let's find you a job
you can do anywhere

There are 343 Remote Infosec Jobs in Feb 2017 at companies like PhishMe, ActiveState Software and GitHub updated 13 days ago. The median salary for Infosec jobs while working remotely is $107,500 as of February 2017.

There are 343 Remote Infosec Jobs in Feb 2017 at companies like PhishMe, ActiveState Software and GitHub updated 13 days ago. The median salary for Infosec jobs while working remotely is $107,500 as of February 2017.

  Jobs

  People

Get a  email of all new remote infosec jobs

Are you hiring for a remote Infosec position?

Post a Job  in this section
Your filters
infosec

This month

2017-02-10 Flexible Remote

PhishMe

Application Security Engineer


PhishMe


infosec

engineer

infosec

engineer

13d

Apply

PhishMe's Engineering team is seeking an Application Security Engineer to assist the Development, Production Engineering, and Security Operations teams with application-level security assessment and threat mitigation.
2017-02-06 Flexible Remote

ActiveState Software

Senior Open Source Security Developer


ActiveState Software


golang

infosec

dev

senior

golang

infosec

dev

senior

17d

Vancouver, Canada - About the Job:We can’t give you a lot of detail but it will involve cloud development, development in C and Golang, and building up from prototype to scale. This position reports directly to the Director of Engineering. This job will involve:Providin...

2017-02-06 Flexible Remote

GitHub

GRC Security Risk Analyst


GitHub


infosec

analyst

infosec

analyst

17d

Apply

Full Time: GRC Security Risk Analyst at GitHub in Remote - Canada or the United State

2017-02-06 Flexible Remote

Fastly

Security Researcher


Fastly


infosec

infosec

17d

Apply

SECURITY RESEARCHER


As a Security Researcher at Fastly you will help ensure our security efforts are rooted in a deep understanding of the state of the art in web application vulnerabilities, denial of service attacks and bot mitigation techniques and methods.


We are looking for security researchers at all levels of seniority who enjoy investigating web application security threats to contribute intelligence to our security products and services. Qualified candidates will show an aptitude for discovering complex security issues that affect modern web sites. We encourage our security researchers to present at network and security conferences and participate in the security community.


This is a role with a high impact, friendly security team. In addition to contributing to industry leading security products and services, you’ll make sure our customers benefit from a service built to the highest security standards in the industry. We’re in beautiful downtown San Francisco, but for the right candidate, we’re open to considering a remote position, and we have the team and tools in place to make it work.

2017-02-06 Flexible Remote

Fastly

Application Security Engineer


Fastly


infosec

engineer

infosec

engineer

17d

Apply

APPLICATION SECURITY ENGINEER


As an Application Security Engineer at Fastly you will help ensure we provide a secure edge for the biggest online platforms in the world, handling massive amounts of traffic at very low latency.


We are looking for versatile engineers at all levels of seniority who enjoy being deeply involved in all aspects of building and securing our platform. Qualified candidates will excel at analyzing the design of our software and implementations, and will show an aptitude for discovering complex security issues. We encourage our security engineers to present at network and security conferences and participate in the open source community.


This is a role with a high impact, friendly security team. In addition to contributing to industry leading security products and services, you’ll make sure our customers benefit from a service built to the highest security standards in the industry. We’re in beautiful downtown San Francisco, but for the right candidate, we’re open to considering a remote position, and we have the team and tools in place to make it work.

2017-02-05 Flexible Remote

GitHub

Application Security Engineer


GitHub


infosec

engineer

infosec

engineer

18d

Apply

Full Time: Application Security Engineer at GitHub in Remote

2017-02-03 Flexible Remote

Avaaz

Security Officer Wanted Change The World


Avaaz


infosec

infosec

20d

Apply

The Junior or Senior Security Officer will be part of a team that has responsibility for all security aspects of the organization’s technology, systems, communications and staff. We are seeking a either:

2017-02-02 Flexible Remote

Distil-Networks

Security Analyst


Distil-Networks


infosec

analyst

infosec

analyst

21d

Apply

Distil is seeking an entry-level to intermediate level Security Analyst to support our in-house security operations function. This position requires an extreme amount of technical capability and an ability to learn rapidly. Previous security experience desired, but not necessary. The security team manages itself in an Agile fashion, but Scrum, Waterfall and ad-hoc also exist within different teams throughout the business. This position reports to the Director of Security.

Responsibilities:

  • Provides dedicated “eyes on glass” monitoring and analysis capability for Security Operations.
  • The Security Analyst will conduct analysis of security events to include validation, escalation and reporting of events of interest based on the guidelines and event handlers provided to them. The Security Analyst will be responsible for the all such events of interest and will make sure they are continuously monitored and reviewed.
  • Work with operations teams to utilize IT Security tools such as endpoint security, Intrusion detection/prevention, Security SIEM consoles, Data Leak Prevention.

    Additional Duties May Include:

  • Performs security reviews for projects, contracts, third parties, and operations to assess planned or current compliance to external standards such as NIST 800-53r4, ISO 27001, SOX and PCI, and to Distil’s internal control standards.
  • Help acquire and/develop education materials for IT security training and awareness.
  • Work with communications and training organizations as needed.
  • Perform investigations for security incidents, ranging from local issues up to Enterprise issues.
  • Keep current with IT Security industry knowledge, and bring innovation and adaptability to Distil’s security practices.
  • Research security standards, security systems and authentication protocols
  • Actively engage in continuous improvement, recommend alternative processes, solutions, tools that may improve operational efficiencies.
  • Actively adapt Industry and Distil IT security practices to new situations or technologies
  • Provide accurate and detailed written reports to support projects and technologies
  • Provide presentations on relevant topics to all levels of the organization

    Required Skills and Experience:

  • Excellent work ethic, self-starter, strong interpersonal skills
  • Possess the ability to adjust and adapt to changing priorities in a dynamic environment
  • Possess technical acumen and the ability to understand and interpret technical specifications
  • Willing to respond to security -related incidents (off hours) and provide a thorough post-event analysis
  • Recognize potential; successful; and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information.
  • Sufficient technology background to be able able to rapidly begin implementation, modification and monitoring of SIEM, IDS/IDP, Firewall, Web application Firewalls, Data
  • Loss Presentation (DLP), System and application logs and events, and correlations.
  • Expertise in setting and managing user expectations
  • Proactive, high energy, and strong work ethic
  • Strong communications skills
  • Ability and comfort to speak and write with people at all levels of the organization
  • Ability to achieve consensus across multiple teams
  • Excellent analytical and problem solving skills

    Desired Skills and Experience:

  • Knowledge of industry IT security and risk frameworks and standards (NIST 800, COBIT)
  • Knowledge of authentication, authorization and encryption
  • Knowledge of the CVE vulnerabilities library, vulnerability and risk assessment
  • Knowledge of tiered application architectures, web applications, mobile applications, and desktop applications
  • Knowledge of secure application development, coding, and DevOPS with some programming experience
  • Knowledge of techniques for securing cloud environments and applications
  • Knowledge of IT operations Unix (Linux) and Windows systems administration
  • Understand Windows Active Directory, LDAP
  • Knowledge of public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures
  • Understanding the Risks of mobile device use in the Enterprise (Mobile device management, securing mobile devices, Bring Your Own Device
  • Understanding of how to evaluate and secure Software As A Service solutions, hosted solutions, outsource providers, and other external IT solution arrangements
2017-02-02 Flexible Remote

Carve Systems

Software Deconstruction Engineer Aka. Infosec Consultant


Carve Systems


infosec

consulting

dev

engineer

infosec

consulting

dev

engineer

21d

Apply

What's the job?



  • Information security consulting: assessing the security of software and hardware systems.

  • Understanding how systems are built and learning how to break them.

  • Working with our experienced team on short-to-medium term engagements.


What would you do?


Every two to three weeks you'll get a new project to work on. A typical project will involve:



  • Recon: Digging into the functionality, design, and implementation of the software system or device.

  • Probing: Searching for implementation weaknesses which could indicate a security issue. This is a combination of tools that we use, tools that we build, and manual probing. For device projects this can include firmware extraction, analysis, and hardware interfacing.

  • Extending: Now that you've found a weakness... how far can you extend your access into the system?

  • Writing: Now that you've hacked your way in you'll need to write-up your findings and work with the developers to make sure they understand what the problem is and how to fix it.


If you enjoy puzzles and technical variety you'll find this job very enjoyable.


Who are we looking for?



  • You do not need to have information security experience. If you've got the right technical background and problem solving skills we can train you in the dark arts of infosec.

  • People who enjoy writing code, solving problems with code, and learning how computers work at a fundamental level.

  • This is not a 'travel every week' type of consultant. We do sometimes work at a client site but most of the time we do our projects remotely.


We’re hiring for all experience levels: from zero career experience to information security veterans.

Last 30 days

2017-01-30 Flexible Remote

Cloud Technology Partners

Security Architect


Cloud Technology Partners


infosec

architecture

infosec

architecture

24d

Apply


  • Analyze and design security solutions for applications and infrastructure, and provide expertise and consulting to clients.

  • Identify and document information security risks and propose mitigating controls

  • Will be responsible for understanding complex business IT needs, requirements, and projects scopes, with a focus on information security requirements.

  • Research, design, and develop new information security controls for clients

  • Assess current IT environments and make recommendations to increase security

  • Assist clients in troubleshooting and resolving information security issues

  • Author project and support documentation and diagrams

  • Implement security solutions.

2017-01-27 Flexible Remote

PhishMe

Application Security Engineer


PhishMe


infosec

engineer

infosec

engineer

27d

Apply

PhishMe's Engineering team is seeking an Application Security Engineer to assist the Development, Production Engineering, and Security Operations teams with application-level security assessment and threat mitigation.
2017-01-26 Flexible Remote

Sauce Labs

Senior DevOps Security Engineer


Sauce Labs


infosec

devops

senior

engineer

infosec

devops

senior

engineer

28d

Apply

Sauce Labs is looking for a Senior DevOps Security Engineer with strong network, host, and Web security skills with a DevOps mindset and hands-on security automation experience.  The position offers the opportunity to use DevSecOps principles and realize innovative security solutions that scale.  You will work in our rapidly growing organization to protect and continue to scale the world’s largest cloud-based platform for automated testing of web and mobile applications.

2017-01-25 Flexible Remote

Resin.io

Application Security Engineer


Resin.io


infosec

engineer

infosec

engineer

29d

Apply

Resin.io provides a software platform that helps developers build, deploy and manage the code that runs on connected devices. In short, we make IoT work.

2017-01-20 Flexible Remote

Bricata

Security Appliances Developer


Bricata


infosec

dev

digital nomad

infosec

dev

digital nomad

1mo

Apply

Assist in design,development and delivery to QA of a wide range of high performance, feature-rich next generation security appliances in a commercial environment of regular release cycles. Individual will be collaborating with product management, supply/chain operations, sales engineering and customer support teams through all stages of design process.  

2017-01-19 Flexible Remote

Wikimedia Foundation

Director Of Security


Wikimedia Foundation


infosec

exec

infosec

exec

1mo

Apply

Summary


The Wikimedia Foundation is looking for a Director of Security to ensure that rapid evolution of the Wikimedia software continues to preserve the security of the sites and the privacy of our users. We are looking for someone who is passionate about Wikimedia's mission to bring free knowledge to every person on the planet, and who will strive to help Wikimedia software developers learn to incorporate secure thinking into their development practice.


The Director of Security will join the other Engineering Directors at Wikimedia who support engineers and designers building features, products, and services used by hundreds of millions of people around the world. This is an opportunity to do good while improving the security, stability, scalability, and maintainability of one of the best known sites in the world.


YOU ARE ... a smart, experienced security professional that understands all aspects of security in a top web property. You have significant software security experience in large scale systems. You understand and enjoy running security operations. You know how to create and operate incident response systems. You have experience counseling engineering and non-engineering teams about the privacy and security implications of their projects and data releases, are familiar with the benefits and vulnerabilities of different anonymization techniques, and can swiftly and effectively manage security incidents. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You know how to build software correctly and hold others to the same high standards. You understand the principles of open source software development and the importance of community building. You have experience with and enjoy building and mentoring security teams. You enjoy being part of a large, vibrant, passionate and involved community.


You will be leading a team responsible for ensuring the security and integrity of applications written in PHP, Python, JavaScript (Node.js) among others, using both relational and key-value data storage mechanisms.



As a Director of Security, we’d like you to do these things:



  • Develop a threat model for the Wikimedia Foundation and all our projects and define the right security profile in collaboration with your peer group and our IT department.

  • Run day-to-day security operations for the Wikimedia Foundation, including our community-facing and enterprise systems.

  • Design incident response policies and execute incident response processes.

  • Design and deploy account and content abuse detection mechanisms.

  • Refine and improve access controls and audits.

  • Lead security and privacy incident handling and response.

  • Manage external security audits and pen tests and implement mitigation strategies to address discovered vulnerabilities.

  • Serve as a subject matter expert on application security, communicating its impact on security, risk, and compliance decisions.

  • Manage a team of up to six members, leading performance reviews, hiring, goal-setting, compensation planning, and career development.

  • Design and develop security-centric enhancements of Wikimedia systems.

  • Conduct security reviews of software designs and implementations.

  • Deploy security patches to Wikimedia websites.

  • Prepare periodic security releases of MediaWiki software.

  • Define and manage department budget.

  • Work with peer groups such as Legal, Office IT, Finance, Advancement and others  in the Foundation to define:


    • Strategies for addressing security and privacy concerns;

    • Initiatives to maintain security as related to software design, development, documentation, and release; and

    • Practices to ensure the privacy, security, and integrity of data throughout the collection, access, analysis, release, and retention processes.


2017-01-19 Flexible Remote

Infineon

Evaluation Security Expert


Infineon


infosec

infosec

1mo

Apply





At a glance

Are you good at explaining complex technical details? Do you thrive when security at its highest standards is required? Do you challenge the status quo, and courageously explore new paths? Then we have a great opportunity for you here at Infineon.


In your new role you will:


take on the challenging role of being a security evaluator of our high security solutions.
drive weakness analysis of security concepts and implementations both related to attack on hardware as well as on software.
conduct code reviews of secure software, with the aim of identifying vulnerabilities. Your experience and knowledge will help to define adequate counter-measures.
be working in our well-equipped security lab to setup attack together with specialist in semi invasive and side-channel attacks.

You are committed to high quality standards for yourself ('zero defect') and continuously try to learn from successes and mistakes.

You are best equipped for this task if you have:

  • A degree in electrical engineering, computer science or similar, preferably in the area of IT-security.
  • Ideally more than 5 years of professional experience.
  • Experience in the world of hardware and software penetration testing.
  • Experience in side channel and fault attacks against cryptographic services in embedded devices (both practical testing and mathematical evaluation).
  • Experience in various programming languages (Java, C, and Assembler).
  • Experience in secure programming and corresponding code review, ideally with 32bit ARM core implementation.
  • Experience in working with external evaluation facilities is highly beneficial but not mandatory.
  • Fluent English skills, German is beneficial.

2017-01-17 Flexible Remote

Pivotal

Security Engineer


Pivotal


infosec

engineer

infosec

engineer

1mo

Apply

The Cloud Foundry team at Pivotal is looking for a great Sr. Security Engineer to join us in building our open platform as a service (PaaS), transforming how the world deploys and scales software.

2017-01-17 Flexible Remote

Packetwerk

Angular2 Expert For Security Product Front End


Packetwerk


infosec

design

product manager

exec

infosec

design

product manager

exec

1mo

Apply

Stop working for websites! Start working for a real product!


As a Senior JavaScript Developer with Angular2 or Node.js knowledge, you'll develop the face to the customer of our firewall product. Front-end here also covers a highly functional API layer (Node.js) and a Angular2 page with great UI/UX.


Join us to serve for network security.


You'll be free to work on a Macbook or Linux PC for development and to use up-to-date tools like Mattermost, Status Hero and git.

2017-01-13 Flexible Remote

Synopsys

Security Product Manager


Synopsys


infosec

product manager

exec

infosec

product manager

exec

1mo

Apply

Seeking Experienced and Proven PRODUCT MANAGERS!


SYNOPSYS is revolutionizing the development of secure and reliable software. As a SYNOPSYS Product Manager, you are passionate about understanding market problems and building solutions that delight customers. You work closely with customers and internal stakeholders to bring the best products to the marketplace. 


As a SYNOPSYS Product Manager, you would be responsible for three key success factors for your product:



  • Strategy: Starting from market research, you will work with SYNOPSYS R&D to define the product roadmap; and you work with Sales to develop and implement a company-wide go-to-market plan.

  • Product Lifecycle: You will manage the entire product life cycle from strategic planning to tactical activities.

  • Sales Enablement: You will work with Sales and Marketing to help them understand the product positioning, key benefits, and target SYNOPSYS customers; you help the product marketing team provide sales tools and collateral; and you deliver customer briefings alongside the Sales team.

2017-01-10 Flexible Remote

Casumo

Information Security Engineer


Casumo


infosec

engineer

infosec

engineer

1mo

Apply

Who are we looking for






The Security Team is responsible for making sure all of Casumo’s products are designed and implemented to the highest security standards. We are looking for engineers who are passionate about security and helping us build features that will protect our users (both internal and external). The Information Security Engineer will support the business with design, testing, and (where necessary) implementation of state-of-the-art secure application systems, networks, and database products as well as peripheral tools and services that helps the rest of Casumo safeguard the integrity of their data. This person must have the ability to work in a team environment with analysts, management, regulators, vendors and customers. Requires the ability to effectively communicate both verbally and written.



As an Information Security Engineer at Casumo you will:







  • Develop and maintain cybersecurity artifacts for production systems;

  • Champion security with development teams to make their code more secure, primarily through automated tools and manual code/architecture review

  • Design, build, and operate innovative tools to enhance our security

  • Be the first response and remediation for security-related incidents

  • Consult, evangelize, and teach theoretical and practical security to groups of varying sizes, disciplines, and experience levels

  • Engage and participate in the security community, and keep abreast of information security incidents in the wild and training to ensure cutting-edge knowledge is within the business.

2017-01-08 Flexible Remote

Crossover

Network Security Engineer With Ruby


Crossover


infosec

ruby

engineer

infosec

ruby

engineer

2mo

Apply

Are you excited about technology and love building cool stuff? Are you at the top of your game and can beat Mark Zuckerberg in a coding challenge? Do you want to work with a brilliant team on an award winning product and learn new skills? Are a master of pure low level Ruby, Network, protocols and sockets?
If so - this could be the job for you!

2017-01-06 Flexible Remote

Tenable Network Security

Senior Software Engineer


Tenable Network Security


infosec

senior

engineer

dev

infosec

senior

engineer

dev

2mo

Apply

We are looking for a self-motivated, senior-level Scala software engineer to assist in the development of an application security product, ideally with a background in program analysis.

Responsibilities

2017-01-05 Flexible Remote

Vividcortex

Application Security Engineer


Vividcortex


infosec

engineer

infosec

engineer

2mo

Apply

About Us:

VividCortex is the best way to improve your database performance, efficiency, and uptime. It is a secure, cloud-hosted platform that eliminates your most critical APM visibility gap: deep insights into production database workload and query performance. This enables you to delight your customers with a consistently high-performance experience, while shipping better code to production faster and safer. Founded in 2012 by noted database experts, and backed by New Enterprise Associates, VividCortex is headquartered in Charlottesville, Virginia with remote team members in the US and in Montevideo, Uruguay. With more than 750% year-over-year growth, VividCortex offers endless opportunities!

A career at VividCortex is exciting, fun, and fast-moving, and your impact on our product and processes will be clear. It's also high-impact and challenging. You'll have a lot of responsibility and autonomy to directly influence on the growth of our company and our Security posture, and your goals will consistently challenge you. Finally, a career here is rewarding, offering great benefits and a stake in the company's success.

Why this job is important:

The Application Security Engineer champions security within VividCortex’ product development teams through the design and integration of security controls, and educating our teams through training and security programs. Our security team is a key part of our growth strategy!

What you’ll get to do here:

  • Provide security expertise on our systems, network, encryption, and authentication.
  • Understand our AWS architecture, full engineering stack, services, and data flow and own their security controls.
  • Implement and maintain technologies for security, such as vulnerability testing, logging, monitoring and incident response.
  • Help define our secure development standards and ensure they are met.
  • Consult with engineering on planned and current platform and code changes to ensure security is given due consideration during architectural planning and implementation.
  • Perform code reviews, penetration testing, and security functional testing.
  • Own security awareness training for engineering, and create engaging security programs (bug bounty, white hat testing, and more).
  • Document and develop security engineering processes and procedures in support of compliance processes.
  • Identify and assist in the development of security features within our products.
  • Represent Security as a resource for a great engineering culture.

    You’re great at:

  • Sharing your passion for security with the team and advocating for customer needs.
  • Being the engineering team member that others depend on for guidance on security issues.
  • Staying on top of security trends and emerging threats in a rapidly changing industry.
  • Creating engaging programs for training and security awareness.
  • Choosing and using vulnerability testing tools for penetration tests and compliance audits.
  • Understanding complex applications, infrastructure and business processes.
  • Identifying security risks in the product and SDLC and finding pragmatic ways to mitigate them.
  • Leading without authority.

    You'll benefit from experience in:

  • Small, high-growth technology environments.
  • Software as a Service.
  • Frameworks and standards such as ISO, CSA, HIPAA, PCI, GLBA, etc.
  • System administration, particularly AWS.
  • General development, deployment, and operation of modern API-powered web applications using continuous delivery and Git in a Unix/Linux environment.
  • Coding, particularly with Go and scripting languages such as Bash.

    At VividCortex, we want to build a diverse team because it's the right thing to do, and because we believe diversity is strength. We encourage applicants from all walks of life and all backgrounds.

    Note to Agencies and Recruiters: VividCortex has a strict company policy against engaging with unsolicited contact from agencies or recruiters. Unsolicited resumes and leads are property of VividCortex and VividCortex explicitly denies that any information sent to VividCortex can be construed as consideration.
2017-01-05 Flexible Remote

Resin-Io

Application Security Engineer


Resin-Io


infosec

engineer

infosec

engineer

2mo

Apply

DESCRIPTION

At resin.io, we work on the bleeding edge of Linux containers, bringing their benefits to small connected devices across a range use cases. We have built a set of services that make it easy for developers to build, deploy and manage code that runs in drones, 3D printers, tidal turbines and more.

Security is paramount for an IoT platform, touching everything from our cloud services to the operating system running on every single device. We're hiring a security engineer to help us ensure our code delivery pipeline is secure, the risks are well understood, and build a platform that our customers can trust.

What you will work on

  • Analyse the system and contribute to threat modeling. Help understand risks and define adequate mitigation
  • Develop best security practices for our internal processes
  • Identify and fix security vulnerabilities in the platform with audits, penetration testing and other means
  • Define a bounty program to incentivise security researchers to find and report problems
  • Take part in architecture decisions to ensure security invariants are held
  • Apply the principle of least privilege across the organisation

    ----

    REQUIREMENTS

  • Excellent understanding of encryption, signing, authentication schemes and protocols. Knowledge of the crypto algorithms themselves not required but is a plus
  • Good technical knowldege of TLS, PKI
  • Experience with Linux security, permission system, namespaces
  • Understanding of token, certificate, JWT, and OAuth authentication
  • Good knowledge of common web application vulnerabilities (OWASP)
  • Fluent in English
  • Proficiency in at least one of node.js, Python, Golang, or Rust
  • Professional experience as a security engineer for at least 3 years

    ----

    BENEFITS

  • Work with talented, diverse team
  • Equipment of your choice
  • Remote-friendly
  • Flexible working hours
  • Flexible vacation policy
  • Annual company gathering in an international location

    ----

    ABOUT RESIN.IO

    Resin.io is bringing DevOps to IoT!

    We help organizations deploy software to remote devices for use in far-ranging scenarios, from smart locks, to drones, to wind turbines and more.

    We are a passionate team of software, hardware and business nerds hailing from 9 countries and 4 continents, bringing together experts with experience in the diverse disciplines required to bridge the gap between the cloud and devices.

    If you take pride in your work, are passionate about new technologies and enjoy solving difficult technical problems, then come join us as we help shape the future of IoT!

    We feel the ability to communicate well is a vital part of the skillset of anyone working for us, so we value your ability to put across difficult technical ideas enormously - if you can live patch the linux kernel while explaining what you did clearly to a classroom of kindergarten kids we want to hear from you!

    Resin is an equal opportunity employer. We welcome people of any gender, orientation, religion, ethnicity, culture and do not discriminate based on disability. Come join our growing team today and become part of a culture that genuinely cares about your personal and career growth!

This year

We are looking for a part time security expert to review web and mobile applications.

Responsibilities:

Perform penetration tests and security reviews for core applications and APIs

Hunt for security flaws in web and mobile software

Develop custom software to test, monitor and enforce security across our applications

Research security vulnerability disclosures and design and propose appropriate mitigations

Requirements:

A great candidate will have many of the following:

Experience with threat modeling and web application security assessments

Experience applying security engineering practices

Experience with a variety of security testing methodologies, including fuzzing and source code analysis

Experience with secure networking best practices

Knowledge of web application vulnerabilities and attack methods including CSRF, XSS, SQL Injection etc.

Experience with high throughput real-time systems and/or content delivery networks preferred

Development experience using Python, Go, Ruby or C/C++ a huge plus

Extra tags: infosec, analyst

The Cyber Security Engineer is a member of an enterprise-level team of security and compliance experts. This person is responsible for protection of the corporate infrastructure from infiltration or exfiltration as a part of the Security Operations Center (SOC). This individual is also expected to participate in many facets of corporate security and thus must have a well-rounded, hands-on background.

Viewpost encourages both independence and collaboration in an environment that fosters a fun yet serious atmosphere. Team members are expected to diligently maintain existing protocols while simultaneously challenge the status quo in an effort to continually improve and enhance the security measures at Viewpost.


The candidate must have demonstrable experience in at least 2 of the following:


  • Palo Alto Networks firewall administration. Candidate must be able to troubleshoot service issues in support of Enterprise initiatives and have a strong understanding of networking concepts. Experience with Panorama is a plus

  • Websense proxy administration to include O&M of Triton and appliances. Candidate must have experience with configuration and troubleshooting of DLP, exceptions, incidents, SSL decryption, and content filtering

  • McAfee ePO administration, to include O&M of McAfee security features such as anti-virus, whole disk encryption, HIPS, and VSE. The Candidate will be expected to keep devices up to date with latest signatures, troubleshoot issues, and report end point compliance

  • Splunk administration to include data ingestion, custom alerts, agent configuration and deployment, management of indexers and heavy forwarders, development of complex queries and dashboards, and troubleshooting of Splunk service issues. This role will require Linux experience

  • Incident Response to including incident identification, investigation, response, recovery and data connectivity.



    Other responsibilities include:

  • Perform daily checks of all services to ensure functionality

  • Interface with our internal customers to assist with their service requests

  • This position may work in shifts to support a 24x7 security operations center

  • This position participates in an on call rotation (approximately 1 week on call every 2 months)

  • This employee shall maintain or assist in the maintenance of the confidentiality, integrity, and availability of all data in physical and/or electronic format



    Qualifications:

  • Bachelor’s Degree in one of the STEM areas (Science, Technology, Engineering, Math)

  • 6 years of experience with at least 3 years of Systems Administrator experience and two years in a role with a security focus

  • Ability to automate tasks to minimize manual work
    Ability to read and understand IP network designs and security fundamentals, including firewall ACL’s, router configurations, and system alerts

  • The candidate should have an understanding of security policies and security best practices driven by federal regulations

  • Must be able to work with geographically dispersed peers and internal customers

  • Experience with IT ticketing systems and IT customer support



    Preferred Skills:

  • Cross platform experience with Windows, Linux, MAC OS and UNIX Platforms

  • Experience working in a security operations center or network operations center which operates 24/7/365

  • Industry recognized professional certification (e.g., Cisco, Microsoft, SANS, CEH, Security+, CASP, CISSP Associate)

  • Knowledge of security control initiatives such as ISO, SSAE 16, PCI, ITIL, and COBIT a plus

  • Experience with SIEM, vulnerability scanners, IDS/IPS, forensics tools

  • Experience with IDS/IPS and Snort rule creation
    VPN administration experience



    Accomplishments of the Security and Compliance team at Viewpost:

    IDG’s 2015 CSO50 Award for top50 innovative security initiatives across the US

    ISO 27001 Certified by Brightline

    TRUSTe certification

    AICPA certification




    Viewpost is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at Viewpost via-email, the Internet or in any form and/or method without a valid written Statement of Work in place for this position from Viewpost HR/Recruitment will be deemed the sole property of Viewpost. No fee will be paid in the event the candidate is hired by Viewpost as a result of the referral or through other means.




    Viewpost is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived, race, religion, color, sex (including pregnancy and gender identity), sexual orientation, parental status, national origin, age, disability, family medical history or genetic information, political affiliation, military service, any other non-merit based factoror any other characteristic protected by applicable federal, state or local laws. Our leadership team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities and general treatment during employment. If you’d like more information about your EEO rights as an applicant under the law, please click here http://www1.eeoc.gov/employers/poster.cfm

    Extra tags: cyber, security, information

When it comes to modern day software development, you will have your finger on the pulse of the entire pipeline. You will need to be comfortable interfacing with various software components and always considering how best to deliver in a rapidly iterative fashion with a strong focus on service availability, scalability and resilience.

DevOps is as much about communication and business relationships as it is about any of the software or tools you will use.

About Us
New Context is a rapidly growing consulting company in the heart of downtown San Francisco. We specialize in Lean Security; an approach that leads organizations to build better software thru hands-on technical and management consulting. We are a group of engineers who live and breath Agile Infrastructure, Systems Automation, Cloud Orchestration, and Information Security.
The New Context team personifies the DevOps spirit. We love a challenge and look forward to working with clients to solve their own challenges. Our teams operate with complete stack awareness of infrastructure, application and security.
Our driving methodologies are Lean Security and Humane Systems. In adopting a security first approach to infrastructure focused on people, processes and technologies, our team will have an integral part in driving the direction of these exciting new approaches.


Duties & Responsibilities

As a New Context DevOps Engineer you will be expected to provide technical leadership with a hands-on approach. On a daily basis you will be interfacing with our clients and other New Context staff members while working from the New Context office, at client sites or from your home. Expect to heavily leverage open source software to tackle challenges like delivery of highly secured containers to IoT devices or building Big Data ecosystems at petabyte scale and beyond.
The team works well together, but also understands that sometimes they go rogue to motivate the group into being effective. Your most important daily responsibilities: have fun, lead by example and solve exciting challenges.

Qualifications
Seasoned Technical Veteran
We are looking for a team member with 5+ years of experience in a similar role that can demonstrate they have already learned how to excel in this role.
Experience with highly available and high-performance open source web technologies
Existing familiarity (or the eagerness to learn) Ruby and/or Python is helpful, given they are the common languages of systems automation.
Strong communication skills
You must be ready to communicate current status in an effective and professional manner.
Independent worker
Work may often require direct interaction with clients or team members without direct supervision. You must be able to think on your feet, communicate constantly and professionally, and above all else meet the expectations of our clients.
Calm and professional demeanor
This is critical! You will be faced with frustrated clients, team members and situations. You must be able to handle yourself in a professional manner and find the best course of action to take in order to please the client as much as is possible.

Technologies you will interact with regularly
Methodologies
Agile, Lean, DevOps, TDD, paired programming
Operating Systems
Linux, OS X
Automation
Chef, Puppet, Docker, Ansible, Salt, CFengine, Automated Testing
Containerization Ecosystem
Docker, Mesosphere, Rancher, CoreOS, Kubernetes
Cloud & Virtualization
AWS, Google Compute Engine, OpenStack, Cloudstack, kvm, libvirt
Tools
Jenkins, RunDeck, Atlassian Suite, Pivotal Tracker, Vagrant, Maven, Git
Monitoring
SysDig, Data Dog, AppDynamics, New Relic, Nagios, Zabbix
Databases/Datastores
Cassandra, Hadoop, Redis, Riak, postgresql, MySQL
Security
Compliance standards, firewalls, scanners, OSSEC, AIDE
Languages
Ruby, Python, Java, Javascript

Extra tags: devops, chef, jenkins, docker, cassandra , puppet, hadoop, lean security,

Netsparker is seeking a US Sales and Customer Relations Representative to work remotely. You will be contacting potential and existing customers from all around world, so strong interpersonal communication, marketing and negotiating skills should be your forte. You should also be able to plan and organize your own work, and document all type of prospect and customer feedback. The ideal candidate should have good written and verbal communication skills (English) and is self-motivated and goal-oriented.

Extra tags: software sales, security software, web application security, scanner

Are you dreaming to work with an uber motivated team? For a Swiss startup who innovates healthcare? If the answer is YES, then please read further… We are a small professional team consisting of business analysts/project managers and sales/marketing experts with a proven background in healthcare and lifesciences.
Our goal is to develop user-centered mobile solutions which integrate into existing medical workflows.

For our first application we need a Senior Backend Developer with:

  • 5+ years background of building Java RESTful services.
  • Perfect English skills (speaking and writing). The application will be audited at the end so we need excellent documentation.
  • Writing test cases is a must.
  • Ability to work independently with frontend developer (iOS).
  • Experienced in eHealth standards HL7 and DICOM is a plus.

    Comments

    This request is for our MVP.
  • Chances are that we will extend the project after a successful MVP.
  • Perfect English required!
  • Please provide a link to your portfolio which includes your Java backend projects.
  • We will use JIRA and Confluence and work in an agile way (Scrum).

    Extra tags: git, Java, SQL, Scrum, Git, Java, Scrum, SQL, Jira, Confluence, Maven, Spring, Spring Web MVC, Spring Security, Tomcat, Spring LDAP, REST

ABOUT US

We're a London based startup that is building an economy around people's data and attention. In short, we’re creating a digital marketplace where consumers can dynamically license their personal data and attention to brands in return for a payment.

Our tech stack currently includes: Node (Heroku), ReactJS and AngularJS (Firebase), Express, Mongoose, SuperTest, MongoDB (MongoLab), npm (npmjs). Our distributed development team covers the development of the responsive web, mobile and browser extension products.

We've recently completed the functional MVP and will be pushing on towards our closed-beta launch at the end of January.

ABOUT YOU

We're looking for a freelance dev-ops person who has significant experience configuring, managing, and monitoring servers and backend services at scale to support our core development team.


COME HELP US WITH PROJECTS LIKE...

  • Review our platform architecture requirements and deploy a well documented, secure and scalable cloud based solution
  • Tighten up security of our servers
  • Setup autoscaling of our workers
  • Make our deployments faster and safer
  • Scale our MongoDB clusters to support our growing data sizes
  • Improve API performance
  • Automate more processes
  • Make sure our backup and recovery procedures are well tested
  • Implement a centralized logging system
  • Instrument our application with more metrics and create dashboards
  • Remove single points of failure in our architecture


    YOU SHOULD...

  • Have real world experience building scalable systems, working with large data sets, and troubleshooting various back-end challenges under pressure
  • Experience configuring monitoring, logging, and other tools to provide visibility and actionable alerts
  • Understand the full web stack, networking, and low level Unix computing
  • Always be thinking of ways improve reliability, performance, and scalability of an infrastructure
  • Be self-motivated and comfortable with responsibility


    WHY WORK WITH US?


    Work remotely from anywhere in the world, or from our HQ in London, UK. Just be willing to do a bit of traveling every quarter for some face-to-face time with the whole team.
    Be involved in an early-stage, fast growth startup that has already received national press coverage


    Extra tags: Devops, AppSec, NodeJS, Cloud, Mongodb, API, Sys Admin, Engineer, Backend, Freelance, Consultant, security, big data, startup

A product development company requires Technical Writer to work for its on going diverse projects. The job is remote based and you can work from home or anywhere.

The work involves -

Preparing user manuals and help files
Reviewing RFPs and creating project design
Preparing project reviews and reports

Desired Skills

Ability to work independently with keen attention to detail
Excellent organising and communication skills
Well versed with MS Visio, Robohelp, MS word and Camtasia

Extra tags: technical writing, remote, infosec, tech

At Nuix, our philosophy is to hire the best from around the world and support them in doing what they do best. We are seeking a highly experienced Principal Application Security Consultant to join the Cyber Threat Analysis Team (CTAT). The CTAT is the professional consulting services arm that offers Digital Forensics and Incident Response, Attack Preparedness, Penetration Testing, Attack Simulation Exercises, Malware Reverse Engineering, and Intelligence Acquisition to Nuix clients and customers.

Externally, the chosen candidate will be responsible for supporting Nuix customers by performing application penetration testing for web, desktop, and mobile applications, conducting source code reviews, staying abreast of the application security threat landscape, and providing guidance and training on application security issues.

Internally, the chosen candidate will be responsible for defining, building, and growing the CTAT’s application security capabilities and identifying intelligence that can be integrated into the Nuix software platform.

This full time permanent remote position will report to the Director of Penetration Testing.

Work from home and come help build a unique security practice the way you want to see application penetration testing done. Nuix offers full benefits, including health insurance, retirement, dental, and vision. Engage with clients and management directly as a respected contributor in a small but growing team where you are empowered to make the change you want to see. Nuix has a great working environment with a team of experts in their fields. Come work with a fast-growing global software company with competitive compensation and an opportunity for variable pay (bonus).

Full description available here: http://www.nuix.com/security-consultant

Extra tags: application, security, penetration testing, mobile, web app, source code, secure sdlc

2016-12-21 Flexible Remote

PhishMe

Application Security Engineer


PhishMe


infosec

engineer

infosec

engineer

2mo

Apply

PhishMe's Engineering team is seeking an Application Security Engineer to assist the Development, Production Engineering, and Security Operations teams with application-level security assessment and threat mitigation.
2016-12-17 Flexible Remote

Tenable Network Security

Vulnerability Research Engineer


Tenable Network Security


infosec

engineer

infosec

engineer

2mo

Apply

Tenable maintains a staff of engineers who keep track of all new publicized vulnerabilities and then develop 'plugins' for the Nessus vulnerability scanner. These 'plugins' are short programs that efficiently and accurately test scanned systems for the presence of the vulnerability. Vulnerability Research Engineers will spend a good portion of their time researching and exploiting disclosed vulnerabilities, while also coding production-level plugins to add to the Nessus Vulnerability Scanner.

2016-12-12 Flexible Remote

Wordfence

Security Analyst ­ Forensics Remediation


Wordfence


infosec

analyst

infosec

analyst

2mo

Apply

Wordfence is responsible for securing over 1 Million active WordPress websites. We are the most popular security product for WordPress publishers by a significant margin. We also help our customers recover from a hacked site.

2016-12-11 Flexible Remote

Casumo

Information Security Engineer


Casumo


infosec

engineer

infosec

engineer

2mo

Apply

Who are we looking for






The Security Team is responsible for making sure all of Casumo’s products are designed and implemented to the highest security standards. We are looking for engineers who are passionate about security and helping us build features that will protect our users (both internal and external). The Information Security Engineer will support the business with design, testing, and (where necessary) implementation of state-of-the-art secure application systems, networks, and database products as well as peripheral tools and services that helps the rest of Casumo safeguard the integrity of their data. This person must have the ability to work in a team environment with analysts, management, regulators, vendors and customers. Requires the ability to effectively communicate both verbally and written.



As an Information Security Engineer at Casumo you will:







  • Develop and maintain cybersecurity artifacts for production systems;

  • Champion security with development teams to make their code more secure, primarily through automated tools and manual code/architecture review

  • Design, build, and operate innovative tools to enhance our security

  • Be the first response and remediation for security-related incidents

  • Consult, evangelize, and teach theoretical and practical security to groups of varying sizes, disciplines, and experience levels

  • Engage and participate in the security community, and keep abreast of information security incidents in the wild and training to ensure cutting-edge knowledge is within the business.

Get a tweet when we add a new remote job
2016-11-17 Flexible Remote

Tenable Network Security

Software Engineer


Tenable Network Security


infosec

engineer

dev

digital nomad

infosec

engineer

dev

digital nomad

3mo

Apply

Tenable now has over 700 employees globally and over 20,000 customers in 150 countries. Tenable Network Security is recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte, E&Y and as a Best Places to Work by Glassdoor, The Washington Post, The Baltimore Sun, The Washingtonian, The Baltimore Business Journal and Expert Marketplace.

2016-11-09 Flexible Remote

Crossover

Network Security Engineer With Ruby


Crossover


infosec

ruby

engineer

infosec

ruby

engineer

4mo

Apply

Are you excited about technology and love building cool stuff? Are you at the top of your game and can beat Mark Zuckerberg in a coding challenge? Do you want to work with a brilliant team on an award winning product and learn new skills? Are a master of pure low level Ruby, Network, protocols and sockets?
If so - this could be the job for you!

2016-11-07 Flexible Remote

PhishMe

Security Engineer, Triage


PhishMe


infosec

engineer

infosec

engineer

4mo

Apply

PhishMe Professional Services division is looking to hire a motivated and experienced security engineer responsible for assisting customers with deploying our next generation Phishing Threat Management Solutions. The successful candidate will possess strong customer-facing security monitoring and engineering skills, incident response experience, and in depth experience in server engineering for both Microsoft & Linux technologies
2016-11-01 Flexible Remote

Tenable Network Security

Senior Software Engineer


Tenable Network Security


infosec

senior

engineer

dev

infosec

senior

engineer

dev

4mo

Apply

Tenable Network Security is looking for a self-motivated, senior-level Scala software engineer to assist in the development of an application security product.

Responsibilities

2016-11-01 Flexible Remote

Cloud Technology Partners

Security Architect


Cloud Technology Partners


infosec

architecture

infosec

architecture

4mo

Apply


  • Analyze and design security solutions for applications and infrastructure, and provide expertise and consulting to clients.

  • Identify and document information security risks and propose mitigating controls

  • Will be responsible for understanding complex business IT needs, requirements, and projects scopes, with a focus on information security requirements.

  • Research, design, and develop new information security controls for clients

  • Assess current IT environments and make recommendations to increase security

  • Assist clients in troubleshooting and resolving information security issues

  • Author project and support documentation and diagrams

  • Implement security solutions.

2016-10-28 Flexible Remote

InVision

Full-Stack Security Engineer


InVision


infosec

engineer

full stack

infosec

engineer

full stack

4mo

Apply

InVision is the world's leading product design platform, powering the future of digital product design through our deep understanding of the dynamics of collaboration. We provide two million people with the power to prototype, review, refine, manage and user test web and mobile products. InVision drives the product design process at leading Fortune 100 companies, including at Disney, IBM, Walmart, Apple, Verizon and General Motors. Backed by Accel, ICONIQ Capital, FirstMark Capital, Tiger Global and others. InVision is a distributed team with over 200 employees around the world.
2016-10-17 Flexible Remote

Cloud Quarterback

Security DevOps Ninja Training


Cloud Quarterback


infosec

edu

devops

infosec

edu

devops

4mo

Apply

Security and DevOps Ninja in Training


If you need to be making an impact instead of just keeping the lights on, if you thrive on being constantly challenged, and if you soak up tech knowledge and certifications like a sponge, then read on…


At Cloud Quarterback we provide devops and security services and the security part of the business is expanding. As part of the company growth, we need someone who in the next year can do this:



  • Quickly learn and adapt to client systems and processes

  • Provide backend / 2nd level application and devops support to clients across the country

  • Write slick back end and automation code

  • Make servers and applications dance using configuration management and automation tools

  • Provide a friendly, outstanding client experience

  • Interface directly with clients in a co-operative and constructive way

  • Solve problems every day

  • Get involved in implementing security controls

  • Get involved in writing technical and security policy documents

  • Contribute ideas and feedback on new products and services

  • Be certified to at least one industry security certification

  • Implement technical solutions


While you could be anyone, we realistically need someone with a systems or programming / devops background who has a keen interest in all things relating to security and privacy. You’ll have to be able to do a few of those things day one, but not all of them. As an example this might be you:



  • Bachelor's degree

  • Proven success in a client facing role such as sales, support, or customer service experience

  • Previously described as something similar to a “Tech Swiss Army Knife” by awestruck co-workers or friends

  • Excellent Google-Fu

  • Passion for security

  • You could be a bit of an introvert but still like to be sociable, you're definitely not a misanthrope, and you're positive and friendly by default.

  • You have the ability to work on projects with others and complete tasks solo when required

  • You like learning and getting things done way more than you like reading Reddit or watching cats dance

  • Highly flexible and adaptable

  • Comfortable with thinking laterally and prefer to either jump right in or read the barest amount of documentation to get started.

  • Working in consulting means chaos, you can adapt, respond, and negotiate with everyone - clients and coworkers alike - with a clear head

  • You probably know at least one programming or scripting language really well (eg. Powershell / Ruby / Python)

  • You wonder why most programmers can’t understand systems and why so many sysadmins can’t code

  • You’re operating system agnostic


We’re 100% remote workers and catch up in person twice a year (once at BlackHat), and encourage access to a local co-working environment in order to maximize your success. We also offer health insurance and retirement savings


You can be anywhere as long as you’re in the USA, although it would be preferable if you were on the West Coast or able to work a similar timezone to PST.

2016-10-10 Flexible Remote

Modus-Create

Security QA Automation Engineer


Modus-Create


qa

infosec

engineer

qa

infosec

engineer

5mo

Apply

As a Security QA Automation Engineer, you keep up with the latest vulnerabilities and exploits. Ethical hacking is part of your fun. You break the code to forge a better product. If security is your thing and you have at senior level experience hardening PHP apps, and designing and implementing automation frameworks, this is for you.

This is a full time, remote contract position working on industry leading mortgage management software.

In this role your duties will include:

  • Run vulnerability scans, static code scans and dynamic code scans utilizing Black Duck
  • Work with stakeholders, development and QA teams to identify, remediate security bugs and justify security findings
  • Help design and implement test plans and processes as well as security test procedures and processes for a mortgage management web app
  • Collaborate in an Agile SCRUM environment with other remote distributed team members

    You have experience in the following areas:

  • Experience conducting security code reviews in PHP
  • Experience using PHPUnit unit testing framework
  • Hands-on experience with SSO and SAML
  • Experience using Veracode and Black Duck are a big plus
  • Designing test plans and processes for new products
  • Mobile, mobile web and desktop web-based applications
  • Automated functional testing with Selenium Webdriver
  • Understanding of JS testing frameworks is a plus for ex. Jasmine, Karma, Mocha, and Istanbul
  • Jenkins, Bamboo, Salt or comparable continuous integration systems
  • Cross-browser and cross-platform testing
  • JIRA, Fogbugz, or other bug tracking system
  • Concise written and verbal communication skills for documenting bugs and test cases
  • Familiarity with database systems, both SQL and NoSQL (For example, MySQL and MongoDB)
  • Prior experience with setting up and installing VMs
  • Grasp of the command line and scripting languages (like Bash and Powershell)
  • Firm understanding of application development

    Let’s Talk about You

    You value outcomes above all else: You have a proven track record shipping great mobile and web products. By understanding the big picture, you articulate strategy and vision with strong written and verbal communication.

    You Lead by Doing: You realize that the big picture is worthless without getting your hands dirty in the technical details for strategic and tactical problem solving. You understand the value of situational leadership and can adapt to the needs and strength of your team.

    You Love Work, Growth and Learning: You dream of working in a culture that values hard work, continued learning and innovation with a commitment to building amazing products for clients and their end users. You’ll stop learning when you are dead, and until then you desire to gain deeper knowledge in technology and business.

    Let’s Talk About Us

    Modus Create is a Product Studio offering consulting services and SaaS products for strategic planning, design and and execution of web-based and mobile products. We work across multiple industries with Fortune 1000, ISVs, and startups to validate, plan and launch new products. Headquartered in Reston, VA, we are a bootstrapped team that has grown from 2 to 65 people in 11 countries in 5 years, committed to building the best product consulting firm on the planet. We offer a highly collaborative, autonomous and effective working environment. We love and believe in what we do. This is your chance to be part of building something great.

    Discover what is possible at Modus Create - named one of the fastest growing companies in the United States. Be part of the best remote team in the industry.
2016-10-03 Flexible Remote

Endgame

Senior Vulnerability Researcher


Endgame


infosec

senior

infosec

senior

5mo

Apply

About the Team:



Endgame is looking for a vulnerability researcher to help drive our cutting edge work on exploit prevention and endpoint protections as part of the Vulnerability Research & Prevention team. The ideal candidate is motivated to interact within the organization to define, design, and build the latest in endpoint technologies. Experience discovering and exploiting vulnerabilities is paramount to success in this role. As a member of the Vulnerability Research & Prevention team you will be discovering and exploiting software vulnerabilities as well as analyzing and understanding them to define the next generation of preventions for our products.

About the Role:

  • Analyze and develop exploit code to understand and identify ways to protect customers from advanced techniques
  • Discover and responsibly disclose software vulnerabilities to affected vendors and develop proof-of-concept exploits for internal testing
  • Prototype new research that demonstrate its effectiveness in detecting and preventing software exploitation
  • Develop tools to assist in the analysis and reverse engineering of malicious code
  • Collaborate with Product and Development teams to design and implement research into our products

    About You:

  • Mature understanding of the process of discovering and exploiting software vulnerabilities
  • Knowledge of vulnerability classes and secure program design
  • Proficiency in C and at least one interpreted language such as Python
  • Comfortable with IDA Pro, Windbg, and other industry standard tools to analyze and develop exploits
  • Ability to comprehend and apply domain knowledge from various sources to the problem of exploit prevention
  • Strong background in Windows internals such as the the kernel, system calls, and various subsystems
  • Strong understanding of the x86 architecture including instructions, execution flow, and registers
  • Desire to publicly present novel research to the security community to further the industry
  • Ability to work with a team to push the state-of-the art in exploit prevention

    Endgame is an equal opportunity employer and highly values a diverse and inclusive work environment. We do not discriminate based on race, color, religion, marital status, gender, age, ancestry, national origin, disability, veteran status or any other characteristic protected by federal, state or local laws.
2016-09-22 Flexible Remote

Bricata

Security Appliances Developer


Bricata


infosec

dev

digital nomad

infosec

dev

digital nomad

5mo

Apply

Assist in design,development and delivery to QA of a wide range of high performance, feature-rich next generation security appliances in a commercial environment of regular release cycles. Individual will be collaborating with product management, supply/chain operations, sales engineering and customer support teams through all stages of design process.  Junior to intermediate individual contributor with potential growth to team lead.

2016-09-15 Flexible Remote

Surevine

Developer Needed For Cyber Security Team


Surevine


infosec

dev

digital nomad

infosec

dev

digital nomad

5mo

Apply

This position is open to anyone living in the UK - we support remote home working and/or working from co-working hubs. We currently have spaces in London, Bristol, Gloucester and Liverpool - but always keen to open more!

2016-09-12 Flexible Remote

Tenable Network Security

User Experience


Tenable Network Security


infosec

ux

design

digital nomad

infosec

ux

design

digital nomad

5mo

Apply

What we need


We’re looking for an experienced, senior-­level individual to join our user experience design team at Tenable Network Security.


The Senior UX Designer will report to the UX Design Manager, and will play a crucial role in ensuring that our products are easy to learn, use, and manage. You will work with a cross­functional team consisting of Engineers and Product Managers to advance design mockups/prototypes into production implementations.


You specialize in interactions, flows, visual design, and communication methods to ensure we’re building products our existing and new customers will love. You will work to shape how our design and product teams work together. Most importantly, you care deeply about helping to our customers to experience a technical product that is easy to use.


Who we need


You are eager to learn. Our product solves extremely technical problems and is used by a tech­savvy audience. In order for you to solve problems and come up with smart solutions—you’ll need to work hard at understanding not only our products, but our industry as well. That means you will need to come in as a student first, seeking to understand and not quick to drive change.


You are a team player. Our team is highly collaborative and we have design critiques frequently. You should have strong opinions that are also loosely held. You should be willing to fight for your ideas, but willing to accept feedback from anyone. Your goal should be the best solution over anything else. The UX team at Tenable uses the word “we” rather than “I” as much as possible. That is because all of our designers, engineers and product teams influence the design—not just the designer. We have incredibly smart people in our teams and therefore we treat everyone as a fellow designer.


You have a strong and diverse background. At Tenable, we believe that UX Designers are individuals experienced in visual design, interaction design, information architecture and more. You have the ability to turn research into basic wireframes, then into rich interactive prototypes and also to produce high-­fidelity graphics. You can explain each piece of an interaction and write specifications for our engineers.


Your organization skills are unmatched. We work hard to create transparency with all of our work. Our team shares everything and has a zero­-ownership mentality. Therefore your ability to organize your work so that it can be easily accessed and understood by another designer is incredibly important.


You are a great communicator. We believe that great designers are also great communicators. But, part of being a great communicator is also being a great listener. Your speaking, presenting, and listening skills should be top notch.


You don’t let your experience, title, or talents go to your head. You start from a place of learning, listening and understanding. You realize that your job and goals have nothing to do with you, but has everything to do with the user and solving their problems. Your job is about the big picture, user satisfaction.


Day to Day



  • Designing and prototyping for evolving web­based applications.

  • Conceptualizing, designing and producing deliverables for user interface.

  • Create high-­fidelity visual mockups

  • Work closely with product managers, engineering, customers and other stakeholders to proactively gather and understand usability concerns and areas for improvement

  • Establish detailed usability and design guidelines for product development based on industry best practices and competitive benchmarking

  • Create and maintaining a library of design and interface resources for use by product teams

  • Ideate and storyboard design solutions based on user feedback.

  • Proactively look for opportunities to improve the design and interface for our web­-based applications.

2016-09-09 Flexible Remote

Crossover

Python Security Engineer


Crossover


infosec

python

engineer

infosec

python

engineer

6mo

Apply

Are you an experienced security researcher with a mastery of Python? Do you have a strong understanding of networking, security, and other related techniques? If you are a highly motivated, efficient, and a team player, this position could be a great fit.
Job Description: The Security Research Architect is responsible for supporting the Engineering department in research and security related tasks including content updates for the products and testing products as well as related systems for security issues.
Company Description: GFI provides security and networking software for small and medium businesses. At GFI, we are centered on customer success. We pride ourselves on providing the security our customers need for success in their day-to-day operations. GFI team members are set apart by our shared passion for using software technologies to ensure our customers maximum success and satisfaction.
Key Responsibilities:

  • Investigate and maintain Content update data for various products

  • Good understanding and experience of the Python scripting language

  • Ability to create, maintain and monitor critical live infrastructure

  • Experience working with and maintaining CDN systems

  • Periodic refactoring and continuous performance improvement of Updaters

  • Keeps up-to-date with what is happening in the international security community

  • Keeps up-to-date with what is happening in the patch management community

  • Is aware of the latest viruses, exploits, Trojans and other Malware

  • Researches new vulnerabilities related to Microsoft products, Linux and email technologies which would benefit GFI to integrate checks for within the assigned GFI products

  • Provide security checks with detailed description / fix or work around procedures

  • Monitor Linux security reports and update vulnerable application version list accordingly.

  • Monitor Windows security reports and update vulnerable application version list accordingly.

  • Tests GFI products when required for possible weaknesses

  • Properly documents and catalogues research results.

  • Ability to perform various tasks at the same time and multitask between them as necessitated by daily needs.

  • Stay overtime as require to ensure timely release of Content updates

2016-09-09 Flexible Remote

Crossover

Security Research Architect


Crossover


infosec

architecture

infosec

architecture

6mo

Apply

Security Research Architect - $60K
Are you an experienced security researcher with a mastery of Python? Do you have a strong understanding of networking, security, and other related techniques? If you are a highly motivated, efficient, and a team player, this position could be a great fit.
Job Description: The Security Research Architect is responsible for supporting the Engineering department in research and security related tasks including content updates for the products and testing products as well as related systems for security issues.
Company Description: GFI provides security and networking software for small and medium businesses. At GFI, we are centered on customer success. We pride ourselves on providing the security our customers need for success in their day-to-day operations. GFI team members are set apart by our shared passion for using software technologies to ensure our customers maximum success and satisfaction.
Key Responsibilities:

  • Investigate and maintain Content update data for various products

  • Good understanding and experience of the Python scripting language

  • Ability to create, maintain and monitor critical live infrastructure

  • Experience working with and maintaining CDN systems

  • Periodic refactoring and continuous performance improvement of Updaters

  • Keeps up-to-date with what is happening in the international security community

  • Keeps up-to-date with what is happening in the patch management community

  • Is aware of the latest viruses, exploits, Trojans and other Malware

  • Researches new vulnerabilities related to Microsoft products, Linux and email technologies which would benefit GFI to integrate checks for within the assigned GFI products

  • Provide security checks with detailed description / fix or work around procedures

  • Monitor Linux security reports and update vulnerable application version list accordingly.

  • Monitor Windows security reports and update vulnerable application version list accordingly.

  • Tests GFI products when required for possible weaknesses

  • Properly documents and catalogues research results.

  • Ability to perform various tasks at the same time and multitask between them as necessitated by daily needs.

  • Stay overtime as require to ensure timely release of Content updates


The above are the Security Researchers primary responsibilities but duties are not limited to these specific tasks and they are subject to change.
Compensation: US $30/hour Location: Global (remote)40 hours/week

Were one of the few legitimate companies offering high-paying jobs that are 100% remote, work from home. You never have to fight traffic to the office again and you have the freedom to choose when and where you put in your 40 hours to be most effective each week.


To qualify, please provide a resume/CV demonstrating the required experience and skills. From there, to help us find the top 1% of talent, there will be a series of interviews and online skills examinations. We realize these are challenging and can require a decent amount of time - so we thank you in advance for your efforts.

2016-09-01 Flexible Remote

GitHub

Director Of Security Operations


GitHub


infosec

exec

ops

infosec

exec

ops

6mo

Apply

Full Time: Director of Security Operations at GitHub in Remote

2016-08-26 Flexible Remote

GitHub

Application Security Engineer Systems


GitHub


infosec

engineer

infosec

engineer

6mo

Apply

Full Time: Application Security Engineer - Systems at GitHub in Remote

2016-08-22 Flexible Remote

Wikimedia Foundation

Application Security Engineer


Wikimedia Foundation


infosec

engineer

infosec

engineer

6mo

Apply

Summary:


The Wikimedia Foundation is looking for an Application Security Engineer to join the Security team working to help protect Wikipedia and our other projects. You'll be working with other developers and security engineers to create new security features, review the security of other people's code, and help find and fix security bugs before they're exploited.


YOU ARE ...a smart security practitioner with experience building and auditing security features in large scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly, and volunteers can add arbitrary JavaScript to our site. That should both frighten and thrill you.


You will be joining a team responsible for ensuring the security and integrity of applications written in PHP, Python, Ruby, Lua, Perl, JavaScript (Node.js) among others, using both relational and key-value data storage mechanisms. (Don't worry, you don't need to have had experience with all of those technologies.)


As an Application Security Engineer, we’d like you to do these things:



  • Triage and remediate reported security issues

  • Work with Security team members to build and maintain security features

  • Review and deploy features developed by the Foundation and community members

  • Work with other development teams to ensure that they make safe architectural and implementation choices

  • Constantly poke and abuse our software to find bugs before attackers do

2016-08-22 Flexible Remote

Wikimedia Foundation

Software Engineer Security


Wikimedia Foundation


infosec

engineer

dev

digital nomad

infosec

engineer

dev

digital nomad

6mo

Apply

Summary:


The Wikimedia Foundation is looking for a Software Engineer to join the Security team working to help protect Wikipedia and our other projects. You'll be working with other developers and security engineers to create and maintain security-centric features of our public sites, and to develop tools used by the Security team to aid in finding and fixing security bugs before they're exploited.


YOU ARE ...a smart software developer with experience building security features in large scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly, and volunteers can add arbitrary JavaScript to our site. That should both frighten and thrill you.


You will be joining a team responsible for ensuring the security and integrity of applications written in PHP, Python, Ruby, Lua, Perl, JavaScript (Node.js) among others, using both relational and key-value data storage mechanisms. (Don't worry, you don't need to have had experience with all of those technologies.)


As a Software Engineer for the security team, we’d like you to do these things:



  • Collaborate with Foundation and community members on creation of software specifications

  • Implement and maintain security-centric features (authentication/authorization, encryption, hashing, and PKI management)

  • Create tools to automate Security team processes

  • Write and apply software patches to remediate reported security issues

2016-08-04 Flexible Remote

Praetorian

Principal Security Engineer


Praetorian


infosec

engineer

infosec

engineer

7mo

Apply

Position Overview:

Application security assessments are part of our bread-and-butter. Most technical work you do on a regular basis will involve working on assessments that align with your interests and expertise.

  • Lead application security assessment engagements
  • Perform penetration tests, code reviews, and threat models
  • Evaluate web, mobile, desktop, and IoT-baed products
  • Enhance and improve service lines offerings
  • Assist sales team with engagement scoping

    Desired skills and expertise:

  • Strong oral and written communication skills
  • Strong understanding of software and application security
  • Prior software development background
  • Familiarity with modern languages, frameworks, and technology stacks
  • Track record in vulnerability research a plus
  • Track record presenting at major security conferences a plus
  • Experience leading technical teams a plus
  • Prior security consulting experience a plus
  • BS or MS in computer science or engineering a plus

    Aside from technical work, you will be making significant, measurable, and frequent contributions to Praetorian’s growth and development. The work you do here will be fun, challenging, and impactful. We like hearing from people. We encourage you to apply if you see a fit. We ask that you please include a few paragraphs about yourself and what you are passionate about in your application.

    In addition to everything listed thus far, Praetorian provides:

  • $125,000 - $150,000
  • Incentive compensation based on utilization and OKRs
  • 20% bench-time to pursue security related research and projects
  • Health insurance
  • No formal vacation policy
  • Flexible hours and working environment
  • Limited travel requirements. Near 0% for those involved in application security
  • Company contributions to training and conferences
  • 4% 401K matching vested immediately

    In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.
2016-08-02 Flexible Remote

Elastic

Sr Java Engineer Security


Elastic


infosec

java

engineer

infosec

java

engineer

7mo

Apply

Want to work for one of the fastest growing software companies in the World?


Elastic is building out our security offering and looking for a Java Engineer with Security expertise.


Responsibilities




  • Hands-on design, development, integration, documentation and testing of Elasticsearch security features




  • Collaborate with other development teams, our community, and our customers to execute on product security deliverables




  • Lead security initiatives both within Elasticsearch and our Open Source community




  • Occasionally provide training at various Elasticsearch Training Events



2016-07-29 Flexible Remote

Synopsys

Software Security Consultant Professional Services


Synopsys


infosec

consulting

dev

digital nomad

infosec

consulting

dev

digital nomad

7mo

Apply

Why not work for the best in technology?
SYNOPSYS is revolutionizing the development of secure and reliable software. SYNOPSYS Software Integrity Consultants partner with clients who are making technology breakthroughs such as the Curiosity Mars Rover and Large Hadron Collider.
As a SYNOPSYS Consultant, you would lead customers to success in three key areas:
Solution design: You engage with the world’s leading technology companies to understand their business needs and solve critical problems concerning software quality and security
Solution delivery: You are involved from project initiation to completion with end-to-end ownership of successful results
Expert consulting: You become an advisor to our customers providing solution expertise in the domain of software testing and security

2016-07-24 Flexible Remote

Tenable Network Security

User Interface Developer


Tenable Network Security


infosec

ui

dev

digital nomad

infosec

ui

dev

digital nomad

7mo

Apply

Tenable Network Security delivers comprehensive security solutions that provide continuous visibility and critical context, enabling decisive actions to protect your organization.  Transform security with Tenable, the creators of Nessus and pioneers of continuous monitoring.

Our global expansion is creating job opportunities for creative thinkers who are wired for action and delivering big results. We’re also stacked with industry rock stars who are just as comfortable keynoting a conference or delivering a podcast as they are mentoring up-and-coming colleagues. But what our employees are most excited about is our products and customers!

2016-07-14 Flexible Remote

Tenable Network Security

Linux Appliance Software Engineer


Tenable Network Security


infosec

engineer

linux

dev

infosec

engineer

linux

dev

7mo

Apply

Linux Appliance Software Engineer


We are looking for a self-motivated, senior-level, Linux Appliance Engineer to assist in the maintenance and improvement of our Linux based virtual and hardware appliances.


Key Responsibilities:



  • Work with other designers and developers to build new features

  • Perform maintenance fixes and improve on existing functionality across multiple hardware and virtual systems

  • Point out issues with the existing architecture and fix it

  • Work with Quality Assurance to identify and troubleshoot issues

  • Unit testing

  • Promote great software design and quality

  • Drive innovation by coming up with new ideas for our products and processes

2016-07-12 Flexible Remote

HackerOne

Security Analyst


HackerOne


infosec

analyst

infosec

analyst

8mo

Apply

HackerOne is looking for security-minded, customer-service oriented individuals to help lead up the newly formed HackerOne managed service offering. You will be responsible for vetting security vulnerability reports from some of the world’s best hackers being submitted to Fortune 500 and other companies as part of their bug bounty programs. You will have the opportunity work with some of the best hackers in the world and the security teams behind some of the most competitive bug bounty programs, gaining hands-on experience with thousands of vulnerabilities unique to HackerOne’s customers.

2016-07-05 Flexible Remote

Tenable Network Security

Cloud Operations Engineer


Tenable Network Security


infosec

cloud

engineer

ops

infosec

cloud

engineer

ops

8mo

Apply

Tenable Network Security delivers comprehensive security solutions that provide continuous visibility and critical context, enabling decisive actions to protect your organization.  Transform security with Tenable, the creators of Nessus and pioneers of continuous monitoring.

Our global expansion is creating job opportunities for creative thinkers who are wired for action and delivering big results. We’re also stacked with industry rock stars who are just as comfortable keynoting a conference or delivering a podcast as they are mentoring up-and-coming colleagues. But what our employees are most excited about is our products and customers!

2016-06-22 Flexible Remote

Vera

Mac OS X Developer @ Leading Data Security Startup


Vera


infosec

dev

digital nomad

infosec

dev

digital nomad

8mo

Apply


  • Design, develop, and deliver new capabilities for Vera Mac OS X security client

  • Integrate the client across a full stack, including networking, filesystem layering, host-guest communication, PKI, and client security, as well as the cross platform code

  • Solve complex engineering challenges that make security simple, useful, and accessible

  • Give people around the world new tools to help them collaborate confidently on their favorite devices

  • Be an early, influential part of the team changing the face of security and data protection for the enterprise

2016-06-21 Flexible Remote

Fastly

Infrastructure Security Engineer


Fastly


infosec

engineer

infosec

engineer

8mo

Apply

INFRASTRUCTURE SECURITY ENGINEER


As an Infrastructure Security Engineer at Fastly you will help ensure we provide a secure edge for the biggest online platforms in the world, handling massive amounts of traffic at very low latency.


We are looking for versatile engineers at all levels of seniority who enjoy being deeply involved in all aspects of building and securing our platform. Qualified candidates will excel at analyzing components of our infrastructure, and will show an aptitude for discovering complex security issues. We encourage our security engineers to present at network and security conferences and participate in the open source community.


This is a role with a high impact, friendly security team. In addition to contributing to industry leading security products and services, you’ll make sure our customers benefit from a service built to the highest security standards in the industry. We’re in beautiful downtown San Francisco, but for the right candidate, we’re open to considering a remote position, and we have the team and tools in place to make it work.

2016-06-21 Flexible Remote

Bricata

Senior Developer Security Applications


Bricata


infosec

dev

senior

digital nomad

infosec

dev

senior

digital nomad

8mo

Apply

Assist in the design, development, and delivery to QA of a wide range of high-performance, feature-rich next generation cyber security appliances.  Internally will be  closely  and collaborating with Product Management, Supply Chain/Operations, Sales Engineering and Customer Support. Also play an integral role with Strategic Customer Accounts.

2016-06-14 Flexible Remote

GitHub

Security Operations Ident Response Analyst


GitHub


infosec

analyst

ops

infosec

analyst

ops

8mo

Apply

Full Time: Security Operations - Incident Response Analyst at GitHub in Remote

2016-06-10 Flexible Remote

Vox Media

Full Stack Engineer Security


Vox Media


infosec

engineer

full stack

infosec

engineer

full stack

9mo

Apply

Full-Stack Engineer, Security


Vox Media is one of the fastest growing media companies today, combining the best content, technology, and distribution capabilities to connect with an audience of 170 million people each month who rely on us for a modern, intelligent take on the world. Simply put, we create smart media brands for smart audiences.


We got our start innovating in sports media with SB Nation, the largest and fastest-growing network of fan-centric online sports communities. We now have eight brands including Polygon, The Verge, Vox.com, Curbed, Racked, Eater, and Re/code.


We are seeking an outstanding software engineer to take ownership of application security at Vox Media. You are someone with hands-on experience discovering and addressing common web application security vulnerabilities; or a resourceful senior engineer who is eager to learn more about and focus solely on security.


Primary responsibilities:



  • Identifying security vulnerabilities across Vox Media via code review and penetration testing. Writing code to directly address smaller vulnerabilities; working with other engineers to address larger ones. Documenting and advising project teams on security best practices.

  • Implementing new features focused on improving the security and privacy of our editorial staff and their readers.

  • Developing internal tools for monitoring, alerting, and prevention of suspicious activity and abuse - both at the application and network level.

  • Managing incident response and bug-bounty programs. Responding to CVEs and other alerts.


Additionally, you:



  • Are a self-starter who can take a challenging task and run with it

  • Care deeply about the quality of your work

  • Communicate well

  • Have a solid grounding in object-oriented programming and fundamental computer science concepts such as concurrency, complexity theory, and algorithms & data structures


Ideally, you also have:



  • Built and deployed into production a non-trivial Ruby on Rails application

  • Worked on small development teams and with remote team members

  • Experience using a variety of programming languages and frameworks

  • Passion for online media and journalism

  • Love or strong tolerance for animated GIFs and bad puns


For more on the things we're building and problems we're solving, and what it's like to work on the Vox product team, see our product team blogPress Reset, the documentary about the making of Polygon; and Chorus, our modern media platform.


About working at Vox Media: this is a permanent, full-time position with excellent benefits—including flexible hours and generous parental leave. Candidates can be based out of either of our main offices—in New York City or Washington, DC—or may work remote from anywhere within the major US timezones (Eastern, Mountain, Central, Pacific). You'll be joining a group of focused, hard-working, creative people who are passionate about doing work that's challenging and fun—all while maintaining a healthy work/life balance.


We encourage candidates of all experience levels to apply. If the above doesn't describe you perfectly, please get in touch anyway and tell us why you want to work with us.


Vox Media is committed to building an inclusive environment for people of all backgrounds and everyone is encouraged to apply.  Vox Media is an Equal Opportunity Employer and does not discriminate on the basis of race, color, gender, sexual orientation, gender identity or expression, religion, disability, national origin, protected veteran status, age, or any other status protected by applicable national, federal, state, or local law.

2016-06-01 Flexible Remote

Wordfence

Senior Node.JS Developer With Security Emphasis


Wordfence


dev

infosec

javascript

node js

dev

infosec

javascript

node js

9mo

Apply

DESCRIPTION

Do you want to work in cyber security with the flexibility of being able to work from anywhere on the planet?

We are one of the fastest growing cyber security companies in the World. You will be working for us remotely full-time, with full benefits including platinum level medical, dental, 401K, gym reimbursement, company paid security certifications (CISSP, Security+, etc) and security conferences like DefCon and RSA.

We are a team of 14 full-time employees (at the time of writing – we’re growing fast!) and a handful of contractors. We’re fast moving, nimble, self managing and work in a relaxed atmosphere with a sense of humor. Rather than working for a mega-corp, you will be working in a company where your work has real impact in the fun high-growth stages of our evolution.

We use apps like Slack, Github, Fogbugz and Dropbox for our workflow. Each team member is World-class at what they do. We have flexible working hours and we are a diverse team ranging in age and our locations include Maine, Florida, Tennessee, Sweden, Greece and many more.

All permanent positions will involve a trial period of approximately 2 weeks with a minimum commitment of 10 hours per week. You will be paid for this time and it will be used to evaluate whether both parties want to pursue a permanent position.

Here are some of the core skills we look for in team members:

  • A willingness to grab whatever task is required of you and run with it. This may include work outside of your core tasks. We are a small team and everyone needs to pitch in.
  • A high level of productivity and self-management.
  • Must be comfortable working remotely and interfacing with other team members using Slack and other remote tools.
  • Excellent analytical ability and problem solving skills.
  • A strong work ethic.
  • Effective communication skills. This is critical for remote workers and we can’t emphasize this enough. You will spend a significant amount of time interfacing with our customers and/or other team members through your keyboard and it’s critically important that you can effectively convey your thoughts.

    ----

    REQUIREMENTS

  • Ability to write clean, high performance and maintainable code.
  • Node.js and Javascript. You need to be a senior level node developer familiar with all the pitfalls, best practices, understand code profiling, be very comfortable with a debugger/IDE like webstorm and be able to chase down and fix challenging bugs while adding new features.
  • You should be able to write Javascript code that is asynchronous and not rely on a framework that abstracts JS internals away or makes JS look like non-async code.
  • A strong understanding of websockets, event driven applications and network communication down to the TCP and UDP level is highly advantageous.
  • You will need to ship quality code regularly and be comfortable working closely with a QA team or individual.
  • PHP including object oriented PHP.
  • Knowledge of git, github workflow and subversion is a requirement.
  • MySQL including the ability to write well performing SQL, ability to design schemas and an understanding of MySQL data types and performance.
  • Comfortable with Apache and Nginx is advantageous.
  • Must be comfortable using Linux and comfortable with Linux administration.
  • HTML, CSS, Javascript and jQuery a requirement.
  • Understanding of common web vulnerabilities strongly desired.
  • Dev Security – ability to identify vulnerabilities in code is a requirement.
  • A keen interest in infosec. Credentials like Security+, CISSP or pen-testing certifications a strong plus.

    ----

    BENEFITS

    Full-time permanent positions include the following benefits:

  • Company pays 100% employee premium, 50% of dependents : platinum level medical, dental, vision
  • 21 days PTO
  • 401(k) with company match
  • Latest in laptop and workstation technology to do an awesome job from anywhere in the World.
  • Company paid local gym membership
  • Full time telecommuting with flexible hours
  • Company paid security certifications and security conferences.

2016-05-25 Flexible Remote

Instructure

Security Engineer


Instructure


infosec

engineer

infosec

engineer

9mo

Apply

Instructure was founded to define, develop, and deploy superior, easy-to-use software. (And that’s what we did / do / will keep on doing.) We are dedicated to the fight against iffy, mothbally, shoddy software. We make better, more usable tools for teaching and learning (you know, stuff people will actually use). A better connected and more open edtech ecosystem. And more effective ways for everyone everywhere to access education, make discoveries, share knowledge, be inspired, and do big things. We accomplish all this by giving smart, creative, passionate people opportunities to create awesome. So here’s your opportunity.

At Instructure, we make software that makes people smarter, and we offer this software as a service hosted on a global cloud based platform. Being a cloud based company, we must ensure our platform is extremely secure and our customer’s data well protected. In today’s online economy, a great defense is no longer good enough … organizations need to mount an impressive offense as well. We are looking for a security engineer who enjoys getting dirty, breaking things, and looking in dark corners for ways that the bad guys can get in.

If you are the kind of person who enjoys being a red team of one, working with wickedly smart people, and building a security practice within a fast paced, responsive, and customer obsessed company, do we have an opportunity for you.


WHAT YOU WILL BE DOING:





      • Analyzing, troubleshooting, and investigating anomalies within our global cloud based platform.

      • Implementing tools, systems, policies, and processes which help identify and address security vulnerabilities across the enterprise.

      • Assessing and analyzing physical security controls within all of our globally distributed offices.

      • Working with engineering to identify areas of opportunity for improving our secure coding practices and standards.

      • Helping us get ready for entry into high security market verticals like finance, healthcare, and government.

      • Maintaining a company culture of openness, trust, and transparency while ensuring a safe, secure, and protected environment for our customers.

      • Working across the entire company, with various personalities, to improve security without mucking up the culture.



2016-05-17 Flexible Remote

A Security Company Where Do You Sign Up

C# Developer Wombat Security Technologies


A Security Company Where Do You Sign Up


infosec

c

c plus plus

dev

infosec

c

c plus plus

dev

9mo

Apply

Hi! We're looking for a Software Developer to join our growing development team. If you've ever wanted to work for an innovative software company, in great environment with great people, this is your chance. Were a security software-as-a-service company so youll be involved both in our day-to-day software development as well as getting exposure to our security efforts.

2016-05-15 Flexible Remote

GitHub

Security Analyst


GitHub


infosec

analyst

infosec

analyst

9mo

Apply

Full Time: Security Analyst (Anti-Spam) at GitHub in Remote - North America

2016-04-30 Flexible Remote

DataRobot

Network Security Engineer


DataRobot


infosec

engineer

infosec

engineer

10mo

Apply

DataRobot is looking for Network and Security engineers to help us build out, maintain and improve our highly reliable cloud based and on-premise infrastructures. You will work with other team members to build and maintain highly available, high performance, and scalable systems.  You will participate in building, maintenance and support our networks to support our global users and employees. You will participate in systems and network security testing. You will be part of our Core Infrastructure team, and will work closely with our Release Engineering, Test Automation and Development teams on automation of infrastructure processes.  You will participate in creating and improving our security policies and procedures that will ensure the protection of customer and corporate data.  You are expected to assist other team members on system and infrastructure related issues when necessary.  You will participate in on-call rotation.

2016-04-26 Flexible Remote

Alliances Consulting

Hardware/Software Security Evaluation Manager


Alliances Consulting


infosec

dev

exec

digital nomad

infosec

dev

exec

digital nomad

10mo

Apply

Position Title:Hardware/Software Security Evaluation Manager

Reports To:Director of Certification

Compensation:$90,000 to $130,000 depending on experience

Location:Negotiable: All Alliances Management team members work virtually

Dedication:Full-time

Travel:Likely 2-4 domestic trips annually and as many as 2-4 international trips as well.

To Apply:

Qualified candidates should send a resume and a customized introductory letter (which we really do read) to hr@alliancesmanagement.com.  Applications should be received no later than 15 May 2016.

BACKGROUND

Alliances Management is an association management and consulting company with professionals located throughout the United States and satellite offices in Europe and Asia.  We fulfill high-profile functions for international clients, including EMVCo and GlobalPlatform in the association space and eBay and Visa in the private sector.  We have grown tenfold since our inception in 2006 because of our unwavering commitment to excellence.  Our services include development of international programs, management of global events, financial management, and implementation of certification and security evaluation programs.

We are interested in hiring only candidates with extremely high standards and who believe that client satisfaction is not only essential in its own right, but also because it will bring long-term success to Alliances Management.

To learn more, visit www.alliancesmanagement.com.

RESPONSIBILITIES:

Our Company manages certification and security evaluation programs for several clients.  The Security Evaluation Manager will lead efforts around auditing security evaluation laboratories and be responsible for reviewing security evaluation reports generated by those laboratories, with the goal being to ensure that products are deserving of certification.  S/he will be customer-facing and be responsible for the following:'

•    Reviewing Security Evaluation reports and providing security-based assessments to determine whether software- and hardware-based products are security compliant
•    Ensuring technical quality assurance implementation and maintenance
•    Aiding in administrative processes for Product Approvals and Product Provider Registration
•    Participating in and leading client meetings revolving around security topics (including Vendor meetings)
•    Maintaining Security Evaluation skill sets, which shall require periodic security training and education
•    Writing security briefs, whitepapers, opinions, or assessments as necessary for client and company projects
•    Working directly with standards Working Groups and Committees to gather requirements, and build consensus to create and maintain security certification policies and processes
•    Participating in client meetings as necessary
•    Working with individuals across continents and time zones as necessary
•    The ability to work from a home office (as all Alliances Management staff work remotely)

REQUIREMENTS:

The ideal candidate for the Security Evaluation Manager should have the following qualifications:

•    A minimum of five years’ experience in conducting security reviews of software-based, hardware-based, or integrated circuit-based products
•    Experience with standards and specification bodies, consortia, or industry associations, preferably in the authentication, security or consumer electronics industries
•    Knowledge of Real-Time Embedded Systems, computer engineering & security, cryptography, embedded secure elements, and/or integrated circuits
•    Knowledge of GlobalPlatform TEE , TCG TPMs , Common Criteria, and / or FIPS 140
•    Understanding of recent security bulletins, attacks and protection measures
•    Fluency in English
•    Proven history of being able to work on multiple projects and execute to tight deadlines
•    Exceptional references from similar professional environment(s)
•    Bachelors or equivalent in relevant field

To apply: Interested parties should email hr@alliancesmanagement.com with the job title in the subject line. Please customize your cover letter to explain how your professional experience is the right fit for this role: we give primary consideration to those applicants who customize their cover letter and resume to demonstrate how their professional history is a fit for our unique industry. Please also explain your preferred arrangement for this role, whether part-time or full-time. Please also include salary history/expectations, any additional information you would like us to know, and any questions that you have.

2016-04-07 Flexible Remote

Swimlane

Senior Support Lead For Emerging Cyber Security Compay


Swimlane


infosec

senior

infosec

senior

11mo

Apply

Do you enjoy helping the most difficult audience to solve difficult problems with a joyful and energetic attitude? Do you enjoy teaching people new concepts and best practices? Do you have an interest in cyber security? Have you ever wanted to work with cutting-edge cloud & web technologies from the comfort of your own home?

2016-03-22 Flexible Remote

GitHub

Security Governance Risk Management Compliance Senior Consultant


GitHub


infosec

consulting

senior

infosec

consulting

senior

11mo

Apply

Full Time: Security - Governance, Risk Management, and Compliance (GRC) Senior Consultant at GitHub in Remote

2016-03-17 Flexible Remote

Harvest

Application Security Engineer


Harvest


infosec

engineer

infosec

engineer

11mo

Apply

About Harvest

Ten years ago, we were a small web design studio looking for better time tracking software. We couldn’t find one, so we designed and built our own tool. One that combines great design and awesome technology. One that is useful, usable, and well-crafted.

Today, Harvest is a world-leading time tracking application. Self-funded and profitable, we have tracked well over 400 million hours for amazing businesses from over 100 countries. We remain a small and focused company, expanding our team only when absolutely necessary.

About You

You are comfortable identifying weaknesses in: application code, boundaries between applications, risk assessments, processes, and human-to-human conversations. Looking at an application, you feel comfortable planning and conducting targeted penetration tests. It’s not unusual for you to put together a pull request to fix a problem you’ve discovered. Open communication with your coworkers is important to you. You seek to educate and enable, not battle and block. After all, that’s how you’d prefer others to treat you.

About Us

We’ll work together to make security a primary part of our decision making process. Harvest has been distributed from day one and you will feel like part of the Harvest family no matter where you live. Everyone has a voice and the power to make decisions that impact our customers and our teammates.

To apply: Visit: https://www.getharvest.com/careers/application-security-engineer

2016-03-17 Flexible Remote

Mobiquity

Senior Security Engineer


Mobiquity


infosec

senior

engineer

infosec

senior

engineer

11mo

Apply

Senior Security Engineer

Role:  Senior, Security & Compliance Engineering

2016-03-12 Flexible Remote

Elastic

Sr Manager Director Of Product Management Security Monitoring Alerting


Elastic


infosec

product manager

exec

infosec

product manager

exec

12mo

Apply

We’re always on the search for amazing people. People who have deep passion for technology and are masters at their craft. We build highly sophisticated distributed systems and we don’t take our technology lightly. In Elasticsearch, you’ll have the opportunity to work in a vibrant young company next to some of the smartest and highly skilled technologists the industry has to offer. We’re looking for great team players, yet we also promote independence and ownership. We’re hackers… but of the good kind. The kind that innovates and creates cutting edge products that eventually translates to a lot of happy, smiling faces.

2016-03-07 Flexible Remote

Olo

White Hat Hacker Security Engineer


Olo


infosec

engineer

infosec

engineer

12mo

Apply

At Olo we run an online food ordering platform used by many of the country’s largest restaurant chains, reaching millions of consumers through branded mobile apps and ordering websites. We are seeking an experienced security engineer to help us maintain our excellent security track record. You would be collaborating closely with all development teams and across all services.

2016-02-23 Flexible Remote

Cloud Quarterback

Level I Security Engineers X 2


Cloud Quarterback


infosec

infosec

1yr

Apply

We are a technology consulting company that provides security architecture, infrastructure architecture, and devops services. We also have a series of security products in the pipeline under other brands. Our goal is to provide robust and secure environments for businesses with an internet presence.

We are currently hiring two Level 1 Security Engineers, one from a development background and one from a systems background. We offer health insurance, retirement fund, an office in your local city with other people like you, and flexible working conditions.

Currently the company provides automation, devops, and security services, and the security part of the business is undergoing expansion. Initially you will be doing a combination of 2nd level application support, devops and automation work, while increasing your skills in defensive and offensive security. After 2 years we expect this role to develop into a qualified security consultant, holding at least one mid level security certification.

Much internal technical training is done via a Capture the Flag rather than a rote learning model, meaning you're given a set of tasks and are required to find or build a solution with some hints. However documenting, recording, and knowledge sharing are still critical.

This is a remote work position with occasional interstate travel so you'll need to have excellent time management and self-management skills. We will provide access to a local co-working environment in order to maximize your success.

2016-02-18 Flexible Remote

Wordfence

Senior PHP Developer Information Security


Wordfence


infosec

dev

php

senior

infosec

dev

php

senior

1yr

Apply

Full Time: Senior PHP Developer in Information Security at Wordfence in Remote (Company based in Seattle)

2016-02-16 Flexible Remote

Wordfence

Security Analyst


Wordfence


infosec

analyst

infosec

analyst

1yr

Apply

Wordfence is responsible for securing over 1 Million active WordPress websites. We are the most popular security product for WordPress publishers by a significant margin. We also help our customers recover from a hacked site.

2016-02-15 Flexible Remote

Tenable Network Security

Frontend User Interface Developer


Tenable Network Security


infosec

ui

design

dev

infosec

ui

design

dev

1yr

Apply

Tenable now has over 600 employees globally and over 20,000 customers in 150 countries. Tenable Network Security is recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte, E&Y and as a Best Places to Work by Glassdoor, The Washington Post, The Baltimore Sun, The Washingtonian, The Baltimore Business Journal and Expert Marketplace.

2016-02-09 Flexible Remote

SecurityScorecard

Senior Security R D Engineer


SecurityScorecard


infosec

senior

engineer

infosec

senior

engineer

1yr

Apply

About SecurityScorecard

SecurityScorecard (securityscorecard.com) is a SaaS that's disrupting cloud security space, we are well funded and just raised a 12.5m series A from Sequoia Capital. We already have a top notch team in the middle of NYC in a hot new office : http://on.fb.me/1Sig7Dj 

What we do - is we are developing algorithms to benchmark companys security posture from the outside based on signals we observe, and to help predict breaches happen.

We are working on some very interesting problems with large data sets, machine learning, security, and visualization, and can pay very competitively plus equity.   You will be part of a cutting edge R&D team - your geographic location doesn't matter as long as you are a security ninja.

Senior Security R&D Engineer

We are looking for a R&D Engineer to join our Research and Development team, in any geographic location.

This is not your typical job building enterprise software. We are not looking for people to build the next CRUD app. We are looking for someone who can think outside of the box and be creative. Ideally we are looking for developers with a security background. This position is for a R&D engineer to work alongside our Threat Intelligence team. This position will involve 50% research and 50% development. The engineer should have a strong desire to research computer security problems and develop prototypes.  The engineer should be comfortable working with a variety of production technologies such as ElasticSearch, Redis, RabbitMQ. They should also have advanced linux command line skills and the ability to build complex solutions in the linux environment.

REQUIRED SKILLS

3+ years Experience with developing Ruby on Rails apps from the ground up.

1 year Golang Experience

Experience building and maintaining distributed systems

Experience working with ElasticSearch

Strong Linux command line skills

Experience with system administration.

Experience with queuing technology such as Sidekiq / RabbitMQ

Experience with Redis

Experience with writing crawlers, scrapers utilizing a variety of tools such as capybara, webkit, phatonmjs and mechanize.

Nice to Haves

Experience with security tools such as nmap, masscan, metasploit.

Experience with writing tools to exploit vulnerabilities

Experience with writing tools to scan for vulnerabilities

Experience building threat intelligence datasets

Experience with pentesting

Experience with threat intelligence

Experience with honeypots or DNS sinkholing

Experience analyzing and dissecting security tools.

2016-02-06 Flexible Remote

Tenable Network Security

UX Designer


Tenable Network Security


infosec

ux

design

digital nomad

infosec

ux

design

digital nomad

1yr

Apply

Tenable now has over 600 employees globally and 20,000 customers in 150 countries. Tenable Network Security is recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte, E&Y and as a Best Places to Work by the Washington Post, Baltimore Sun, Baltimore Business Journal and Expert Marketplace.

2016-02-06 Flexible Remote

Tenable Network Security

Director Of Business Application Development


Tenable Network Security


infosec

exec

infosec

exec

1yr

Apply

Tenable Network Security, founded in 2002, provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.  Our products are relied upon by more than 20,000 organizations, including the entire U.S. Department of Defense and many of the world’s largest companies and governments --- -- we call this a start!

Our global expansion is creating job opportunities for creative thinkers who are wired for action and delivering big results. We’re also stacked with industry rock stars who are just as comfortable keynoting a conference or delivering a podcast as they are mentoring up-and-coming colleagues. But what our employees are most excited about is our products. Our market-defining technology provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.

Job Responsibilities

2016-01-15 Flexible Remote

Intermedia

Tech Support Hosted Voice Services


Intermedia


infosec

speech

infosec

speech

1yr

Apply

Work entirely from home supporting our customers, the end-users of our Hosted Voice Services. Join Intermedia, the provider of the "Office in the Cloud" to 70,000 small and medium-sized businesses.

What's in it for you? Competitive pay, great benefits, Network+ certification, no commute, and opportunities for career growth.

Primary Responsibilities of a Technical Support Engineer:

  • Provide remote support and troubleshooting to Intermedia Hosted VoIP Services customers with the goal of first call resolution.
  • Answer incoming phone calls from your assigned telephone queue(s).
  • Manage case backlog, document status, and keep customers updated with current status.
  • Respond to incoming e-mail support requests.
  • Utilize Live Chat with powerful desktop sharing tools
  • Assist new clients with the voice on-boarding process including Local Number Porting (LNP) processes.
  • Recognize trends and report them to senior level engineers.
  • Find and document any new support issues or product bugs.
  • Work with other team members to resolve active issues.

    Required Skills:

    • Technical knowledge of Basic Telephony, PBX phone systems, SIP, VoIP and Fax
  • Working knowledge of Networking, Routers, Firewalls, IP and working with ISPs
  • Experience supporting IP Telephony with end users
  • Experience configuring, troubleshooting and supporting VoIP environments
  • Working knowledge of PBX call flows and phone provisioning
  • Working knowledge of the Local Number Porting (LNP) process
  • Understanding of inbound/outbound Caller ID and CNAM
  • Basic understanding of ISP's, LAN &WAN technology, including QoS.
  • Excellent analytical and problem solving skills
  • Excellent communication (written and verbal) and interpersonal skills
  • Extroverted personality with calm, confident phone manner
  • Passion around providing each and every customer with a “Worry Free” Support Solution the first time

  • Must be a self-starter with proven ability to work proactively and independently
  • Detailed oriented with good documentation skills
  • Ability to work in a team and virtual environment

    Desired Skills and Certifications:

  • College degree or equivalent experience
  • Experience working in a virtual environment
  • 1 + years of experience in a call center environment in a technical support role
  • Professional technology certifications such as CCNA, CCNA – Voice, SSCA, SSVVP, etc.
  • Experience with Microsoft Exchange or VMware is a plus.
  • Network+
  • CSSA/SonicWall admin
  • SSVVP
  • SSCA w/an optional Security+ certification

    SHIFT: Approximately 8 am - 5 pm Pacific Time (noon - 9 pm ET)

    VERY IMPORTANT things to note:

  • We can only hire candidates from the following states: AR, AZ, CA, CO, FL, GA, IN, MD, MN, MO, MS, MT, NC, ND, NJ, NV, NY, OH, OK, OR, SD,TN, UT, VA, WA, WV.
  • You must pass a criminal background and reference check to be hired.
  • Network+ certification will be required within 90 days of hire date. Training and voucher provided by company.
  • This position requires a dedicated network connection with SUFFICIENT BANDWIDTH. (5 mb/s upload speed)
  • Hired candidates must be available for a three-week online, instructor-led training class (from approx. 9 am - 6 pm Pacific Time). Dates to be determined - possibly January. Continued employment is dependent upon passing this class. This is an advanced class in Hosted Voice technical support. Prior VoIP technical support experience is required.
2016-01-03 Flexible Remote

WalletHub

Senior Security Software Developer


WalletHub


infosec

senior

dev

digital nomad

infosec

senior

dev

digital nomad

1yr

Apply

WalletHub.com – one of the leading personal finance destinations in the US – is rapidly growing and is seeking a motivated, hardworking, and competitive Senior security software developer.

2015-12-27 Flexible Remote

Tenable Network Security

Backend Web Developer


Tenable Network Security


infosec

backend

web dev

dev

infosec

backend

web dev

dev

1yr

Apply

Tenable Network Security, founded in 2002, provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.  Our products are relied upon by more than 20,000 organizations, including the entire U.S. Department of Defense and many of the world’s largest companies and governments --- -- we call this a start!

Our global expansion is creating job opportunities for creative thinkers who are wired for action and delivering big results. We’re also stacked with industry rock stars who are just as comfortable keynoting a conference or delivering a podcast as they are mentoring up-and-coming colleagues. But what our employees are most excited about is our products. Our market-defining technology provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.

We are looking for a self-motivated, senior-level back-end web developer to assist in the design and implementation of a next-generation enterprise web application.

2015-12-27 Flexible Remote

Tenable Network Security

User Interface Engineer


Tenable Network Security


infosec

ui

engineer

infosec

ui

engineer

1yr

Apply

Tenable Network Security, founded in 2002, provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance. Our products are relied upon by more than 20,000 organizations, including many of the world’s largest companies and governments --- -- we call this a start!

2015-12-27 Flexible Remote

Tenable Network Security

ElasticSearch Engineer


Tenable Network Security


infosec

elasticsearch

engineer

infosec

elasticsearch

engineer

1yr

Apply

Tenable Network Security, founded in 2002, provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance. Our products are relied upon by more than 20,000 organizations, including many of the world’s largest companies and governments --- -- we call this a start!

2015-12-24 Flexible Remote

Recorded-Future

Information Security Analyst


Recorded-Future


infosec

analyst

infosec

analyst

1yr

Apply

Company Description

Want to be part of shaping the future? At Recorded Future we’re trying to do something very ambitious: organize and analyze the Web in an entirely new and different way. We realize we can only succeed with a team of very smart and passionate people.

We love talent, fun, teamwork, creativity, and big ideas. Recorded Future offers a great work environment – smart, ambitious colleagues, and the chance to work with fantastic users and customers. Employees are equipped with top technology as well as competitive compensation and benefits.

Job Description

Information Security Analysts work as part of our threat intelligence team, which is accelerating thought leadership, supporting sales/marketing efforts, and contributing new insight to Recorded Future customers, all the while helping to improve the product. Responsibilities include researching security topics using Recorded Future, analyzing malware or packet captures, creating defensive security signatures, writing a blog, and/or building an engaging presentation and delivering it to potential customers.

Recorded Future already works with some the most ambitious organizations on the planet to solve challenging intelligence problems. We need a creative and agile problem-solving expert who loves to learn and can provide unique insight on difficult security domains such as attribution, identity, and malicious code detection. Specifically, we need more perspectives on proactively identifying new and innovative RF methodologies for originating and nurturing intelligence. We are looking for a professional who enjoys networking with other security researchers and developing complimentary data sets for long term research.

Responsibilities

  • Develop reactive/proactive narratives based on compelling information security themes, RF use cases, and geo-political events.
  • Analyze diverse malware
  • Originate net-new intelligence
  • Enrich existing intelligence
  • Deliver polished blogs, reports, and presentations.
  • Research new techniques for customer operational security improvements
  • Collaborate with third parties on joint research projects
  • Contribute to the creation of original and proprietary threat information
  • Build operational defensive control rules (Yara, Bro, etc.)
  • Iteratively improve internal RF intelligence alerts
  • Actively engage in the security research community
  • Provide feedback on new RF features

    Qualifications

  • 4+ years in security analysis/research
  • Technical and operational background in incident response or threat intelligence
  • Significant experience in network and/or host based analysis/forensics
  • Diverse malware analysis experience
  • Scripting (Perl/Python/Ruby coding) experience with one-off tasks/projects
  • Linux power user
  • Strong troubleshooting, presentation, and consultative skills
  • Comfortable speaking technically with analysts and strategically with senior executives
  • Proactive, self-motivated, inquisitive, high energy, and eager to win
  • Occasional travel required
  • BA/BS or equivalent combination of education and experience
  • Fluency in English and excellent writing skills

    Additional Information

    Location: Boston, MA or Washington D.C. (remote considered)

    All your information will be kept confidential according to EEO guidelines.
2015-12-22 Flexible Remote

Auth0

Security Engineer


Auth0


infosec

engineer

infosec

engineer

1yr

Apply

Auth0 is a rapidly growing company, and we take security very seriously. That's why we're looking for a few good security engineers to join us in keeping the company and our customers safe.

As with any startup, there's a wide variety of work to do. The security team handles tasks such as design and code reviews, implementing technical security solutions, reviewing White Hat program submissions, improving the security of our cloud infrastructure, remediating compliance issues, as well as contributing directly to Auth0 products.

We have a need for engineers interested in security engineering, security operations, and especially application security. You can go deep to focus on one of these areas, or be a generalist.

You should be familiar with:

  • Information security principles
  • Linux
  • Amazon Web Services (AWS)
  • JavaScript, Python, Ruby, or another scripting language

    Familiarity with one or more of these technologies would be a plus:

  • Puppet, Chef, Ansible
  • Docker
  • PostgreSQL
  • Node.js
  • JSON Web Tokens
  • OAuth, OpenID Connect

    You should be comfortable working in a global, distributed environment. Auth0 provides endless opportunities to learn new things and grow your career, with a lot of flexibility and top-notch coworkers.
2015-12-17 Flexible Remote

Tenable Network Security

Performance Engineer


Tenable Network Security


infosec

engineer

infosec

engineer

1yr

Apply

Tenable Network Security, founded in 2002, provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.  Our products are relied upon by more than 20,000 organizations, including the entire U.S. Department of Defense and many of the world’s largest companies and governments --- -- we call this a start!

Our global expansion is creating job opportunities for creative thinkers who are wired for action and delivering big results. We’re also stacked with industry rock stars who are just as comfortable keynoting a conference or delivering a podcast as they are mentoring up-and-coming colleagues. But what our employees are most excited about is our products. Our market-defining technology provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.

2015-12-16 Flexible Remote

Rally Health

Information Security Engineer


Rally Health


infosec

engineer

infosec

engineer

1yr

Apply

Rally Health is looking for an Information Security Engineer to join our IT team. This type of role is a unique personality set that likes to thrive on dealing with vulnerabilities and preventing intrusions. In the situation that an event does take place, this person would help detail the scope and impact and help drive the remediation.

2015-12-16 Flexible Remote

Zalando SE

Security Analyst


Zalando SE


infosec

analyst

infosec

analyst

1yr

Apply

WHAT WE’RE LOOKING FOR  



  • You are an excellent communicator

  • You have a degree in computer science

  • You have at least 2 years of experience in the security industy, ideally Web or application security related

  • You have a good understanding of both frontend and backend technologies

  • You have preferably experience in HTML5 and its security implications

  • You are fluent in both the German and English language

  • Having certifications like GIAC-GSEC, SSCP, CISSP is a plus


YOUR RESPONSIBILITIES



  • You will be collaborating with other tech and product teams and determine threats to our infrastructure

  • You will construct data flow charts and threat models for systems and application environments

  • You are going to perform penetration tests and code reviews

  • You will be consulting development teams during the patching process

  • You are expected to work independently and bring in ideas to decrease security debt

  • You are also expected to present your results therefore good presentation skills are required


WHAT YOU CAN EXPECT FROM US



  • Through our mentoring program you will be able to work independently very quickly

  • We use Open Source technologies

  • Weekly Tech Talks and regular technical exchange with other Berlin-based startups

  • The ability to choose your OS (Linux, MacOS) and IDE (Eclipse, IntelliJ, NetBeans, ...)

  • Powerful hardware system environment

  • Flat hierarchies -- we live the motto “Wear sneakers, not ties”

  • An international team with top experts who will inspire and support you

  • Complimentary fruit, beverages and table soccer

  • You will never be bored! Zalando offers a very variable working environment


ABOUT ZALANDO


Zalando is Europe’s leading online fashion platform, doing business in 15 markets. Delivering first-class shopping experiences to our +15 million customers requires moving fast — with microservices, Agile processes & autonomous teams  —  and using cutting edge, open source technologies. We are passionate about what we do and have fun while doing it. And we are willing to experiment and make mistakes: It’s how we grow.


WANT TO JOIN US? THEN GO AHEAD AND APPLY!


If you need guidance or have any questions about our recruiting and hiring processes, please contact recruiter Sameer Shaikh at jobs@zalando.de

2015-12-15 Flexible Remote

Brightcove

Senior Security Engineer


Brightcove


infosec

senior

engineer

infosec

senior

engineer

1yr

Apply

We are seeking an exceptional person to join our Security team. This person must be passionate about security and enjoy investigating tough security problems and analyzing risks. The ideal candidate will have a “hacker” like mindset. The individual must be a leader with the ability to troubleshoot complex problems with little guidance and also be able to mentor other team members. As a senior member of the team, you'll be responsible for assisting in the planning, implementation and support of all of our corporate, application, data center and network infrastructure security. Brightcove runs a co-located physical infrastructure with additional heavy presence in AWS. Experience securing a hybrid cloud SaaS platform is required.

2015-12-15 Flexible Remote

PortSwigger Web Security

Senior Java Developer


PortSwigger Web Security


infosec

java

senior

dev

infosec

java

senior

dev

1yr

Apply

What will you be doing?


We have a very ambitious road-map for the future of our software. As a senior member of our development team you will:



  • Help architect and implement new editions of our product.

  • Get to grips with the latest web technologies and how these are being used in practice.

  • Solve complex and unusual problems in innovative ways.

  • Work closely with other high achievers on a highly collaborative team.

  • Help drive quality and excellence into everything that we do.


Why join PortSwigger?



  • We like to have fun (why else would we make a product called Burp?) while thinking hard about conceptually complex problems. If you are someome who thrives on difficult challenges and gets a kick out of solving them, then this is the job for you.

  • We only hire exceptional people – and as a result deliver software that never fails to impress our users.

  • We are genuinely Agile: we employ rigorous TDD; we pair-program on a daily basis; we work off a single code branch that is always release-ready; we have regular team retrospectives and knowledge-sharing sessions.

  • We have rapid release cycles with updated versions of our software automatically pushed to our users, so you will quickly see your code deployed to a huge global audience.

  • We offer a healthy, high-tech working environment. All developers work on the latest Mac Pros, with dual monitors, sitting-standing desks, and (if they are so inclined) walking treadmills.

2015-12-13 Flexible Remote

Truveris

Security Engineer


Truveris


infosec

engineer

infosec

engineer

1yr

Apply

The Security Operations Engineer’s responsibilities include managing security system deployment, configuration, monitoring and reporting. This position will have a lead role in performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings. This position will have a primary role on the Engineering team focusing on security and with Disaster Recovery planning/implementation. The Security Operations Engineer provides
support for planning, designing, and implementing security controls which safeguard and monitor events for information systems, enterprise applications and data. The security engineer will work closely with the Development team to ensure that secure practices are followed throughout the entire SDLC.

2015-12-11 Flexible Remote

Docler Holding Luxembourg

IT Security Specialist


Docler Holding Luxembourg


infosec

infosec

1yr

Apply

Tasks and responsibility:



  • Managing and building our security infrastructure

  • Investigating security incidents (reviewing logs, reverse engineering)

  • Reviewing security configurations

  • Taking part in penetration tests and running vulnerability assessments.



What we offer:



  • Competitive salary

  • Employees’ benefits: Lunch pass, health insurance, Sympass advantages

  • Corporate events and Team building activities

  • The opportunity to improve your linguistic skills thanks to internal courses

  • A great environment to work in

2015-12-09 Flexible Remote

BNY Mellon

Security Architect


BNY Mellon


infosec

architecture

infosec

architecture

1yr

Apply

BNY Mellon’s Innovation Center Silicon Valley (ICSV) seeks an experienced security architect to join our quickly growing team. BNY Mellon is the world’s leading provider of financial services technology, delivered from BXP, BNY Mellon private cloud. The Principal Security Architect will develop and implement global security architecture solutions using formal risk management methodologies.

2015-12-08 Flexible Remote

Samsung Pay

Security Engineer


Samsung Pay


infosec

engineer

infosec

engineer

1yr

Apply

Job Duties & Responsibilities:
The core responsibilities of this position will be:

2015-12-07 Flexible Remote

Fastly

Security Researcher


Fastly


infosec

infosec

1yr

Apply

SECURITY RESEARCHER


As a Security Researcher at Fastly you will help ensure our security efforts are rooted in a deep understanding of the state of the art in web application vulnerabilities, denial of service attacks and bot mitigation techniques and methods.


We are looking for security researchers at all levels of seniority who enjoy investigating web application security threats to contribute intelligence to our security products and services. Qualified candidates will show an aptitude for discovering complex security issues that affect modern web sites. We encourage our security researchers to present at network and security conferences and participate in the security community.


This is a role with a high impact, friendly security team. In addition to contributing to industry leading security products and services, you’ll make sure our customers benefit from a service built to the highest security standards in the industry. We’re in beautiful downtown San Francisco, but for the right candidate, we’re open to considering a remote position, and we have the team and tools in place to make it work.

2015-12-07 Flexible Remote

Fastly

Application Security Engineer


Fastly


infosec

engineer

infosec

engineer

1yr

Apply

APPLICATION SECURITY ENGINEER


As an Application Security Engineer at Fastly you will help ensure we provide a secure edge for the biggest online platforms in the world, handling massive amounts of traffic at very low latency.


We are looking for versatile engineers at all levels of seniority who enjoy being deeply involved in all aspects of building and securing our platform. Qualified candidates will excel at analyzing the design of our software and implementations, and will show an aptitude for discovering complex security issues. We encourage our security engineers to present at network and security conferences and participate in the open source community.


This is a role with a high impact, friendly security team. In addition to contributing to industry leading security products and services, you’ll make sure our customers benefit from a service built to the highest security standards in the industry. We’re in beautiful downtown San Francisco, but for the right candidate, we’re open to considering a remote position, and we have the team and tools in place to make it work.

2015-12-03 Flexible Remote

CryptoPhoto

Security Minded Multi Talented Developer Work Best Location On Earth


CryptoPhoto


infosec

dev

digital nomad

infosec

dev

digital nomad

1yr

Apply

You know how sometimes, people ask 'what do you do?'.  If work with us, the next time they ask, you can say: 'You know that cool way you log in to your bank, which keeps you safe?  I build that'.  Your work will literally be in the pockets of almost everyone online, in the months to come.

2015-11-30 Flexible Remote

ESCRYPT - Embedded Security

Test Engineer Automotive Embedded Software


ESCRYPT - Embedded Security


dev

testing

engineer

infosec

dev

testing

engineer

infosec

1yr

Apply

Ihre Aufgaben


Test und Validierung eines Embedded-Software-Produkts nach Anforderungen von ISO 26262 ASIL-D.



  • Definition von Test-Strategien und Test-Kon­zepten für Unit-, Integration- und Release-Tests unter Berücksichtigung der Anforderungen aus der ISO 26262-Norm

  • Definition von Qualitäts-Kriterien zur internen und externen Freigabe des Software-Releases

  • Erstellen von Test-Spezifikationen und Mitwirken bei der Implementierung

  • Überwachung von Metriken und Coverage-Anforderungen

  • Planen und Durchführen von Reviews

  • Weiterentwicklung und operative Betreuung des Continuous-Integration-Build- und Test-Systems

  • Mitarbeit bei der Weiterentwicklung des Produkt-Entwicklungsprozesses

2015-11-30 Flexible Remote

ESCRYPT - Embedded Security

Software Engineer Automotive Security


ESCRYPT - Embedded Security


infosec

dev

engineer

digital nomad

infosec

dev

engineer

digital nomad

1yr

Apply

Ihre Aufgaben


Design, Implementierung und Test von Basis-Software-Komponenten (AUTOSAR) mit Bezug zu Security zum Einsatz im Steuergerät nach Prozess-Anforderungen Norm aSPICE/ISO 26262 im agilen Umfeld.



  • Anforderungsmanagement

  • Architektur- und Detail-Design der Software (UML)

  • Implementierung der Embedded Software bzw. Code-Generatoren nach AUTOSAR-Anfor­derungen

  • Definition und Implementierung von Unit Tests nach Anforderungen der Norm ISO 26262

  • Statische Code-Analyse

  • Mitarbeit bei der Weiterentwicklung des Produkt-Entwicklungsprozesses

2015-11-30 Flexible Remote

ESCRYPT - Embedded Security

Embedded Software Engineer Automotive Security


ESCRYPT - Embedded Security


infosec

dev

engineer

digital nomad

infosec

dev

engineer

digital nomad

1yr

Apply

Ihre Aufgaben


Design, Implementierung und Test unseres Produktes CycurHSM, ein Software-Stack zum Einsatz auf automotive-tauglichen Hardware-Security-Modulen nach Norm/Prozess-Anfor­derungen (aSPICE/ISO 26262) im agilen Umfeld.



  • Anforderungsmanagement

  • Architektur- und Detail-Design der Software (UML)

  • Implementierung der Embedded Software

  • Definition und Implementierung von Unit Tests nach Anforderungen der ISO 26262-Norm

  • Statische Code-Analyse

  • Mitarbeit bei der Weiterentwicklung des Produkt-Entwicklungsprozesses

2015-11-30 Flexible Remote

ESCRYPT - Embedded Security

Softwareentwickler Embedded Security


ESCRYPT - Embedded Security


infosec

infosec

1yr

Apply

Ihre Aufgaben



  • Anforderungsanalyse, Konzeption, Spezifi­kation und Implementation von IT-Sicher­heits­lösungen, speziell in der ESCRYPT Produkt Key Management Solution

  • Analyse & Evaluierung sowie Verbesserung & Weiterentwicklung bestehender Produkt­komponenten

  • Koordination von Entwicklungsaufgaben in einem heterogenen Entwicklerteam (intern und extern)

  • Leitung von Entwicklungsprojekten

  • Entwicklung in Java/J2E im Umfeld KMS

2015-11-27 Flexible Remote

Tenable Network Security

PHP Application Developer


Tenable Network Security


infosec

php

dev

digital nomad

infosec

php

dev

digital nomad

1yr

Apply

Tenable Network Security, founded in 2002, provides continuous network monitoring to identify vulnerabilities, reduce risk and ensure compliance.  Our products are relied upon by more than 20,000 organizations, including the entire U.S. Department of Defense and many of the world’s largest companies and governments --- -- we call this a start!

2015-11-27 Flexible Remote

Tenable Network Security

Technical Software Manager


Tenable Network Security


infosec

exec

dev

digital nomad

infosec

exec

dev

digital nomad

1yr

Apply

Tenable is looking for a Software Engineering Manager to join the Passive Vulnerability Scanner (PVS) engineering team. The Passive Vulnerability Scanner is the only vulnerability scanning product that delivers continuous real-time network monitoring in a non-intrusive manner. As a Software Engineering Manager, you will manage a team of engineers working on several projects related to the PVS product.

2015-10-31 Flexible Remote

Emdeon

Cloud Security Engineer IV


Emdeon


sys admin

infosec

cloud

engineer

sys admin

infosec

cloud

engineer

1yr

Apply

Requisition Number: 15-1578

Description


Emdeon is looking for an Information Security Engineer IV for the Security Architecture team to assist in building a world class security program in order to protect Emdeon’s critical assets.

  • The engineer will have a solid understanding of the modern cyber security landscape with a strong background in cloud technologies, scripting and process documentation.
  • The Security Engineer is a strong technical role for Emdeon.
  • The successful candidate will work directly with the Information Security team and Cloud Architects supporting multiple business units in a high paced environment.
  • The Information Security Engineer IV provides information assurance solutions to our customers.
  • This role has direct responsibility to ensure responsive Information Security guidance and support for all internal and external customer needs and consult with internal and external customers to identify Information Security issues, assist in the development of solutions, and directly communicate resulting information security strategy to appropriate stakeholders.

    Responsibilities

  • Responsibility for information security in the Amazon Web Services (AWS) space with the mission of protecting Emdeon from internet attacks / threat actors.
  • Technical lead for enabling and enforcing Cloud Security controls.
  • Ability to translate traditional security control intent into cloud environments
  • Lead initiatives and the implementation of capabilities in order to advance the Security Architecture program.
  • Work with numerous Subject Matter Experts in designing and recommending security controls to meet the business and security objectives.
  • Enhance Emdeon’s Security program and strategy to expand security advisement services across all business units.
  • Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements.

    Position can be based in Nashville, Seattle, Atlanta or work remotely

    Requirements


    Skills and Experience

  • Experience with Network, System, Application and Cloud Architecture
  • Experience with recommending and implementing security controls to meet the business and security objectives.
  • Experience monitoring and managing network and host-based intrusion prevention systems actively in-line, Full Packet Capture (with analytics), Sandboxing, data loss prevention, malware prevention systems, vulnerability scanning solutions, DDOS protection, Security Event/Information Management, host-based integrity checking, end-point security and AV.
  • Proficiency in OS platforms, including Linux, Unix, Windows and AIX. Capable of building and maintaining an organization with expert knowledge of information technology functions, practices and business units. Has strong expertise in multiple systems and in the functions and business units supported.
  • Knowledge of scripting languages, including python, perl, php, Ruby, and JS.
  • Knowledge of toolsets and frameworks like elasticsearch, splunk, OpenSOC, OpenIOC, STIX, TAXII, CybOX, Trend micro, Secure Cloud, and Evident IO.
  • Knowledge of information security concepts and theory, and the application of such through technical and non-technical methods.
  • Solid understanding of security threats, risks, vulnerabilities and attacks.
  • Demonstrating an ability to work under stress/pressure to meet deliverables, timetables and deadlines.
  • Demonstrating personal integrity and high ethical behavior at all times to inspire confidence in clients, peers, partners and employees.
  • 5+ years' industry experience in a mission-critical environment.
  • Knowledgeable of current and emerging security and information technology standards and practices.
  • Understanding of key InfoSec regulation & frameworks (PCI, GLBA, HIPAA, ISO 27001, HITrust, EHNAC, NIST, DIACAP, RMF) is a plus.
  • Bachelor’s degree required – preferably Computer Science or MIS.
  • Must possess an active industry InfoSec related certification or the ability to obtain within 6 months (i.e.- CISSP, CEH, CISM).
  • AWS certified is a strong plus

    Emdeon is an Equal Opportunity Employer. Employment at Emdeon is based upon your individual merit and qualifications. We don’t discriminate on the basis of race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, physical or mental disability, marital status, protected veteran status or disability, genetic characteristic, or any other characteristic protected by applicable federal, state or local law. We will also make all reasonable accommodations to meet our obligations under the Americans with Disabilities Act (ADA) and state disability laws. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability.
    Please vist Equal Employment Opportunity Posters provided by OFCCP here.
2015-09-24 Flexible Remote

Cloudmark

Senior Abuse Engineer


Cloudmark


infosec

senior

engineer

infosec

senior

engineer

1yr

Apply

Company Overview

Cloudmark is in the business of stopping advanced cyber threats. Our network security solutions combine global threat intelligence from hundreds of service providers and thousands of enterprises with real-time defense measures.

Cloudmark correlates suspect characteristics across messaging and DNS vectors to provide comprehensive insight and protection. Our solutions deploy rapidly to safeguard customers and detect attacks before they happen.

Cloudmark protects more than 120 tier-one service providers and 70,000 enterprise customers through partners, including Cisco, McAfee, and Microsoft. Key customers include AT&T, Verizon, Swisscom, Comcast, Cox, NTT and more than 1 billion subscribers worldwide.

Objective of Position

Cloudmark's Security Operations Center (SOC) provides customers access to a team of highly skilled content security engineers, monitoring their systems for new threats and reacting quickly when such threats occur. The team uses a follow the sun model and works closely with the Technical Support, Systems Architect and Engineering teams who highly value a close working relationship with the SOC. As a member of this team you will be working with some of the largest Internet Service Providers and Mobile Operators to ensure the highest level of threat detection, analysis and high quality response.

Responsibilities

  • Participate in the monitoring and adjustment of detection systems for new threats and use best practices to ensure these threats are stopped quickly
  • Work closely with our engineering and services teams to provide customers with a multipronged approach to accuracy
  • Document threats and trends for internal and external communication
  • Provide support for users submitting CSI remediation requests
  • Develop new tools for monitoring and analysis
  • Occasional coverage for weekend alerts

    Requirements

  • Experience at an ISP or wireless/mobility provider
  • Excellent knowledge of Windows, Linux, Messaging, Networking and DNS
  • Working knowledge of regular expressions and shell scripting
  • Knowledge of Splunk, Perl and MySQL a plus
  • Experience in behavior analysis and/or pattern recognition a plus
  • Excellent written and oral communication skills
  • Ability to work in a highly dynamic and agile environment

    Education & Experience

  • College Degree or equivalent experience
  • A minimum of 5 years’ experience in the anti-abuse, anti-spam, anti-phishing, anti-fraud, anti-virus or NOC/SOC environment

    Cloudmark is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or Vietnam era, or other eligible veteran status, or any other protected factor.
2015-09-08 Flexible Remote

Stratum Security

Rails Developer


Stratum Security


ruby

dev

infosec

ruby

dev

infosec

1yr

Apply

Hi. We’re looking for an awesome Rails Developer to join our growing team. If you’ve ever wanted to work for a interesting security startup with great people this is your chance. We’re a little different than your average startup so we put together this FAQ.

2015-09-08 Flexible Remote

Braintree

Security Engineer


Braintree


infosec

engineer

infosec

engineer

1yr

Apply

About Us:


At Braintree, we’re building products that make payments easier—so easy that they fade into the background, making entirely new kinds of interactions possible. Our full-stack payment platform lets companies build their own experiences and then scale their businesses around the globe. We have developer friendly APIs built to integrate with various platforms - Ruby, Python, Java, PHP, Node.js and .NET - and we also have SDKs for iOS, Android, and Windows.


Our technology fuels companies like Github, 37Signals, Uber, Airbnb, OpenTable. Heroku and more.


We're also in a unique position to greatly impact how merchants and customers interact. The product teams at Braintree work together with Venmo, the mobile payments company we acquired in 2012. Our joint offering, Venmo Touch, gives our users one touch purchasing within apps, eliminating the need to retype your credit card number inside each app you download. Recently acquired by PayPal, we're now in an even greater position to change the way people pay.

2015-09-04 Flexible Remote

Kaspersky Lab

Senior Security Researcher


Kaspersky Lab


infosec

senior

infosec

senior

1yr

Apply

The senior security researcher reports to the head of the Global Research and Analysis Team (GReAT) in the United States. The position will encompass a wide range of activities, including technical anti-malware research, tracking APT campaigns, discovery of new threats, government relations and media activities.

2015-09-03 Flexible Remote

Moz

Senior Security Engineer


Moz


javascript

infosec

c plus plus

html

javascript

infosec

c plus plus

html

1yr

Apply

There's no such thing as a "safe system" - only safer systems.

About the Position

As a Senior Security Engineer at Moz, you will help us ensure that our related software and infrastructure is designed and implemented with the best security practices in mind. You will be performing security audits, risk analysis, application-level vulnerability testing and security code-reviews on Moz codebase. You will also work closely with Moz Engineers to enhance our application security posture. Top candidates will be experts in analyzing software designs and implementations from a security perspective and be able to discover subtle security issues that appear under unexpected threat scenarios.

Responsibilities:

  • Perform code audits, black box testing and security design review of diverse Moz products and services.
  • Design and develop tools and technologies to enhance the security of applications and services.
  • Provide security consultancy and advice to product teams helping them achieve their design and release objectives.
  • Conduct security vulnerability research in areas relevant to Moz.

    Minimum Qualifications:

  • BA/BS in Computer Science or equivalent practical experience.
  • 2 years of relevant work experience, including in application-level vulnerability testing and code-level security auditing.

    Preferred Qualifications:

  • 4 years of relevant work experience, including experience in web application security and web technologies and protocols such as HTTP, HTML and JavaScript.
  • Significant development experience in C, C++ or Java.
  • Foundation in and in-depth technical knowledge of security engineering, computer and network security, authentication, security protocols and applied cryptography.
  • Excellent interpersonal and communication skills.
  • Moz.com is in a period of expanded vision and planned growth! This is an exciting time to join our dynamic team of people who are passionate about their work! Join us and let's make a difference together.

    (This position offers an opportunity to work remotely)

    About Moz

    We develop an analytics software product to help people do better marketing. Behind our tools is a merry band of Mozzers with a wide array of personalities, experiences, interests, and expertise. We’re a small and growing company with the ability to turn a profit, backed by a passionate community of customers and followers, and with a very exciting future!

    We’ve worked hard and deliberately to build a strong cultural footing for Moz. It’s not just about ping pong games and company parties (though we have those too!)— Learn more about it below before you apply:

    Mozzers live the TAGFEE Way! We all strive to exemplify these core values and be our best selves every day.

    Making the web a better place (http://moz.com/about) and watch how we do it (http://moz.com/products).

    Not convinced we are awesome yet? Check out our video “Why we love Moz” and our amazing benefits package.

    Sneak peek at the goodies

    Competitive salary, 401K, stock options
    Generous time off plus $3000 per year towards your vacation!
    Home internet, home office, gym, and transportation subsidies
    And so much more (feel free to grill us about the rest in the interview!)

    Why Moz? Because we love what we do.

    Moz is an equal opportunity employer and we are committed to providing a work environment that is free from any form of discrimination. Moz values diversity and fosters mutual respect among its employees.
2015-09-02 Flexible Remote

Close.io

DevOps Engineer


Close.io


devops

infosec

elasticsearch

cloud

devops

infosec

elasticsearch

cloud

1yr

Apply

ABOUT US

At Close.io we’re building the sales communication platform of the future. We’ve built a next-generation CRM that eliminates manual data entry and helps sales teams close more deals. We are hiring engineers to help us unify the world's sales calls and emails into one beautiful workflow. Our backend tech stack currently includes Ubuntu, Python (Flask, Gunicorn, Celery, Fabric), Elasticsearch, MongoDB, MySQL, Redis, New Relic, and Puppet on AWS (EC2, ELB, RDS, ElastiCache, S3, CloudFormation, VPC, etc.). Our backend primarily serves a well-documented public API that our front-end consumes.

ABOUT YOU

We're looking for a full-time dev-ops person to join our core team who has significant experience configuring, managing, and monitoring servers and backend services at scale.

COME HELP US WITH PROJECTS LIKE...

  • Improve API performance
  • Tune our MySQL database, diagnosing capacity issues and causes of deadlocks
  • Tighten up security of our servers
  • Automate more processes
  • Setup autoscaling of our workers
  • Make our deployments faster and safer
  • Scale our Elasticsearch and MongoDB clusters to support our growing data sizes
  • Make sure our backup and recovery procedures are well tested
  • Implement a centralized logging system
  • Instrument our application with more metrics and create dashboards
  • Remove single points of failure in our architecture
  • Build a great culture, product, and business as one of the first 5 engineering hires

    YOU SHOULD...

  • Have real world experience building scalable systems, working with large data sets, and troubleshooting various back-end challenges under pressure
  • Have significant experience with *nix, Python, MySQL, bash, and Puppet or similar back-end systems and frameworks
  • Experience configuring monitoring, logging, and other tools to provide visibility and actionable alerts
  • Understand the full web stack, networking, and low level Unix computing
  • Always be thinking of ways improve reliability, performance, and scalability of an infrastructure
  • Be self-motivated and comfortable with responsibility

    WHY WORK WITH US?

  • For the personal growth experience of helping build a truly successful SaaS company with a stellar team where you can have a huge impact.
  • Above market salary, equity, healthcare, dental, and retirement benefits package
  • Work remotely from anywhere in the world, or from our HQ in Palo Alto, CA with a beautiful view. Just be willing to do a bit of traveling every quarter for some face-to-face time with the whole team.
2015-09-02 Flexible Remote

18F

Security Engineer


18F


infosec

ops

sys admin

engineer

infosec

ops

sys admin

engineer

2yr

Apply

Experience serving as the security engineer of complex technology implementations in a product-centric environment. Comfortable with bridging the gap between legacy development or operations teams and working toward a shared culture and vision. Works tirelessly to ensure help developers create the most secure systems in the world while enhancing the privacy of all system users. Experience with white-hat hacking and fundamental computer science concepts strongly desired.

Primarily responsible for:

  • Performing security audits, risk analysis, application-level vulnerability testing, and security code reviews
  • Develop and implement technical solutions to help mitigate security vulnerabilities
  • Conduct research to identify new attack vectors

    Who is eligible to work at 18F:

    U.S. citizens, non-citizens who are nationals of the U.S., or people who have been admitted to the U.S. for permanent residence and hold a valid green card.

    Where are we hiring:

    Everywhere in the United States! If you have no experience working on remote teams or are applying for a role that requires in-person interactions with clients, we'll ask you to work out of our San Francisco or D.C. office. However, the majority of our team is distributed across the country in places like Chicago, New York, Raleigh, Tuscon, Austin, Dayton, Philadelphia, Santa Barbara, Seattle, and Portland.
2015-09-02 Flexible Remote

Patchman

Software Engineer Linux Security R D


Patchman


infosec

edu

c plus plus

drupal

infosec

edu

c plus plus

drupal

2yr

Apply

About Patchman, the product

Our customers comprise of large web hosting providers all around the globe. Security is – obviously – extremely important to them. However, there’s one layer of the security stack they have little or no control over: the code of their end users. Most websites use standard software as a foundation. Did you know that about 30% of the web is running on WordPress, Joomla or Drupal? Hackers continuously exploit security vulnerabilities in these foundations to upload and execute malware. Effectively, this allows hackers to run any malicious code they want. For example: to send spam, launch DDoS attacks or inflict far worse damage.

Patchman comes to the rescue! We offer web hosting providers a fully automated SaaS solution to index security vulnerabilities/risks and resolve them by automatically applying safe backported patches and by defusing malware. On top of that, we offer a web app that helps all stakeholders (including security officers, system administrators, helpdesk employees and end users) to operate Patchman and keep the web secure.

Your role:

As a Linux Security R&D Software Engineer you play a critical role in the organization. You will have full autonomy and responsibility in doing research and development for our product in two major areas: 1) our agent software that is running on our customer’s web hosting servers and 2) innovative methodologies to more efficiently and effectively perform scans, resolve security vulnerabilities and clean up malware. You need to have a deep understanding of Linux, C/C++ and security. Your work directly impacts the safety and workings of millions of websites around the world, so attention to detail and a high quality standard for your work are extremely important skills that we are looking for in evaluating our candidates.

Your responsibilities:

  • Design, build and deploy new features for our Linux agent software.
  • Achieve maximum performance and effectiveness by utilizing and developing the Linux kernel, Linux subsystems, Linux ecosystem and low level optimizations.
  • Research and develop innovative methodologies to mitigate security risks and issues.
  • Review and iterate architecture to ensure scale along with our incredible growth.
  • Review and iterate architecture to ensure sensitive data is stored securely at all times.
  • Review and iterate implementation of Linux agent software to ensure maximum performance and low resource usage along with our increasingly complex methodologies.
  • Work with external firms on security audits.

    Our requirements:

  • You have a true passion for the security field.
  • Bachelor’s or Master’s degree in Computer Science or an equivalent professional education.
  • For Dutch candidates: Master’s degree in Kerckhoffs Institute for Computer Security is +1.
  • Several years of relevant work experience as a Software Engineer.
  • Advanced proficiency with C/C++.
  • Deep understanding and knowledge of the Linux kernel, its ecosystem and subsystems.
  • Deep understanding and knowledge of security.
  • Must be comfortable with customer-facing roles including support and documentation.
  • Self-driven work ethic. You need to love taking initiative and seeing things through to completion.
2015-09-02 Flexible Remote

Patchman

Software Engineer Back End


Patchman


infosec

edu

python

scala

infosec

edu

python

scala

2yr

Apply

About Patchman, the product

Our customers comprise of large web hosting providers all around the globe. Security is – obviously – extremely important to them. However, there’s one layer of the security stack they have little or no control over: the code of their end users. Most websites use standard software as a foundation. Did you know that about 30% of the web is running on WordPress, Joomla or Drupal? Hackers continuously exploit security vulnerabilities in these foundations to upload and execute malware. Effectively, this allows hackers to run any malicious code they want. For example: to send spam, launch DDoS attacks or inflict far worse damage.

Patchman comes to the rescue! We offer web hosting providers a fully automated SaaS solution to index security vulnerabilities/risks and resolve them by automatically applying safe backported patches and by defusing malware. On top of that, we offer a web app that helps all stakeholders (including security officers, system administrators, helpdesk employees and end users) to operate Patchman and keep the web secure.

Your role:

As a Back-end Software Engineer you play a critical role in the organization. You will have full autonomy and responsibility over two major areas: 1) the web-facing applications that are being used by our employees, our customers and their end-users, and 2) the internal back-end services. In the back-end we’re processing, analyzing and acting upon scan data that is submitted by our agent software running on our customers’ web hosting servers. Our product is offered as SaaS and delivered from our own centralized infrastructure. Scalability challenges and the sensitive nature of the data that we are processing make this role incredibly demanding and interesting. You need to have a deep understanding and knowledge of Python, Task Queues, managing large data sets and security. Your work directly impacts the safety and workings of millions of websites around the world, so attention to detail and a high quality standard of your work are extremely important skills that we are looking for in evaluating our candidates.

Your responsibilities:

  • Design, build and deploy new features for our web-facing applications and back-end services.
  • Review and iterate architecture to ensure scale along with our incredible growth.
  • Review and iterate architecture to ensure sensitive data is stored securely at all times.
  • Work with external firms on security audits.

    Our requirements:

  • You have a true passion for the security field.
  • Bachelor’s or Master’s degree in Computer Science or an equivalent professional education.
  • For Dutch candidates: Master’s degree in Kerckhoffs Institute for Computer Security is +1.
  • Several years of relevant work experience as a Software Engineer.
  • Advanced proficiency with Python. Low-level language experience a plus, but not required.
  • Deep understanding and knowledge of Django, Celery, asyncio are a big plus.
  • Deep understanding and knowledge of managing large data sets and security.
  • Must be comfortable with customer-facing roles including support and documentation.
  • Self-driven work ethic. You need to love taking initiative and seeing things through to completion.
2015-09-02 Flexible Remote

Patchman

Software Engineer Threat Analysis Response


Patchman


infosec

edu

php

python

infosec

edu

php

python

2yr

Apply

About Patchman, the product

Our customers comprise of large web hosting providers all around the globe. Security is – obviously – extremely important to them. However, there’s one layer of the security stack they have little or no control over: the code of their end users. Most websites use standard software as a foundation. Did you know that about 30% of the web is running on WordPress, Joomla or Drupal? Hackers continuously exploit security vulnerabilities in these foundations to upload and execute malware. Effectively, this allows hackers to run any malicious code they want. For example: to send spam, launch DDoS attacks or inflict far worse damage.

Patchman comes to the rescue! We offer web hosting providers a fully automated SaaS solution to index security vulnerabilities/risks and resolve them by automatically applying safe backported patches and by defusing malware. On top of that, we offer a web app that helps all stakeholders (including security officers, system administrators, helpdesk employees and end users) to operate Patchman and keep the web secure.

Your role:

As a Threat Analysis & Response Software Engineer you play a critical role in the organization. You will have full autonomy and responsibility in analyzing new threats (security vulnerabilities and malware) and resolving them for our customers. You will also be responsible for increasing our coverage of supported PHP applications and plugins. As our coverage grows, we expect you to build and extend a fully automated testing suite to ensure no regressions or other issues are introduced by your patches and malware signatures. Your work directly impacts the safety and workings of millions of websites around the world, so attention to detail and a high quality work standard are extremely important skills that we are looking for.

Your responsibilities:

  • Analyze new security vulnerabilities in open source PHP applications (such as WordPress, Joomla and Drupal) and backport upstream patches to fix those vulnerabilities in earlier versions.
  • Analyze new malware threats and write signatures to detect and quarantine them.
  • Design, build and deploy new features for our internal tools to automate our workflows.
  • Research and analyze new trends in exploitation techniques, malware approaches, etc and develop strategies to mitigate them.
  • Expand coverage of supported applications and plugins.
  • Build and extend fully automated testing suites to ensure no regressions or other issues are introduced by your work.

    Our requirements:

  • You have a true passion for the security field.
  • Bachelor’s or Master’s degree in Computer Science or an equivalent professional education.
  • For Dutch candidates: Master’s degree in Kerckhoffs Institute for Computer Security is +1.
  • Several years of relevant work experience as a Software Engineer.
  • Advanced proficiency with at least one scripting language like PHP or Python. Low-level language experience is a plus, but not required.
  • Deep understanding and knowledge of security vulnerabilities in web applications.
  • Familiar with commonly used open source PHP applications, such as WordPress, Drupal or Joomla.
  • Must be comfortable with customer-facing roles including support and documentation.
  • Self-driven work ethic. You need to love taking initiative and seeing things through to completion.
2015-09-02 Flexible Remote

Disco Melee

Full Stack Clojure Developer


Disco Melee


javascript

infosec

clojure

css

javascript

infosec

clojure

css

2yr

Apply

About Us

Disco Melee was founded by gamers, for gamers, to deal with with the lack of social features in other gaming-centric sites, and to reinvent the concept of social streaming. Basically we are “making gaming social again”.
We are seeking backend, frontend and/or full-stack developers to help us achieve that goal. We are moving fast, currently in closed beta, but are looking to open it up soon.
We’re headquartered in Mebane, NC. We’re very interested in local candidates but are also excited to work with 100% remote developers.

Technology

The frontend is built in Clojurescript and Om, the backend in Clojure on a PostgreSQL database.
While we do require some degree of prior experience with these technologies, we also greatly value an ability to learn, take ownership, be proactive, and communicate well with others.

Essential skills:

  • Good written and spoken English (this is a fully remote position)
  • Functional programming techniques

    Front-end:

  • Modern HTML and CSS (LESS)/Bootstrap
  • Clojurescript (and Javascript)
  • React (Om)
  • Implementing a Photoshop design in HTML/CSS

    Back-end:

  • Clojure
  • SQL (we use PostgreSQL)

    Desirable skills:

  • Data security and privacy
  • JVM familiarity (ecosystem)
  • XMPP protocol knowledge
  • Video streaming/web video familiarity
  • Distributed systems
  • Payment processors
  • Mobile (iOS/Android) knowledge
  • Familiarity with Amazon Web Services
2015-09-01 Flexible Remote

Zotero

Web Developer


Zotero


javascript

infosec

elasticsearch

php

javascript

infosec

elasticsearch

php

2yr

Apply

The Zotero team is looking for a full-time, contract developer to work on the Zotero website, joining a major redesign of zotero.org and helping to shape the Zotero ecosystem going forward. You’ll work with both front- and back-end technologies, including the latest standards and tools for building rich client-side web applications, which you’ll help choose. (Think we should use ES6 via Babel or build something with React? Let’s do it.) While you’ll be primarily responsible for the Zotero website, you might also pitch in with other parts of the project, helping to extend the Zotero web API, optimize the AWS infrastructure, or build back-end services to power new features. As part of a small team, you’ll have responsibility over core components of the project and the freedom to experiment and find creative solutions to tough problems. Most importantly, you’ll participate in a vibrant global open-source community with amazing community developers and passionate users.

The core Zotero development team meets periodically in person (conference room in Virginia, falafel joint in Paris, cafe in New York City), but you’ll primarily be working remotely, communicating with Zotero developers and users via chat rooms, forums, mailing lists, and GitHub. We have a highly collaborative but asynchronous workflow, and you’ll be in control of your own schedule. Our hours are flexible and variable: we might be debating a new feature at 1 p.m. or deploying a major upgrade at 1 a.m.

Requirements

  • Extensive experience with JavaScript and PHP (don’t worry, we don’t like PHP either, but we have existing code that uses it; for recent projects we’ve used JavaScript/ES6, Python, and Go)
  • Experience building rich client-side web applications
  • Comfort using command-line Linux/Unix systems and services
  • Strong attention to privacy and security issues
  • A love of free and open-source software
  • Strong communication skills — we discuss and debate nearly everything we do, so it’s critical that you can (and want to!) take part in that

    Bonus Points

  • Previous remote work experience
  • Experience with open-source infrastructure software: MySQL, Node.js, Memcached, Redis, Elasticsearch, etc.

    About Zotero

    Zotero is an open-source project that develops software and web services to help people collect, organize, cite, and share their research. Our software is recommended by universities worldwide and used by students, scholars, researchers, scientists, and many others. We have some big plans for the future, and we need help making those happen.

    Zotero and the Roy Rosenzweig Center for History and New Media are committed to providing equal employment opportunity and a work environment free from any discrimination on the basis of race, color, religion, national origin, sex, disability, veteran status, sexual orientation, gender identity, age, marital status, pregnancy status, or genetic information.
2015-09-01 Flexible Remote

Zotero

Full Stack Developer


Zotero


javascript

infosec

elasticsearch

php

javascript

infosec

elasticsearch

php

2yr

Apply

The Zotero team is looking for a full-time, contract developer to work across the Zotero ecosystem. Your job will be, most simply, to make Zotero as good as it can be, working on any part of the project to help advance that goal. This position is for someone with a wide range of skills: you should be comfortable obsessing over a stray pixel in a user interface or designing a syncing architecture from scratch. Your work might include improving the Zotero desktop software and browser extensions, extending the Zotero web API, managing an extensive AWS infrastructure, or building back-end services to power new features. As part of a small team, you’ll have responsibility over core components of the project and the freedom to experiment and find creative solutions to tough problems. (Think an Elasticsearch cluster is the best way to do something? Let’s spin up some instances. Have an idea for a major new feature or project? Let’s talk about it.) Most importantly, you’ll participate in a vibrant global open-source community with amazing community developers and passionate users.

The core Zotero development team meets periodically in person (conference room in Virginia, falafel joint in Paris, cafe in New York City), but you’ll primarily be working remotely, communicating with Zotero developers and users via chat rooms, forums, mailing lists, and GitHub. We have a highly collaborative but asynchronous workflow, and you’ll be in control of your own schedule. Our hours are flexible and variable: we might be debating a new feature at 1 p.m. or deploying a major upgrade at 1 a.m.

Requirements

  • Extensive experience with JavaScript and PHP (don’t worry, we don’t like PHP either, but we have existing code that uses it; for recent projects we’ve used JavaScript/ES6, Python, and Go)
  • Experience working with and/or developing web APIs
  • Experience managing Linux systems and services
  • Strong attention to privacy and security issues
  • A love of free and open-source software
  • Strong communication skills — we discuss and debate nearly everything we do, so it’s critical that you can (and want to!) take part in that

    Bonus Points

  • Previous remote work experience
  • Experience building user-facing software
  • Experience with open-source infrastructure software: Node.js, MySQL, Memcached, Redis, Elasticsearch, Ansible, etc.
  • Experience with Amazon Web Services

    About Zotero

    Zotero is an open-source project that develops software and web services to help people collect, organize, cite, and share their research. Our software is recommended by universities worldwide and used by students, scholars, researchers, scientists, and many others. We have some big plans for the future, and we need help making those happen.

    Zotero and the Roy Rosenzweig Center for History and New Media are committed to providing equal employment opportunity and a work environment free from any discrimination on the basis of race, color, religion, national origin, sex, disability, veteran status, sexual orientation, gender identity, age, marital status, pregnancy status, or genetic information.
2015-08-31 Flexible Remote

Everbridge

Senior Network Engineer Infrastructure Team


Everbridge


infosec

cloud

scala

dba

infosec

cloud

scala

dba

2yr

Apply

About the position

Everbridge is the leading critical communications platform trusted by corporations and communities of all sizes to connect the right people for real-time collaboration and response. Connecting more than 100 million people and internet-enabled devices, the company assures that secure, compliant communications are delivered and confirmed, whether locally or globally. Everbridge was recently named one of the Boston Business Journal’s “Best Places to Work” for 2015!

Responsibilities:

  • Collaborate with Architects, Developers, DBA, Application, Security, and NOC teams on designing scalable and highly available network infrastructure platforms
  • Engage in all aspects of building and maintaining the production infrastructure and service
  • Ensure proper security, monitoring, alerting, and reporting for network infrastructure
  • Troubleshoot and resolve production issues
  • Help drive the capacity planning process
  • Help develop and maintain processes, tools, and documentation in support of production
  • Participate in the evaluation of new software, hardware, and infrastructure solutions
  • Work non-traditional hours when necessary, including a rotating on-call pager duty schedule

    Required Skills and Experience:

  • Previous experience operating in a NOC or Technical Operations/Site Reliability environment
  • Solid background in network operations and security maintenance
  • Strong knowledge of IPv4/6 routing and dynamic routing protocols (OSPF, BGP)
  • Detailed understanding of ethernet switching and related protocols (802.1q, 802.1d/w/s & 802.1q-2005, 802.3ad)
  • Experience with secure firewall and dynamic site-to-site IPsec VPN deployments
  • Load balancing and maintenance of high availability network services on local and global scales (F5 BIG-IP LTM/GTM)
  • Proficiency with Cisco IOS/NX-OS, Juniper JUNOS, and related hardware device families (Cisco Catalyst/Nexus/ISR/ASR, Juniper routing/switching platforms, Brocade Vyatta SDN)
  • Sharp troubleshooting faculties, deductive reasoning, and careful attention to detail
  • Independent and self-directed work ethic when participating in a collaborative environment
  • Dedicated commitment to service availability and quality customer experience
  • Ability to communicate clearly in written and verbal mediums

    Preferred Skills and Experience:

  • Familiarity with ITIL/ITSM processes
  • Agile/Kanban/Lean methodologies applied to IT/Operations workflow
  • Practical knowledge of BGP traffic engineering and DDoS mitigation techniques
  • Experience deploying highly scalable and fault-tolerant network services within public cloud infrastructure
  • Solid background in UNIX/Linux operating system and security maintenance (especially Ubuntu and Debian GNU/Linux)
  • Email transport software and deliverability management concepts (Postfix/Sendmail and derivative commercial MTAs, SPF, DomainKeys/DKIM, IP reputation)
  • Infrastructure monitoring and trending software (Nagios, Cacti, Graphite, Logstash/commercial ELK stack derivatives)
  • Competency in operating VoIP and traditional TDM telephony infrastructure (FreeSWITCH w/ SIP, T1/DS3/OC3 PRI)
  • Experience with deployment/configuration automation and software-defined infrastructure management techniques (PXE/TFTP-based kickstart/preseed, Puppet/Razor, Chef, Ansible)
  • Rackmount and blade server hardware and software maintenance, including all appropriate best practices (Dell rackmount, HP C7000 blade chassis)
  • Datacenter facilities management (electrical power, HVAC, cable distribution plant)
  • Awareness of network operations community culture and current events

    About Everbridge

    At Everbridge, you will quickly see why we were recently named one of the Boston Business Journal’s “Best Places to Work” for 2015. We offer a fast-paced working environment where teamwork is the norm, accountability is demanded, creativity is encouraged, and achievement is rewarded. Whether celebrating key milestones or building camaraderie, employees across the globe share in our collective successes.

    Everbridge provides a unified critical communication suite that helps clients be better prepared, make better decisions, and respond quickly and confidently during disruptive events. When an incident happens, whether it’s a natural disaster or an IT service outage, we automate communications to ensure that the right messages get to the right people at the right time. Widely recognized by analysts as the market leader, Everbridge solutions are trusted by clients in all major industries and government sectors to connect with over 50 million people around the world.

    With a deliberate focus on expanding our global reach, Everbridge’s offices are strategically situated in California and Massachusetts, as well as the United Kingdom and China.

    Everbridge, a proven leader as evidenced by market share and industry recognition, offers the richest functionality and mobility, engineered to be exceptionally easy to use, manage, and scale. We have been the trusted provider of critical communications during recent major events, such as the Boston Marathon Bombing, Hurricane Sandy, and the Colorado Floods, helping our clients not just protect property but also save lives.

    We continue to expand our employee base globally to support our year-over-year, top quartile growth. With over ten years of history pioneering the marketplace, our 300+ employee base is a healthy mix of vital core contributors along with an infusion of innovative and fresh perspectives from our newest team members.

    Everbridge offers a fast-paced working environment where teamwork is the norm, accountability is demanded, creativity is encouraged, and achievement is rewarded. Whether celebrating key milestones or building camaraderie, employees across the globe share in our collective successes.

    Everbridge’s seasoned management team provides the company’s strategic vision and focus on achieving and solidifying customer satisfaction, product innovation, and sustained growth. Collectively, the team brings to Everbridge years of experience in senior management positions in high-growth entrepreneurial companies and established organizations both private and public, ranging from start-ups to Fortune 1000.

    Everbridge is an Equal Opportunity Employer. We encourage Minorities, Females, Disabled, and Veterans to apply.
2015-08-31 Flexible Remote

Everbridge

Operations Engineer


Everbridge


infosec

elasticsearch

cloud

scala

infosec

elasticsearch

cloud

scala

2yr

Apply

About the position:

This position offers the right candidate an opportunity to participate in two of the fastest growing segments of the Internet – SaaS and the Cloud! Get in on the ground floor at Everbridge, the market leader for Incident Management and Communications solutions.

Responsibilities:

  • Collaborate with Architects, Developers, DBA, and Infrastructure team on designing scalable and highly available Application Platform.
  • Involved in all aspects of building and maintaining the production infrastructure and service
  • Ensure proper security, monitoring, alerting and reporting for application platform.
  • Troubleshoot and resolve production issues
  • Help drive the capacity planning process
  • Help develop and maintain processes, tools, and documentation in support of production
  • Participate in the evaluation of new software, hardware, and infrastructure solutions
  • Participation in on-call rotation

    Requirements and Skills:

  • Jack/Jill of all trades.
  • Experience in Software development and/or systems administration experience, with at least one full cycle implementation from requirement to production.
  • Experience with medium- to large-scale Linux production environments, preferably as part of an online service provider environment
  • Minimum 5 years of hands-on detailed Linux experience
  • Strong sense of ownership of Projects and tasks assigned.
  • Strong interpersonal and communications skills
  • Ability to solve problems quickly and automate processes
  • Hands on experience release, deployment and environment management.

    Preferred Knowledge and Skills:

  • Experience with open source technologies.
  • Experience with virtualization technologies
  • Hands-on experience with infrastructure as code tools and concepts (e.g. Ansible/Puppet/Chef/etc)
  • Experience with big data systems and distributed systems.
  • Working knowledge of advanced web, database, and OS server configuration (Linux, Nginx, Tomcat, MongoDB, ElasticSearch, ZooKeeper, Redis)
  • Experience with cloud computing platforms
  • Ability to manage competing priorities in a complex environment

    About Everbridge

    Everbridge provides a unified critical communication suite that helps clients be better prepared, make better decisions, and respond quickly and confidently during disruptive events. When an incident happens, whether it’s a natural disaster or an IT service outage, we automate communications to ensure that the right messages get to the right people at the right time. Widely recognized by analysts as the market leader, Everbridge solutions are trusted by clients in all major industries and government sectors to connect with over 50 million people around the world.

    With a deliberate focus on expanding our global reach, Everbridge’s offices are strategically situated in California and Massachusetts, as well as the United Kingdom and China.

    Everbridge, a proven leader as evidenced by market share and industry recognition, offers the richest functionality and mobility, engineered to be exceptionally easy to use, manage, and scale. We have been the trusted provider of critical communications during recent major events, such as the Boston Marathon Bombing, Hurricane Sandy, and the Colorado Floods, helping our clients not just protect property but also save lives.

    We continue to expand our employee base globally to support our year-over-year, top quartile growth. With over ten years of history pioneering the marketplace, our 250+ employee base is a healthy mix of vital core contributors along with an infusion of innovative and fresh perspectives from our newest team members.

    Everbridge offers a fast-paced working environment where teamwork is the norm, accountability is demanded, creativity is encouraged, and achievement is rewarded. Whether celebrating key milestones or building camaraderie, employees across the globe share in our collective successes.

    Everbridge’s seasoned management team provides the company’s strategic vision and focus on achieving and solidifying customer satisfaction, product innovation, and sustained growth. Collectively, the team brings to Everbridge years of experience in senior management positions in high-growth entrepreneurial companies and established organizations both private and public, ranging from start-ups to Fortune 1000.

    Everbridge is an Equal Opportunity Employer. We encourage Minorities, Females, Disabled, and Veterans to apply.
2015-08-29 Flexible Remote

Ensighten

Dev Ops Engineer


Ensighten


devops

infosec

finance

elasticsearch

devops

infosec

finance

elasticsearch

2yr

Apply

The Role:

We are looking for Infrastructure Engineers for our San Jose and San Diego offices, with an infrastructure and operations background, particularly with solid scripting experience (Python, Ruby, etc) + AWS (S3, EC2, etc.) + background to provide operational support and process improvements.

Responsibilities include:

  • Develop and support cloud infrastructure designs and implementations and being directly involved in the software deployment process
  • Use monitoring tools to find problems and resolve and/or escalate to development
  • Design and deploy new applications and enhancements to existing applications, software, and operating systems
  • Create and maintain documentation as it relates to system configuration, mapping, processes, and service records
  • Gauge the effectiveness and efficiency of existing systems; develop and implement strategies for improving or further leveraging these systems
  • Propose and create system design models, specifications, diagrams, and charts to provide direction to development teams
  • Plan and perform Operating System and software upgrades
  • Provide general assistance for Technical Support
  • Assist in the development and implementation of disaster recovery plans
  • Conduct research on emerging technologies in support of systems development efforts, and recommend technologies that will increase cost effectiveness and systems flexibility
    Perform cost-benefit and return on investment analyses for proposed systems to aid management in making implementation decisions

    You:

  • At least 1 to 2 years of infrastructure/operations experience, ideally in a start-up environment (preferably with a DevOps culture)
  • [PIS]aaS background with virtualization (e.g. Xen/KVM) + AWS (S3, EC2, etc.)
  • Solid scripting (Python, Ruby, etc) background
  • Experience in an agile software development environment * Network management experience (including network stack, network tuning, load balancing, subnets/VLANs)
  • Experience with automated deployment and automated software tasks
  • Demonstrated ability to work effectively within a team and with cross-functional technical and business teams
  • Understanding of file system and storage configurations such as NFS, SSD data replication
  • Hands-on experience with configuration management and orchestration tools like Puppet or Ansible
  • Experience with monitoring tools such as Nagios or Sensu
  • Exceptional analytical, conceptual, and problem-solving abilities
  • Excellent architecture and technical support documentation skills
  • Be a team player who is capable of contributing at all technical levels as part of a dedicated project team, as well as independently
  • Proven experience with systems planning, security principles, and general software management best practices

    Bonus Round Experience with:

  • Big Data tech (e.g. Hadoop, Solr, ElasticSearch, Cassandra)
  • Common open Source technologies (e.g. Apache/Tomcat, Nginx, MySQL)
  • Atlassian Products (e.g. Confluence, Jira) * Continuous Integration tools (e.g., Jenkins)
  • Ability to conduct research into emerging technologies and trends, standards, and products as required
  • Scaling applications for performance and reliability depending on type of workload

    Let's be honest, we know how difficult it is for a candidate to get a good idea about a job from a job spec, but as long as you meet most of the requirements, above, and feel at home when chatting about system design and the finer points of infrastructure and operations, we want to hear from you!
2015-08-25 Flexible Remote

NSONE

Senior DevOps Engineer


NSONE


devops

finance

infosec

python

devops

finance

infosec

python

2yr

Apply

Solve Hard Problems With a Team of Infrastructure Pros

NSONE is based in New York City with offices in San Francisco and Singapore. We’re a world class team of internet infrastructure experts, working on deep solutions to real world traffic management problems, and operating a large global delivery infrastructure powered by bleeding edge technology.

Tight-knit, customer focused, driven by innovation

NSONE is not a sprawling, hierarchy addled behemoth. We are lean and fast, and there’s a tight loop among our entire team. We’re all about automation, intelligent distributed systems, and quick iteration.

The role

We’re looking to add a new core member to our small but fast growing engineering team: an experienced DevOps engineer who can dive in to our extensively automated network of global infrastructure, summoning their deep technical background to drive new innovation in the tools and systems that run our cutting edge traffic management platform.

We’re looking for an autodidact who can immerse themselves in our globally distributed infrastructure immediately, leveraging existing technical strengths and teaching themselves the systems that are new to them. You should have broad knowledge of the technologies in modern infrastructure operations and automation, offering constructive advice for improvements, while being able to use and scale the systems in our existing platform. You’ll take responsibility for the quality of your code, and your daily work will have an immediate company-wide impact.

Some stuff you’ll work on:

  • Deployment automation
  • Monitoring, metrics collection and alerting
  • Continuous build and testing systems
  • Linux system maintenance and platform security
  • Traffic load balancing, filtering, and DDoS mitigation tools
  • Messaging, persistent DB and caching systems

    Technologies

    We like to find the right tool for the job, and we’ll expect your sage advice to help make future decisions on which technologies should power our platform (and why they are best). Whatever the technology, we strive for provably maintainable, scalable, and secure systems.

    We run a custom stack in a very distributed network with infrastructure in various environments around the globe. Some tools we’re currently using to tie it all together include:

  • Ansible
  • Redis
  • Linux
  • MongoDB
  • Vagrant
  • RabbitMQ
  • Python (Twisted)
  • Hadoop/HDFS/OpenTSDB
  • Grafana
  • BPF and packet analysis

    Working @ NSONE

    We’re a small, well funded startup with a casual work environment and strong work ethic. There’s a lot to do so we keep meetings and process to a minimum. We’re headquartered in NYC’s Financial District. We like to have fun, but skip most of the fancy startup gimmicks (fresh beer yes, gourmet chef and afternoon yoga no). We prefer candidates local to NYC or SFO, but will happily consider well qualified remote employees.

    We offer:

  • competitive compensation (salary and stock options)
  • medical, dental, and vision
  • commuter benefits
  • 401k
  • flexible hours and time off

    NSONE is an equal opportunity employer.
2015-08-25 Flexible Remote

Oxford Valuation Partners

Lead Backend Engineer


Oxford Valuation Partners


devops

finance

infosec

postgres

devops

finance

infosec

postgres

2yr

Apply

Oxford Valuation Partners is a leading financial advisory firm, specializing in Private Company Valuation, Mergers & Acquisitions, and 409a Reports. OVP works with startups and venture capital firms to provide critical business services to emerging firms raising capital, allocating options, and heading towards IPO or sale.

OVP already provides its clients with top-notch professional services. Now, we’re bringing those services into the online arena, so our clients can collaborate better with our expert staff to manage and control key financial aspects of their corporations.
The world of funding, financing, and compliance is complex and challenging, and underpins much of the vibrancy in the tech sector today. This position is a good opportunity to gain exposure to this space, learn how it all works, and advance the state of the art in financial applications.

Our application is being developed as an RoR app using Postgres.

As a developer, you should be a strong problem solver with a focus on simplicity, performance, and security. It is your job, literally, to make sure that our clients’ finances are calculated correctly and that their information is held securely. At the same time, we expect our tools to be on par with the best consumer-oriented websites in terms of utility, interface, and performance. A solid core will enable us to do that well.

This role initially entails implementing features related to equity modeling and management and user messaging. Over time, we expect you to architecting and implement components all across the application.

Our application is Ruby on Rails using PostgresQL as the data store. In keeping with modern programming standards, we’re working towards an API-first, continuously integrated system. As the lead backend developer for the project, you have a key role in making the application shine, and we expect you to be fluent with modern patterns and expectations.

You’ll also be responsible for leading API integrations with complementary tools and for designing and implementing our own APIs.

The team is distributed so strong communication skills and openness to collaboration are important as well. We use Git and Slack as our primary collaboration tools.

This role is a full-time contract role. It may evolve into a staff position based on personal performance and the success of the application.

SKILLS & REQUIREMENTS

What you’ll need to succeed:

  • Strong analytical skills and the ability to design and document well-architected systems.
  • Knowledge of common design patterns and relevant libraries.
  • Experience consuming and creating REST APIs.
  • Fluency in security and the ability to be intelligently paranoid.
  • Some DevOps chops: Automation, Instrumentation and Configuration.
  • Strong communications skills.
  • Self-motivation: Being a proactive self-starter is essential for distributed teams.
2015-08-24 Flexible Remote

Formstack

DevOps Engineer


Formstack


devops

infosec

elasticsearch

php

devops

infosec

elasticsearch

php

2yr

Apply

Formstack, the most flexible and powerful form building application,is looking for a DevOps Engineer to add to its already awesome Development team.

Formstack is a 9 year old company with its roots in Indianapolis. Our customers span 110 different countries, and our employees live and work across the U.S. and the globe. We have employees in: Oklahoma, North Carolina, Illinois, California, Kentucky, Poland, Georgia, Canada, the Netherlands, Pennsylvania, Georgia, Indiana, Texas, Colorado, & Maryland.

We provide a remote work environment that is flexible and provides great freedom for those who can perform. With that said, relocation is not required for those located outside Indianapolis.

What you'll do:

You'll be in charge of driving scalability, performance, and availability of our application. You'll look into day to day operational issues of our LAMP stack. You'll implement and automate security controls around our infrastructure. You'll work with our engineering team to ensure the software that we build can scale.

Who you are:

You love to solve problems. Scaling, reliability, automation, and performance are things you care about deeply. You have a good mixture of planning, risk taking and a GSD type of attitude. You are a great communicator in and out of your department and most of all you love what you do.

Requirements:

  • 3-5 years experience as a system administrator or DBA.
  • Strong Experience with AWS (EC2, EBS, S3)
  • Strong experience scaling the LAMP stack
  • Strong experience with large MySQL databases (100GB+)
  • Strong understanding of networking and systems architecture.
  • Automation: CHEF, Puppet, Ansible, or other configuration management software
  • A love for Vim

    Nice to haves:

  • Experience with Docker
  • Experience with Elasticsearch
  • Experience with Jenkins
  • Language experience with PHP or Python

    What Formstack Offers:

  • Remote environment
  • Medical, Dental, Vision as well as company-paid Disability and Life Insurance Benefits.
  • 401k with matching company contribution
  • Friday Lunch (Indianapolis Office)
  • The most up-to-date technology, including company-issued Macs, the latest software and other tools needed to excel at your job
  • Company-paid conferences and extended learning
  • Yearly company gatherings
  • Generous PTO

    Want to learn more about who we are and what we value? Check out this Video and apply if you want to jump into the next great chapter of your life!
2015-08-20 Flexible Remote

WizeHive

DevOps Engineer AWS Docker CI CD


WizeHive


devops

finance

infosec

cloud

devops

finance

infosec

cloud

2yr

Apply

YOU'RE EXCITED TO WORK ON THESE BIG PROJECTS IN YOUR FIRST FEW MONTHS:

  • Evaluate the state of our Continuous [Systems] for potential improvements
  • Help write automated regression tests and set up the systems that will run them
  • Improve the reliability and throughput of our logging
  • Perform load testing against production
  • Enhance the reliability and parity of our development machines

    YOU ALSO WELCOME THESE ONGOING RESPONSIBILITIES:

  • Evaluation of technology options and vendor products
  • Analysis of AWS resource usage; reserving capacity in advance
  • Performing major bi-weekly releases
  • Ensuring first-class security and continued HIPAA compliance in our infrastructure architecture
  • After-hours availability for ops emergencies
  • System troubleshooting and problem solving that spans the full stack

    IDEALLY, YOU'RE A PRO WHEN IT COMES TO:

  • Large-scale web applications running on Amazon Web Services (e.g. CloudFormation, OpsWorks, Lambda, etc)
  • Linux server administration
  • MySQL DBA
  • HTTP server technologies (e.g. REST, JSON, XML, etc)
  • Server automation (e.g. Chef, Puppet, etc)
  • Scripting (e.g. Bash, Ruby, etc)
  • Containerization (e.g. Docker)
  • Continuous Integration, Deployment and Delivery
  • Logging (e.g. Logstash)
  • Automated regression testing (e.g. Selenium, Rainforest, etc)

    About WizeHive

    We're a financially stable emerging company building a B2B collaboration platform in the cloud.

    Co-founded by Mike Levinson, Founding Partner at Dreamit Ventures, rapid growth is in our DNA.

    Work takes place both remotely and on-site in Conshohocken, PA.

    We enjoy competitive salaries, health benefits, stock options, product ownership, team events, unlimited PTO, and more.
2015-08-20 Flexible Remote

Sucuri

Customer Engagement Representative


Sucuri


infosec

ads

excel

sales

infosec

ads

excel

sales

2yr

Apply

Sales and support team members assist potential and returning clients by providing clear, courteous, and informed interactions across a variety of support channels. The ideal candidate will be adaptable, and will have the ability to work in an often fast-paced and team-oriented digital workplace to both maintain and promote Sucuri's standards of excellence in the field. In addition, the successful candidate will be comfortable talking about website security to both security professionals and average consumers at events around the Unites States.

Job Responsibilities:

  • Educate potential clients on product features, benefits, and configuration options
  • Nurture inbound leads via phone, chat and email by providing individualized follow-up contacts and customized information packets
  • Help current clients manage, set up, and successfully utilize their product subscriptions
  • Update and handle ticketed support requests, or relay support information to our team of analysts
  • Utilize CRM for managing leads and follow-up

    Hard Requirements:

  • Strong background in customer service/support
  • Experience with chat and phone support.
  • Superior interpersonal skills
  • Knowledge of FTP and other web-based practices and protocols
  • A self motivator with enthusiasm and great communication skills
  • Excellent verbal and written communication skills

    Soft Requirements:

  • Strong passion and confidence in work
  • You are able to effectively adjust to changing situations and client support needs.
  • You can manage several client interactions simultaneously while still providing individualized support
  • You care about client needs and are able to identify ways in which you can improve their experience
  • You are able to consistently respond to customer requests in a courteous and helpful manner.
  • You are work well as part of multi-departmental teams
  • You are organized and can effectively follow through with assistance and contact requests
  • You are driven to increase and improve your skills and knowledge daily!

    Optional / Nice to Haves:

  • Knowledge of the Information Security space
  • Knowledge of the Website Security domain
  • Specialized knowledge in CMS specific security issues.
  • Intermediate to advanced knowledge of CRM systems.
  • Ability to work remotely

    Qualifications:

  • 2 years prior sales or customer support experience, preferably in technical space.
  • Knowledge of CRM systems
  • Ability to travel 10%.
2015-08-18 Flexible Remote

WizeHive

DevOps Engineer


WizeHive


devops

infosec

sys admin

engineer

devops

infosec

sys admin

engineer

2yr

Apply

http://www.wizehive.com/devops





YOU'RE EXCITED TO WORK ON THESE BIG PROJECTS IN YOUR FIRST FEW MONTHS:





  • Evaluate the state of our Continuous [Systems] for potential improvements

  • Help write automated regression tests and set up the systems that will run them

  • Improve the reliability and throughput of our logging

  • Perform load testing against production

  • Enhance the reliability and parity of our development machines


YOU ALSO WELCOME THESE ONGOING RESPONSIBILITIES:



  • Evaluation of technology options and vendor products

  • Analysis of AWS resource usage; reserving capacity in advance

  • Performing major bi-weekly releases

  • Ensuring first-class security and continued HIPAA compliance in our infrastructure architecture

  • After-hours availability for ops emergencies

  • System troubleshooting and problem solving that spans the full stack

2015-08-16 Flexible Remote

IXara

Javascript Developer


IXara


javascript

infosec

cloud

scala

javascript

infosec

cloud

scala

2yr

Apply

Package:

Competitive salary dependent on experience, plus benefits including matched pension contributions & private medical insurance (currently BUPA). (Some benefits may not be available outside the UK).

Location:

Gaddesden Place, Hemel Hempstead, Hertfordshire, UK. Or the MAGIX offices in Berlin or Dresden. Or remote working from anywhere.

Position:

Xara are looking for some talented and experienced Javascript programmers to join the team developing a new, leading edge web-based product.

Xara creates some of the coolest graphics and creative applications around. We're a small company with small company values (but we’ve been around for 30 years), engineering focussed and creating world-leading products, as you can see from this recent product review. See here for information on our current range of products.

If you have the right skills and the determination to succeed, this is your opportunity to work on a product that will be used by millions of people, and to contribute to the most amazing, the most slick web-based creative tool being developed today.

Requirements:

  • An IT or science degree, or equivalent
  • Solid Javascript and Node.js development experience (3 years)
  • Server-side programming
  • NOSQL databases (Redis Server, MongoDB)
  • Linux server configuration* SVN/GIT
  • A solid understanding of cloud deployment strategies and scalable architectures
  • A desire to work on world-leading web software products
  • Highly motivated, with a positive attitude to work and the ability to learn quickly
  • Good trouble-shooting skills with the perseverance to solve problems
  • Able to work productively, both autonomously and as part of a dynamic team

    Desirable:

  • Commercial experience with high-volume scalable architectures
  • Good knowledge of the most common web servers / load balancers (Apache, Nginx, HAProxy)
  • Experience with TDD and continuous integration
  • Experience with AWS
  • An interest in online security.