 
This job post is closed and the position is probably filled. Please do not apply.
How would you like to have an integral role making a difference in thousands of children’s lives? Come join our established (since 2002) and innovative team in Healthcare working with cutting edge technology to support medical professionals who are changing the way children are cared for all over the world. \n\nWe are looking to hire a full time, self-motivated DevOps Security Engineer to help us build the security infrastructure that is used to drive quality improvement initiatives and research at hundreds of hospitals around the world. This job is open to 100% remote candidates residing within the USA. \n\nAbout us:\nVirtual Pediatric Systems, LLC (“VPS”, www.myvps.org) has grown from a small group of intensivists to a national organization with over 135 hospital units. The data base is the largest collaborative for quality improvement based on severity of illness adjusted comparisons of actual, detailed patient records in critical care. This is a unique achievement.\n\nBased on this achievement, VPS provides state of the art quality reports that are detailed, actionable and comprehensive for practitioners and hospital administrations. VPS has improved the quality of critical care, built the largest national research collaborative, supported the publication of 100+ papers and contributed to saving thousands of children’s lives.\n\nIn the future, VPS is ideally situated to expand from providing quality assessments to providing decision support, detailed outcomes tracking, discovery and prediction of adverse events and truly effective comparative research on hundreds of thousands of critically ill children. This will be achieved on top of VPS’s already successful and vibrant critical care network by adding automated data collection and sophisticated data analysis being pioneered by researchers working with VPS developing an advanced computational framework for decision support in critically ill children.\n\nEveryone on the VPS team is passionate and genuinely believes in and is proud to help VPS's mission to improve critical care quality and outcomes for all children and their families through collaborative high-quality data management and actionable comparative reports for clinicians and other health care leaders.\n\n\n# Responsibilities\n You will be responsible for:\n* Design and integration of cyber security toolsets to enable automated discovery, remediation, and alerting of system vulnerabilities. \n* Maintain compliance and security certifications. \n* Run vulnerability scans and remediate any vulnerabilities. \n* Collaboratively drive security incident response. \n* Manage our infrastructure, including Active Directory and AWS configurations. \n* Optimize AWS deployments for scalability, efficiency and security.\n* Continually research, evaluate, and apply emerging technologies to improve security and the products.\n* Willingness to take ownership of security issues in a 24/7 environment.\n* Help troubleshoot production issues and participate in on call rotation.\n \n\n# Requirements\nThe ideal candidate is:\n* A self-starter who leads by example, and is both disciplined and accountable for delivering accurate and timely results\n* Ability to communicate clearly and effectively \n* Expertise in implementing and maintaining compliance (HIPAA, SOC 2, HITRUST)\n* Skills & Requirements\n* Proficiency with Active Directory, networking, and group/policy administration\n* Proficiency with configuration management tools in both Windows and Linux environments\n* Must have proficiency with security and networking at an expert level\n* Proficiency with heavy system automation and scripting \n* Must have experience with AWS \n* Integrating security into a deployment pipeline\n* Experience and interest in healthcare \n\n\n#Location\nUSA


See more jobs at Virtual Pediatric Systems, LLC

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Platform.sh


closed

Security Compliance Engineer


Platform.sh


security

 

infrastructure

 

compliance

 

infosec

 

security

 

infrastructure

 

compliance

 

infosec

 
This job post is closed and the position is probably filled. Please do not apply.
To reinforce our commitment to customers’ privacy, we are looking to grow our compliance team. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.\n\nFor its PaaS solution, https://platform.sh is looking for a Security & Compliance Engineer with a taste for Python and Go, great Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC compliance, and a real hunger for the challenges of building compliant distributed systems.\n\nThis position is unique and well suited for engineers wanting to transition into a heavy security and compliance role. We are targeting developers/sysadmins that like writing documentation. Initially, this high-visibility position will be non-coding while we overcome a bubble of compliance activities. In the future this role may convert over to a SecOps engineering position depending upon the desire of the candidate. \n\nSecurity, privacy and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated, where every constraint becomes a feature making the product better.\n\nThe ideal candidate will work USA-friendly hours (and ideally resides in the Americas). \n\nAbout Platform.sh \n\nPlatform.sh is an idea-to-cloud application platform that simplifies cloud infrastructures.\n\nWe give developers the tools they need to experiment, innovate, get rapid feedback and deliver better-quality features with speed and confidence thanks to our unique rapid cloning technology.\n\nPlatform.sh serves thousands of customers worldwide including The Financial Times, Gap, Magento Commerce, Orange, Hachette, Ikea, Stanford University, Harvard University, The British Council, and Lufthansa.\n\nWe want people who are passionate, open, multicultural, friendly, humble and smart to join us and help this fast-growing, award-winning company to revolutionize the tech industry.\n\n\n\n# Responsibilities\n Directly reporting to our Security, Compliance and Data Protection Officer (VP), and in close interaction with our Chief Product Officer, CTO, VP of Infrastructure, and our Engineering and Customer Support teams, you will be responsible for:\n\n- acting as a technical liaison between our compliance department and our product, engineering, and operations staff\n- creating documentation and processes in English to help satisfy compliance requirements\n- evaluating, deploying, and possibly creating, systems and tools that will enhance our support and operations efficiency\n- supporting our data protection officer and compliance team with information requests, pen testing, disaster recovery, and related activities\n- executing our security incident management process\n- working with appropriate teams to deploy and operate security tools and solutions\n- ensuring all systems, security applications, and services in environment are securely configured and managed through operating system appropriate security platforms and tools\n- ensuring optimal operation of all security solutions and tools\n- automating all the above, so we can instead drink margaritas (or non-alcoholic beverages, of course) \n\n# Requirements\nThe ideal candidate must have:\n\n- works USA-friendly hours\n- has excellent written English skills (as in, you could have been a tech writer or commercial author in another life)\n- has proven experience with Linux (preferably Debian-based)\n- knows markdown\n- has experience implementing PCI, SOC, or related\n- can operate largely independently (go take that hill) with management support\n- has proven successful experience in an operations role\n- has had good exposure to cloud services (AWS in particular)\n- understands how an OS works, knows networking, how git works, and the constraints of a distributed system\n- is proficient in Python\n- has an understanding of\n .. Patch and Vulnerability Management process\n .. Principle of Least Privilege\n .. Incident response\n .. Identity and Access Management\n .. IPTABLES\n .. WAFs\n \n\nNice to have :\n\n- resides in the Americas\n- has experience with containerization technologies (LXC/LXD, Docker)\n- has experience with vendor management\n- has experience with Puppet\n- has demonstrated the ability to successfully manage cloud-based infrastructure for a fast growing organization\n- knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n- has experience with Golang\n- relational database skills\n- public speaking experience\n- ability to speak French or German a plus\n- ability to kick ass in Chess or beat Zork without using a map\nCISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP Certification or similar will get you moved to the top of the queue\n- CIPM/E, CIPP/E, CIPM/E certification or similar will get you moved to the top of the queue\n- can bravely take on new challenges like a Gryffindor, analyzes problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.


See more jobs at Platform.sh

# How do you apply?\n\n This job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.

Numbrs Personal Finance AG


closed

Security Engineer


Numbrs Personal Finance AG


penetration testing

 

golang

 

java

 

python

 

penetration testing

 

golang

 

java

 

python

 
This job post is closed and the position is probably filled. Please do not apply.
Responsibilities include but are not limited to reviewing designs, code, performing in-depth security assessments of mobile apps, distributed backend systems and internal IT infrastructure; developing custom security tools; documenting the infrastructure, policies, and procedures. Applicants are also expected to participate in after-hours work.\n\n**All candidates will have**\n* a Bachelor's or higher degree in technical field of study\n* a minimum of 3 years security work experience\n* experience with performing application code reviews, design reviews and penetration testing\n* experience in penetration testing web-based apps, mobile apps and back-end infrastructure\n* experience implementing modern cryptosystems\n* excellent knowledge with at least one modern programming language, such as Go, Java, C++, Python and Scala\n* excellent troubleshooting and creative problem-solving abilities\n* excellent written and oral communication and interpersonal skills\n\n\n**Ideally, candidates will also have**\n\n* experience with systems for automating deployment, scaling, and management of containerised applications, such as Kubernetes or Mesos\n* experience working with large scale distributed systems\n\n*Location: Remote*\n


See more jobs at Numbrs Personal Finance AG

Visit Numbrs Personal Finance AG's website

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
This job post is closed and the position is probably filled. Please do not apply.
Blockstack is a new internet for decentralized apps. With Blockstack, you own your data and maintain your privacy, security and freedom. Blockstack is open source project and a public benefit corporation. [Learn more](https://blockstack.org).\n\nBlockstack is looking for a passionate and collaborative DevOps Engineer to help develop rigorous testing suites to guarantee the safety of a soon-to-be launched cryptocurrency and blockchain. This person will work on implementing securely tested solutions, and interface with our dev team and back end engineers on product builds and feature implementation. This role will span testing and security, software development and upgrades, improvements to our Developer API, and community support. \n\nOur engineering team builds software using JavaScript/ES6, React, Redux, Swift, and Objective-C on the frontend and Python, bash, and Bitcoin Core on the backend.\n\nThings You'll Work On:\n- Manage distribution of Blockstack software upgrades for developers and everyday users\n- Keep our users happy by managing Blockstack browser availability, scalability, and performance \n- Build tools for faster deployment schedules \n- Instate monitoring protocols and fail-over measures \n- Implement continuous testing practices to ensure the security and performance goals of Blockstack are met across backend services, blockchain infrastructure, and our frontend user clients\n- Deliver on rapid implementation schedules (without compromising on smart development goals and principles) to build web functionality that is functional, fast, and scalable\n\nQualifications\nYou are have worked in a large, highly available systems environment before, as well as an agile start-up. You are familiar with strategizing and improving for system security and availability. Your strengths lie in backend development, but can work across the full-stack when needed. \n\nKPIs\n- Increased uptime of Blockstack software \n- Delivery of long term, securely tested software \n- Work to improve our failure processes, alerting, and emergency response times \n- Support our community developers to increase number and usability of Blockstack Apps \n\nSkills \n- Experience developing with python and bash\n- Comfort across operating systems, with a strong Linux background\n- Experience across the CI/CD pipeline, with an understanding of best practices for automated testing and deployment\n- Ability to build and maintain highly available infrastructure\n- Competency in monitoring and quick response time in the event of an emergency\n- Security background with strength in automated testing and infrastructure\n- Experience deploying Bitcoin infrastructure with bitcoin core or utxo providers\n\nQualities + Traits \n- Passion for building the new internet for decentralized apps \n- Strong problem solving skills, ability to think fast and thoroughly\n- Development mindset with strong security background\n- Experience in a rapidly scaling start-up\n- Proactive solution provider\n- Excellent communication


See more jobs at Blockstack

Visit Blockstack's website

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
2,078ms