📈 Open Startup
RSS
API
Post a Job

get a remote job
you can do anywhere

373 Remote Infosec Jobs at companies like Colony Networks, Security Roots Ltd. and Redox last posted 6 months ago

373 Remote Infosec Jobs at companies like Colony Networks, Security Roots Ltd. and Redox last posted 6 months ago

Get a  email of all new remote Infosec jobs

Subscribe
×

  Jobs

  People

👉 Hiring for a remote Infosec position?

Post a Job - $299
on the 🏆 #1 remote jobs board

This week


Redox

US-only

Lead Security Engineer Risk Operations  


Redox

US-only

infosec

exec

ops

engineer

infosec

exec

ops

engineer

US-only5d

Apply

{linebreak}Are you a Security Risk Leader who is passionate about applying scientific methods to security while preparing us for the potential “worse case” scenarios? {linebreak}{linebreak}Redox is searching for an exceptionally talented Tech Lead for our Security Risk Operations team. In this role, you will set the direction for our security risk management processes, prepare the company to handle security incidents, and ensure our vulnerability and issue management processes are efficient and scalable.{linebreak}{linebreak}Redox Security Engineers solve the most challenging technical security problems holding back healthcare technology while making a huge impact on the daily lives of patients. Effective security programs are driven by risk management. Security Risk Operations ensures our team has robust processes to identify, assess and manage the security risks of our organization. At Redox, we use quantifiable practices to ensure we are correctly prioritizing and able to measure the impact of the company’s security program and initiatives. Additionally, we ensure our business is prepared to respond appropriately, in the event that these risks do eventuate.{linebreak}{linebreak}You will be responsible for technical leadership and hands-on building, operating, and maintaining the Security Risk Operations function at Redox.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Be an active voice in our small, focused security team as the primary engineer responsible for Risk Operations{linebreak}{linebreak}* Design and facilitate the processes by which we conduct quantifiable security risk assessments and forecasts{linebreak}{linebreak}* Describe complex problems we face in broadly-understandable terms based on the audience (stakeholders){linebreak}{linebreak}* Approach securing our company pragmatically, empathizing with our business to understand our needs while ensuring key risks are being addressed{linebreak}{linebreak}* Own our incident response processes and procedures, including facilitation of tabletop exercises{linebreak}{linebreak}* Work with engineering and security teams to ensure we are prepared, technically and procedurally, to respond to incidents{linebreak}{linebreak}* Support security incident response during security incidents by providing leadership and coordination across business functions{linebreak}{linebreak}* Build and oversee our business processes for vulnerability management{linebreak}{linebreak}* Maximize security impact and reduce risk while minimizing the negative impact on our business’s velocity{linebreak}{linebreak}* Implement and maintain scalable Vendor Risk Management processes{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Required Skills:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* 3+ years of hands-on experience with quantifiable risk management processes{linebreak}{linebreak}* Knowledge of current security threats, risks, and processes to quantify and manage them{linebreak}{linebreak}* Ability to distill complex security threats and risks into simple terms for non-security (and even non-technical) stakeholders, including clear communication and leadership during incidents{linebreak}{linebreak}* Ability to build and maintain effective incident response procedures, including training and exercises{linebreak}{linebreak}* Experience with Vendor Security Management processes and tools{linebreak}{linebreak}* Some development or quantitative science experience is highly desired{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}This is a remote based opportunity. You can live and work anywhere within the US.   We are only hiring for US based candidates. {linebreak}{linebreak}#Location{linebreak}- US-only

See more jobs at Redox

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

This month


Contrast Security

Java Agent Instrumentation Developer  


Contrast Security


dev

java

infosec

digital nomad

dev

java

infosec

digital nomad

30d

Apply

{linebreak}We are in search of someone who loves Java and wants to explore Java instrumentation technologies. Our Java agent customers do not limit themselves to only Java, so we have opportunities to dive deep into other JVM languages like Scala, Kotlin and Groovy.{linebreak}{linebreak}The opportunity is to join our flagship team, which is our Java agent. It's our most widely adopted language/agent. It just happens to be our most mature and feature rich. We have so much more work to do with our technology, so let me assure you that joining this team will be a fun, wild ride.{linebreak}{linebreak}Writing an application security agent is a responsibility we take very seriously at Contrast. Our customers trust us enough to run our agents directly in their applications. We're looking for an engineer to exercise that power carefully, to help us build a quality, thoroughly tested agent that our customers run with complete confidence. An ideal candidate is proficient in Java and wants to learn more about how their favorite frameworks work under the hood. They likely have professional Java experience, and/or may have contributed to open source frameworks and/or libraries, this could be a great opportunity for them to deepen their understanding of Java. Candidates interested in reverse engineering code and making it better with each iteration should apply.{linebreak}{linebreak}Our Java Agent Engineers{linebreak}{linebreak}{linebreak}* Design modular and well tested Java code bases{linebreak}{linebreak}* Research and implement optimizations for frequently called code{linebreak}{linebreak}* Develop and debug multi-threaded code applying Java concurrency best practices{linebreak}{linebreak}* Develop an understanding of how Java's threads, locks, I/O, and garbage collection affect our agent and our users' applications{linebreak}{linebreak}* Go beyond Java to support our users' Kotlin, Groovy, Scala, and Clojure code bases{linebreak}{linebreak}* Profile Java applications to debug performance issues including memory and concurrency issues{linebreak}{linebreak}* Build and run a fleet of containerized Java applications for testing our agent's compatibility with the vast Java ecosystem{linebreak}{linebreak}* Automate everything{linebreak}{linebreak}* Approach problems from a product perspective, keeping in mind how to solve problems for Java developers like themselves{linebreak}{linebreak}* Have strong communication skills, are not afraid to ask questions, and share what they learn{linebreak}{linebreak}* Solve hard problems and recognize that the best work is the result of finding the simplest solution to complex challenges{linebreak}{linebreak}* {linebreak}See the big picture, and understand how the code they write interacts with our users' systems{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Are you looking to make a difference? Are you a problem solver, but want to be challenged with complex and interesting problems. Do you believe the best work is the result of finding the simplest solution to complex challenges? Do you long to be an early contributor to a product and a company culture?  Do you ever wish you were there in the early days of these startups? Here's a little about what we offer:{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Daily team lunches (in our Baltimore office){linebreak}{linebreak}* Meaningful stock plans{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Choice of a MacBook Pro or Dell Laptop{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We are changing the world of software security. Do it with us. We believe in what we do and are passionate about helping our customers secure their business. We work hard, and we have fun doing it. Solve the impossible. If you’re looking for a fun work environment and like a challenge, you’ll love Contrast Security.

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Seeking a rational and creative front-end developer for fast-growing YC-startup.{linebreak}{linebreak}We are building a global social safety net for online freelancers/entrepreneurs. Our current customers are digital nomads and we will also soon be launching a separate product for distributed startups.{linebreak}{linebreak}We're a strong team of 10, our headquarter is in San Francisco, but our team is distributed. {linebreak}{linebreak}You will receive both salary and equity compensation, also we have quarterly gatherings where you will join us.{linebreak}{linebreak}SafetyWing went through Y Combinator (W18), has raised two rounds of venture-funding and have been growing >20 % every month since launch one year ago. {linebreak}{linebreak}Find out more about us and our product at www.safetywing.com.{linebreak}{linebreak}Looking forward to hearing from you!{linebreak}{linebreak}{linebreak}# Responsibilities{linebreak} You will be responsible for the technical side of front-end, security and devops.{linebreak} {linebreak}{linebreak}# Requirements{linebreak}We're looking for a technical front-end developer with knowledge of the following areas:{linebreak}{linebreak}- React (or at least 2 years of experience with other modern front-end frameworks like angular/vue){linebreak}- Flux/Redux experience{linebreak}- ES6/7{linebreak}- Experience with SASS/SCSS{linebreak}- Security{linebreak}{linebreak}Nice to have{linebreak}- Knowledge about front-end security/payment system implementation{linebreak}- Experience with front-end testing and linters{linebreak}{linebreak}Bonus points if you are a full stack developer. {linebreak}- Experience with Java{linebreak}- Experience with devops{linebreak}{linebreak}In addition we are looking for someone who:{linebreak}- wants to help build a global social safety net on the Internet{linebreak}- thinks for themselves instead of copying others{linebreak}- is creative and bold in the face of any problem{linebreak}- is intellectually honest and have high integrity {linebreak}{linebreak}#Salary{linebreak}Competitive equity and salary{linebreak} {linebreak}{linebreak}#Location{linebreak}- Worldwide

See more jobs at SafetyWing

# How do you apply? Email to [email protected] Tell us why you are interested in working with us with our mission and whether you have any ideas you'd like to implement that you think fits our strategy.{linebreak}{linebreak}
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Last 30 days


Stats (beta): 👁 3,977 views,✍️ 0 applied (0%)
Colony Networks is a fast growing software as a service (SaaS) company providing value-added software solutions to mobile network operators and IoT hardware vendors that extend the performance and security of wireless data networks. We have customers today in Canada and the United States and are on track to expand globally. {linebreak}{linebreak}A role at Colony will accelerate your career where you will learn, grow, and make an impact.{linebreak}{linebreak}Colony Networks is seeking an experienced Full-Stack Software Developer, with more than 3 years of complex web application development experience, who can easily switch between the front-end and back-end. You bring your wealth of experience and technical expertise to build and ship high-quality software in an agile fashion.{linebreak}{linebreak}Who You Are…{linebreak}{linebreak}You’re comfortable working closely with designers and stakeholders to build both awesome UI/UX components and systems, as well as backend microservices and APIs that can process millions of request per day. You have experience liaising and collaborating with business stakeholders to determine requirements and specifications. You live in the cloud and have hands-on experience using public cloud providers such as GCP / AWS / Azure{linebreak}{linebreak}You have a proven track record of taking ownership of projects, development processes, and best practices, for the overall benefit of the team and organization. You want to join us in using exciting new technologies to build the next generation of Colony products. {linebreak}{linebreak}You are super smart and have a Bachelor's Degree in Computer Science or Engineering, or have equivalent work experience.{linebreak}{linebreak}Colony is based in Vancouver BC, but also open to remote candidates in Canada if you have at least 1-year experience working remotely for a company and have a proactive style of communication.{linebreak} {linebreak}You’re Great At..{linebreak}{linebreak}- Building high-volume, highly available, and distributed server applications, hence you have a portfolio of web apps you’ve played a key role in shipping{linebreak}- Applying appropriate design patterns given a problem{linebreak}- Delivering quality code using Python for backend applications{linebreak}- Working with both Relational and NoSQL databases: Postgres/Elasticsearch/Redis{linebreak}- Javascript and UI development, ideally with React JS{linebreak}- Working with REST APIs (bonus if you’ve worked with Twilio & Facebook APIs){linebreak}- Building, running, and maintaining cloud applications in the cloud, bonus for Google Cloud Platform (GCP) {linebreak}- Containers and complementary technologies (Docker, Kubernetes){linebreak}- Working with automated CI/CD pipelines {linebreak}- Maintaining automated test suites and ensuring quality in your code{linebreak}- Working in a Linux environment{linebreak}- Communicating your ideas to managers and peers{linebreak} {linebreak}Bonus Points …{linebreak}{linebreak}- Knowledge of Dataproc / Spark, Pub/Sub{linebreak}- Serverless & Google Cloud Functions{linebreak}- Interest in hackathon{linebreak}- PHP and/or Java coding experience{linebreak}- Machine Learning{linebreak}- Passion for wireless networks, IoT, Wi-Fi & security{linebreak}- Drive to succeed in a fast pace and continuously evolving environment{linebreak}- You have open source contributions or personal projects you’ve shipped successfully {linebreak}{linebreak}# Requirements{linebreak}Skills: Python, Javascript, SQL, Cloud Computing, Redis, PostgreSQL, REST APIs, Docker, React.js, Kubernetes, Serverless, Kong, Eleasticsearch

See more jobs at Colony Networks

# How do you apply? Send your resume to [email protected]
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Security Roots Ltd.

EU-only

Full-stack Rails Developer  


Security Roots Ltd.

EU-only

rails

security

dev

full stack

rails

security

dev

full stack

EU-only2mo

Apply

# Our Story{linebreak}In short, Security Roots helps make the Internet safer. We work with IT security professionals and ethical hackers to help them find security holes and vulnerabilities in systems before the bad guys do.{linebreak}{linebreak}There is a lot of creativity and innovation involved in findings those holes. Unfortunately, it’s not all fun and games, in order for their “findings” to be useful, they need to document their results, track progress, notify stakeholders, review mitigations implemented, verify, re-test, etc. There is a lot of overhead involved in the process.{linebreak}{linebreak}Surprising no one, IT Security experts like the fun and games but don’t like the overhead/ back-office stuff. That’s where we come in, we exist to make the life of IT Security professionals easier, better, more enjoyable by making all of these overhead tasks easier and more painless.{linebreak}{linebreak}We've been in business for 5 years, completely self-funded and profitable. Today, we serve over 440 Infosecurity teams across 37 different countries.{linebreak}{linebreak}{linebreak}# What’s the opportunity?{linebreak}We’re looking to hire our 6th full-time employee, a well-rounded Rails developer.{linebreak}In this role, you will learn a ton and be part of a small, global, and user-centered company. You’ll even report directly to Daniel Martin, the founder.{linebreak}{linebreak}You’ll have the opportunity to make a difference to the lives of 100s of hackers. Plus, as a small team, you will will have a lot of choice about what to work on, and there are still a lot of untapped opportunities for you to grow as the company does.{linebreak}{linebreak}![Daniel at the BlackHat conference](https://lh5.googleusercontent.com/-F7nk_6rb8B2qCVyuyU1kASsJyz83C4CmQsgl4MzaCZcY6qyPBkK9i7Qgp_W-UHklRlO0-kOUP269JImrK5zoPvRS1dh6zoAp-wWaLgdJTW3VfTH0DGMLVqT04q1xi6kn6SWPybt){linebreak}_That’s our founder, Daniel, presenting on the conference floor._{linebreak}{linebreak}{linebreak}# What's in it for you?{linebreak}- **Work anywhere** – We're 100% remote.{linebreak}- **Flexible work hours** - Provided you have reasonable overlap with the team (roughly within EU/US Eastern business hours).{linebreak}- **Great salary** – You will be making more than others in your region.{linebreak}- **Flexible vacation** – Take time off when you need it, we trust you (no less than 4 weeks each year).{linebreak}- **No external pressures** - Our users are king, we do what's best for them. We're self-funded, and don't have any investors, so we can make the right decisions for our customers without worrying about artificial deadlines or financial targets.{linebreak}- **Autonomy** – You will be given a lot of freedom to do what you think is right, without needing to explain every decision.{linebreak}- **Meaningful work** – You will take initiative and ownership to see things through to completion. We won't micro-manage you. And your work will be measured by your results.{linebreak}- You will have great hardware and tools to work with.{linebreak}- Company retreats.{linebreak}# What we offer and what we are looking for{linebreak}You'll be a trusted and key member of our team, and this is (some of) what you'll end up doing on a day-to-day basis:{linebreak}- Improve the experience for our users, help them get the results they need.{linebreak}- Detect opportunities to enhance and improve our stack.{linebreak}- Extend the coverage of our API layer.{linebreak}- Improve our existing products and internal systems. We want to learn from you as you learn from us.{linebreak}- Prioritize and decide what features we should tackle next.{linebreak}# Our stack{linebreak}- Rails 5{linebreak}- JS, Stimulus, CoffeeScript and Sass{linebreak}- Bootstrap and jQuery{linebreak}- Postgres and MySQL{linebreak}- Sinatra, Resque, Middlemanapp, Chef, Vagrant, Nginx, Unicorn,...{linebreak}We're looking for a solid Rubyist with «adequate» experience who is comfortable in a 100% remote team and is self-driven.{linebreak}This is a full-time position for the right candidate and it has an immediate start date. Work 100% remotely (although you need to have a home base - i.e. no perma-travellers this time, sorry!).{linebreak}# This position might be for you if:{linebreak}- You've held a remote position before, or you've held a similar position of responsibility in a traditional organisation but now are looking to **improve your work-life balance**.{linebreak}- You are a well-rounded individual, work is not everything in life, you may have a family and social life. You work hard when it's work time and are **able to switch off** when it isn't.{linebreak}- You're comfortable communicating with others verbally and in writing. **Our team is spread across the world**, and so are our clients.{linebreak}- You are organised, like to be on top of your responsibilities and don't let things slip through the cracks. You will be sure to include the name of your favourite tv series as part of your application.{linebreak}- You have a knack for design / UX will be a plus. Background in Information Security wouldn't hurt either.{linebreak}- **You believe in giving back to the community**. We started with an open-source project and to this day we remain firm believers of open-source and giving back. Part of what you will be creating with the team will be released as open-source. {linebreak}{linebreak}#Location{linebreak}- EU-only

See more jobs at Security Roots Ltd.

Visit Security Roots Ltd.'s website

# How do you apply? 1. Read more about what's like to work with us: https://dradisframework.com/careers/{linebreak}2. Check out our open-source project's repo: https://github.com/dradis/dradis-ce/{linebreak}3. Learn more about the team: https://dradisframework.com/story.html{linebreak}4. Read more about this Full-stack Rails Developer opening: https://dradisframework.com/careers/openings/developer.html
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Carve Systems

Software Deconstruction Engineer Aka. Infosec Consultant  


Carve Systems


infosec

consulting

dev

engineer

infosec

consulting

dev

engineer

1mo

Apply

{linebreak}Update May 2019: The Carve team is looking for people who like to hack. If you are interested in what you read below, please apply and we'll get you started on the process. Got questions? You'll get a short intro call very early in the process. This is the best place to raise any questions you might have. We have a special interest for candidates in the NYC region but if you can hack lets talk. Thanks ...the Carve team.{linebreak}{linebreak}What's the job?{linebreak}{linebreak}{linebreak}* Information security consulting: assessing the security of software and hardware systems.{linebreak}{linebreak}* Understanding how systems are built and learning how to break them.{linebreak}{linebreak}* Working with our experienced team on short-to-medium term engagements.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What would you do?{linebreak}{linebreak}Every two to three weeks you'll get a new project to work on. A typical project will involve:{linebreak}{linebreak}{linebreak}* Recon: Digging into the functionality, design, and implementation of the software system or device.{linebreak}{linebreak}* Probing: Searching for implementation weaknesses which could indicate a security issue. This is a combination of tools that we use, tools that we build, and manual probing. For device projects this can include firmware extraction, analysis, and hardware interfacing.{linebreak}{linebreak}* Extending: Now that you've found a weakness... how far can you extend your access into the system?{linebreak}{linebreak}* Writing: Now that you've hacked your way in you'll need to write-up your findings and work with the developers to make sure they understand what the problem is and how to fix it.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}If you enjoy puzzles and technical variety you'll find this job very enjoyable.{linebreak}{linebreak}Who are we looking for?{linebreak}{linebreak}{linebreak}* You do not need to have information security experience. If you've got the right technical background and problem solving skills we can train you in the dark arts of infosec.{linebreak}{linebreak}* People who enjoy writing code, solving problems with code, and learning how computers work at a fundamental level.{linebreak}{linebreak}* This is not a "travel every week" type of consultant. We do sometimes work at a client site but most of the time we do our projects remotely.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We’re hiring for all experience levels: from zero career experience to information security veterans.{linebreak}{linebreak}Skills & Requirements{linebreak}{linebreak}{linebreak}* Deep experience in software and computers. You may have earned this experience with a degree, career as a software developer, or perhaps you've invested in a technical hobby that took you deep into the rabbit hole.{linebreak}{linebreak}* Technical writing skills (English){linebreak}{linebreak}* Resident of the USA and able to be employed in the USA.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We encourage remote candidates to reply *if* they are residents of the USA.

See more jobs at Carve Systems

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Virtual Pediatric Systems, LLC

US-only

DevOps Security Engineer  


Virtual Pediatric Systems, LLC

US-only

devops

devsecops

security

infosec

devops

devsecops

security

infosec

US-only1mo

Apply

How would you like to have an integral role making a difference in thousands of children’s lives? Come join our established (since 2002) and innovative team in Healthcare working with cutting edge technology to support medical professionals who are changing the way children are cared for all over the world. {linebreak}{linebreak}We are looking to hire a full time, self-motivated DevOps Security Engineer to help us build the security infrastructure that is used to drive quality improvement initiatives and research at hundreds of hospitals around the world. This job is open to 100% remote candidates residing within the USA. {linebreak}{linebreak}About us:{linebreak}Virtual Pediatric Systems, LLC (“VPS”, www.myvps.org) has grown from a small group of intensivists to a national organization with over 135 hospital units. The data base is the largest collaborative for quality improvement based on severity of illness adjusted comparisons of actual, detailed patient records in critical care. This is a unique achievement.{linebreak}{linebreak}Based on this achievement, VPS provides state of the art quality reports that are detailed, actionable and comprehensive for practitioners and hospital administrations. VPS has improved the quality of critical care, built the largest national research collaborative, supported the publication of 100+ papers and contributed to saving thousands of children’s lives.{linebreak}{linebreak}In the future, VPS is ideally situated to expand from providing quality assessments to providing decision support, detailed outcomes tracking, discovery and prediction of adverse events and truly effective comparative research on hundreds of thousands of critically ill children. This will be achieved on top of VPS’s already successful and vibrant critical care network by adding automated data collection and sophisticated data analysis being pioneered by researchers working with VPS developing an advanced computational framework for decision support in critically ill children.{linebreak}{linebreak}Everyone on the VPS team is passionate and genuinely believes in and is proud to help VPS's mission to improve critical care quality and outcomes for all children and their families through collaborative high-quality data management and actionable comparative reports for clinicians and other health care leaders.{linebreak}{linebreak}{linebreak}# Responsibilities{linebreak} You will be responsible for:{linebreak}* Design and integration of cyber security toolsets to enable automated discovery, remediation, and alerting of system vulnerabilities. {linebreak}* Maintain compliance and security certifications. {linebreak}* Run vulnerability scans and remediate any vulnerabilities. {linebreak}* Collaboratively drive security incident response. {linebreak}* Manage our infrastructure, including Active Directory and AWS configurations. {linebreak}* Optimize AWS deployments for scalability, efficiency and security.{linebreak}* Continually research, evaluate, and apply emerging technologies to improve security and the products.{linebreak}* Willingness to take ownership of security issues in a 24/7 environment.{linebreak}* Help troubleshoot production issues and participate in on call rotation.{linebreak} {linebreak}{linebreak}# Requirements{linebreak}The ideal candidate is:{linebreak}* A self-starter who leads by example, and is both disciplined and accountable for delivering accurate and timely results{linebreak}* Ability to communicate clearly and effectively {linebreak}* Expertise in implementing and maintaining compliance (HIPAA, SOC 2, HITRUST){linebreak}* Skills & Requirements{linebreak}* Proficiency with Active Directory, networking, and group/policy administration{linebreak}* Proficiency with configuration management tools in both Windows and Linux environments{linebreak}* Must have proficiency with security and networking at an expert level{linebreak}* Proficiency with heavy system automation and scripting {linebreak}* Must have experience with AWS {linebreak}* Integrating security into a deployment pipeline{linebreak}* Experience and interest in healthcare {linebreak} {linebreak}{linebreak}#Location{linebreak}- US-only

See more jobs at Virtual Pediatric Systems, LLC

# How do you apply? Please apply by uploading your resume here: https://www.workable.com/j/8CE7FC196F
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Full Stack Engineer Integrations Tooling  


Contrast Security


full stack

engineer

infosec

full stack

engineer

infosec

1mo

Apply

{linebreak}Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.{linebreak}{linebreak}About the Position{linebreak}{linebreak}Contrast is looking for an integrations developer who will continue to build out our integrations with communications tools (Slack), platforms (Pivotal Cloud Foundry) security management services (Splunk), and even developer IDEs (InteliJ, Eclipse and VS Code). We have a good start integrating with lots of the software that our customers use. But we want to be integrated with everything, and that’s where you can help.  Ideal candidates have an affinity for working with lots of different software languages including: Java, Ruby, Javascript, and Python.{linebreak}{linebreak}This job asks a lot of a developer’s intuition and persistence as we unravel and unwind APIs and software development kits. We the type of developer who wants to “figure it out.” This is a fun job where you get to work on lots of different things and “own” lots of small projects that you can enhance and tinker with on your own. Our engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our 5 year history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of.{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Build new integrations for Contrast Security software including our SaaS, on-premise, and agents.{linebreak}{linebreak}* Maintain existing integrations we’ve already developed.{linebreak}{linebreak}* Collaborate with other developers in the organization to design and deploy integrations that benefit their teams.{linebreak}{linebreak}* Work with outside organizations to understand how Contrast Security fits with their marketplace and strategy.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You have 1-2 years of experience working in Java, Javascript, Ruby, or Python and have a desire to learn languages you don’t already know{linebreak}{linebreak}* You have a knack for figuring things out and enjoy working with a piece of software to figure out how it works.{linebreak}{linebreak}* Stellar visual skills and attention to detail.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* Your code is clean, your designs are elegant and you are constantly refactoring.{linebreak}{linebreak}* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}* Competitive compensation package (salary + equity){linebreak}{linebreak}* A fun and dynamic environment where you work with other like minded people on products which make a real difference to the security of our customers{linebreak}{linebreak}* In-office lunches{linebreak}{linebreak}* Medical, dental and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* 401K{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}If you're amazing but missing some of these, email us your résumé and cover letter anyway. Please include a link to your Github or BitBucket account, as well as any links to some of your projects if available. Email: [email protected] We are changing the world of software security. Do it with us.   We believe in what we do and are passionate about helping our customers secure their business. We work hard, and we have fun doing it. Solve the impossible. If you’re looking for a fun work environment and like a challenge, you’ll love Contrast Security. By submitting your application, you are providing Personally Identifiable Information about yourself (cover letter, resume, references, or other employment-related information) and hereby give your consent for Contrast Security, and/ or our HR-related Service Providers, to use this information for the purpose of processing, evaluating and responding to your application for current and future career opportunities. Contrast Security is an equal opportunity employer and our team is comprised of individuals from many diverse backgrounds, lifestyles and locations.   

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Stripe

North America verified

Full Stack Engineer, User Security  


Stripe

North America verified

full stack

infosec

engineer

full stack

infosec

engineer

North America2mo

Apply

*User Security is responsible for user-facing authorization and authentication products{linebreak}*{linebreak}The User Security team ensures that all of Stripe’s users and their Stripe accounts on the dashboard have access to a world-class security product experience. The engineering focus encompasses both authentication and authorization, including dashboard roles and permissioning, and enabling enterprises to do the previous at scale.{linebreak}{linebreak}With the ever-growing adoption of Stripe, it’s even more important that our merchants trust us to secure their accounts. Our User Security team builds customer-facing products that increase the overall security for Stripe’s merchant accounts. The team makes strategic decisions by analyzing threats on the “deep web” & customer feedback. They are challenged daily with creating great user experiences on top of building enterprise-grade login security & access controls.{linebreak}{linebreak}We’re looking for an experienced engineer to join this team in advancing the state-of-the-art and user experience in user security.{linebreak}{linebreak}{linebreak}{linebreak}# Responsibilities{linebreak} **You will:**{linebreak}* Work with a wide range of systems, processes and technologies to own and solve problems from end-to-end{linebreak}* Build new features for internal and external users{linebreak}* Uphold our high engineering standards and bring consistency to the many codebases and processes you will encounter{linebreak}* Collaborate with stakeholders across the organization such as experts product, design, infrastructure, and operations {linebreak}{linebreak}# Requirements{linebreak}**You may be fit for this role if you:**{linebreak}* Enjoy working across layers of the stack and doing and anything it takes to solve problems and delight users both internally and externally{linebreak}* Design, build, and maintain APIs, services, and systems across Stripe’s engineering teams.{linebreak}* Debug production issues across services and multiple levels of the stack.{linebreak}* Work with engineers across the company to build new features at large-scale.{linebreak}* Improve engineering standards, tooling, and processes.{linebreak}* Thrive in a collaborative environment involving different stakeholders and subject matter experts{linebreak}* Take pride in working on projects to successful completion involving a wide variety of technologies and systems{linebreak}* Uphold best practices in engineering, security, and design{linebreak}{linebreak}**You might work on:**{linebreak}* Adding new functionality to the Stripe dashboard to help users run their business{linebreak}* Build tools for exploring data from multiple sources in a single, easy to use, portal{linebreak}* Crafting and refining onboarding experiences to help users get to what they want faster while balancing regulatory, risk, and compliance requirements{linebreak}* Build new systems to securely store sensitive data.{linebreak} {linebreak}{linebreak}#Location{linebreak}- North America

See more jobs at Stripe

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Surevine

Software Engineer Security Product Developer  


Surevine


infosec

product manager

dev

engineer

infosec

product manager

dev

engineer

2mo

Apply

{linebreak}We are looking for a senior software engineer with experience working in product development. The ideal candidate will have demonstrable experience working on product roadmaps, technical architecture and design.  We want a team player; someone who is tenacious about getting things done as part of a team in an environment that expects creativity and quality delivery. Be a rebel, but be part of our rebel alliance.{linebreak}{linebreak}We are recruiting a Software Engineer to work on our cyber-security product development.{linebreak}{linebreak}Skills and experience{linebreak}{linebreak}Essential{linebreak}{linebreak}{linebreak}* Expert-level knowledge of Java with 5+ years of experience{linebreak}{linebreak}* Experience of JavaScript and modern responsive front-end development (CSS3){linebreak}{linebreak}* Experience working in product development{linebreak}{linebreak}* A good understanding of web technologies, e.g. HTML and RESTful APIs{linebreak}{linebreak}* Experience of developing enterprise-grade, high-performing and scalable applications{linebreak}{linebreak}* Expert knowledge of the Spring framework (including Spring Data, Spring Security) and JEE containers{linebreak}{linebreak}* Comfortable working with AWS and Linux for application development and deployment{linebreak}{linebreak}* Thorough understanding of application security and secure development practices{linebreak}{linebreak}* Proficient in application design and architecture{linebreak}{linebreak}* Knowledge of a variety of persistence technologies, to include SQL and NoSQL{linebreak}{linebreak}* Tenacious technical problem solver{linebreak}{linebreak}* Good communicator{linebreak}{linebreak}* Experience of working in Agile teams{linebreak}{linebreak}* Demonstrable experience of working with version control, build tools, code-quality and testing tools{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Desirable{linebreak}{linebreak}{linebreak}* Experience in Struts, Freemarker, Closure Templates{linebreak}{linebreak}* Experience of, or strong desire to learn SPA frameworks such as React, Angular or Vue{linebreak}{linebreak}* Experience of application integration points: e.g. SSO, SAML, LDAP, SSL/TLS{linebreak}{linebreak}* Familiarity with the Cyber Security domain, and standards such as STIX and TAXI{linebreak}{linebreak}* Jive development experience{linebreak}{linebreak}* Demonstrable passion for working on open systems including open standards and open source{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Continually critique and improve how the team delivers{linebreak}{linebreak}* Architect secure software systems{linebreak}{linebreak}* Develop the technical roadmap for the product{linebreak}{linebreak}* Design and develop reliable and secure software components{linebreak}{linebreak}* Debug, solve and communicate technical problems{linebreak}{linebreak}* Consider the user at every point in development{linebreak}{linebreak}* Always be learning.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We make cool stuff, and we need you to help us make that stuff cool! Surevine gives its people a platform to develop their individual talents into strengths in an environment which expects creativity and is obsessive about innovation.{linebreak}{linebreak}Much more about us here: https://www.surevine.com/jobs/

See more jobs at Surevine

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

This year


Scratch Financial

Cyber Security Engineer  


Scratch Financial


infosec

engineer

infosec

engineer

2mo

Apply

{linebreak}What we're building{linebreak}{linebreak}Scratchpay provides pet parents with simple friendly payment plans. We help pet parents to provide the care their pets need, easing the financial barrier. We are growing fast in the veterinary space and Veterinarian, Pet owners and pets across the US and Canada love us! Come help us help more pets!{linebreak}{linebreak}{linebreak}About the position{linebreak}{linebreak}This position is about building the Scratchpay's ecosystem and securing it. It is about providing pet parents and clinics with the payment solution they need and working really hard in the background to protect their data, without them even worrying about it. It's about giving the business what it needs to grow safely, smoothly, and with as little surprises as possible when it comes to data and operational cyber security. {linebreak}{linebreak}It's also about working with the engineering and operational teams to research, design, implement, deploy and maintain the best tools and practices there are to achieve our goal and mission and train all teams to make the best of it.{linebreak}{linebreak}This is about pushing the edge of what has been done in Finance and Lending to build a scalable platform that can serve all-the-pets. However many (but the more the merrier). This is about working with a brilliant team that's been growing from 0 to 1 in 3 years and that is helping pets in all states in the US and Canada.{linebreak}{linebreak}This job is for you if you recognize yourself in this:{linebreak}{linebreak}{linebreak}* I am a good mind{linebreak}{linebreak}* I can think for myself{linebreak}{linebreak}* I am critical of myself and others{linebreak}{linebreak}* I am always respectful{linebreak}{linebreak}* I ask questions when needed{linebreak}{linebreak}* I can understand the boundaries but have a lot of fun within them{linebreak}{linebreak}* I take my work seriously and never let down people{linebreak}{linebreak}* I work hard because I want to do the best that I can right now{linebreak}{linebreak}* I always observe and reflect on how to do better tomorrow{linebreak}{linebreak}* I like animals{linebreak}{linebreak}* I want everyone to be and feel safe{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About you{linebreak}{linebreak}Ideal Location: Europe (Portugal / Mid/Eastern Europe){linebreak}{linebreak}Ideal Experience: 3-5+ years{linebreak}{linebreak}Ideal Background: Security consultant or working in Cyber Security at a Security Start-up, Financial start-up or data provider company{linebreak}{linebreak}{linebreak}Requirements{linebreak}{linebreak}{linebreak}* Bachelor’s degree in IT security or similar competency, with CISSP, CISA, CIS strongly preferred{linebreak}{linebreak}* Experience in the IT Field with at least 3 years emphasis on security{linebreak}{linebreak}* Experience planning, researching, and developing security policies, standards, and procedures{linebreak}{linebreak}* Experience developing and managing Business Continuity, Disaster Recovery, and Incident Response Plans and associated training programs{linebreak}{linebreak}* Experience with Next Gen security design and management{linebreak}{linebreak}* Solid network knowledge focusing on security{linebreak}{linebreak}* IDS monitoring and management including building necessary reports and alerts{linebreak}{linebreak}* Proficient in auditing and testing security{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}You will:{linebreak}{linebreak}{linebreak}* Implement advanced network threat protection tools{linebreak}{linebreak}* Manage IDS/IPS, SIEM, and EPP{linebreak}{linebreak}* Assist with Security Information and Event Management implementation{linebreak}{linebreak}* Assist with all security issues{linebreak}{linebreak}* Assist with web security gateway/internet proxy implementation and tuning{linebreak}{linebreak}* Research security issues, 0-day attacks and vulnerabilities and define remediation plans through risk ranking and scoring{linebreak}{linebreak}* Analyze threat intelligence, and serve as a SME for enterprise security operations{linebreak}{linebreak}* Monitor all security logs and events{linebreak}{linebreak}* Generate daily, weekly and quarterly reports that will be presented to manager{linebreak}{linebreak}* Create, implement and work in collaboration with the teams (DevOps, SysOps, Engineering, Operations) new initiative using security best practices{linebreak}{linebreak}* Perform internal pen-test and phishing attacks and trainings, coordinate quarterly independent pentesting{linebreak}{linebreak}* Mitigate security lapses found by external security company during vulnerability assessments and pen-tests and train users on security aspects in regard to any necessary IT security topic.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}How to know if you are a good fit?{linebreak}{linebreak}Ideal Competencies{linebreak}{linebreak}Legend:{linebreak}{linebreak}{linebreak}* + = desirable{linebreak}{linebreak}* ++ = strongly desirable{linebreak}{linebreak}* ! = required{linebreak}{linebreak}* !! = strongly required{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Competencies{linebreak}{linebreak}{linebreak}* Operational Strength{linebreak}{linebreak}{linebreak}{linebreak}* Accuracy (!!){linebreak}{linebreak}* Devotion to quality (!!){linebreak}{linebreak}* Planning (++){linebreak}{linebreak}* Presenting (+){linebreak}{linebreak}{linebreak}{linebreak}* Interpersonal Strength{linebreak}{linebreak}{linebreak}{linebreak}* Adaptability (!){linebreak}{linebreak}* Cooperation (!!){linebreak}{linebreak}* Creating Support (+){linebreak}{linebreak}* Listening Skills (!){linebreak}{linebreak}* Providing Feedback (!){linebreak}{linebreak}* Social Skills (+){linebreak}{linebreak}{linebreak}{linebreak}* Personal Strength{linebreak}{linebreak}{linebreak}{linebreak}* Assertiveness (++){linebreak}{linebreak}* Drive (++){linebreak}{linebreak}* Flexibility (!!){linebreak}{linebreak}* Initiative (!){linebreak}{linebreak}* Integrity (!!){linebreak}{linebreak}* Personal Development (!){linebreak}{linebreak}* Willingness to change (!){linebreak}{linebreak}{linebreak}{linebreak}* Conceptual Strength{linebreak}{linebreak}{linebreak}{linebreak}* Analysing and forming opinions (!!){linebreak}{linebreak}* Helicopter View (+){linebreak}{linebreak}* Innovating (++){linebreak}{linebreak}* Situational Awareness (!){linebreak}{linebreak}* Strategic Insight (!!){linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}In other words, you will have to:{linebreak}{linebreak}{linebreak}* Have empathy;{linebreak}{linebreak}* Understand the position of others is critical. It is necessary to navigate through communication, mitigation and the culture{linebreak}{linebreak}* Be independent;{linebreak}{linebreak}* Yet know when to raise a point or ask for a clarification or escalate a potential issue{linebreak}{linebreak}* Communicate;{linebreak}{linebreak}* Speak your mind and expect others to. Engage in respectful and mindful conflict. Quality > quantity;{linebreak}{linebreak}* Know your stuff and know what you don't know;{linebreak}{linebreak}* Understand that no one is perfect but everyone can learn if they chose so. Be humble enough to know your weaknesses. Be open minded and hard working enough to be able to fix them;{linebreak}{linebreak}* Take constructive critics;{linebreak}{linebreak}* Ask yourself "how to know if I'm wrong?". You may not, but not challenging your thinking is unhealthy. We challenge each other a lot @Scratchpay;{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Our culture{linebreak}{linebreak}We care about the human aspect of work and we expect others to. Excellence is also an important keyword @ Scratchpay. While everyone makes mistakes, we learn from them. We are conscious about efficiency and effectiveness in the positive way. We don't do things that bring low-to-no value short or long term. We also do hard things that bring a lot of value. Quality, attention to detail and respect are some of the traits you must have and expect others to have.{linebreak}{linebreak}The good{linebreak}{linebreak}{linebreak}* We are a team of dedicated, hard working, friendly individuals{linebreak}{linebreak}* We move fast, sometimes break things with measure, we give a second chance{linebreak}{linebreak}* We give constructive feedback, we challenge each other{linebreak}{linebreak}* We are open-minded and we care for each other{linebreak}{linebreak}* Everyone is striving towards excellence. Mediocrity isn't our cup of tea. But we always work hard to help those that are willing to get there!{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}The bad{linebreak}{linebreak}{linebreak}* Everything goes fast and the ultimate goal is to move the business fast. There can be disconnects in the communication at times. We all need to navigate through this and push whenever it is critical to do so.{linebreak}{linebreak}* We are open-minded but things need to be moving forward.{linebreak}{linebreak}* We say what we have to. So expect to hear some unpleasant - but true - things sometimes. Don't hesitate to argue back - with respect - if you disagree.{linebreak}{linebreak}* Like any startup, It can be a mess some days. You also will likely have to do things that aren't in your scope sometimes. Part of the fun, right? ;){linebreak}{linebreak}{linebreak}{linebreak}{linebreak}The most important is: We are always looking at improving. All the time, step by step. If you feel mediocre and don't see a path to improvement or can't listen to others' voice to, please do not apply.

See more jobs at Scratch Financial

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Full Stack Engineer  


Contrast Security


full stack

engineer

infosec

full stack

engineer

infosec

2mo

Apply

{linebreak}Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.{linebreak}About the Position{linebreak}Contrast is looking for a full stack enthusiast proficient in front-end technologies such as ReactJS and AngularJS and server-side API development written in Java/Spring interested in pursuing a life changing experience in the field of application security and continuous delivery. We are an exciting, young team that is growing leaps and bounds each month.{linebreak}{linebreak}This team is tasked with the unique opportunity to advance our runtime and pre-compile code analysis capabilities. This includes providing enhanced techniques to improve the accuracy, findings and reporting of code analysis. It will also include driving and leading the next generation of product and offerings to make the Contrast platform the choice for code analysis tools among developers and security professionals.{linebreak}{linebreak}Ideal candidates have a background building highly scalable and responsive Single Page Applications (SPAs) using ReactJS, CSS/Bootstrap, visualization libraries such as D3, HighCharts or AMCharts, as well as other SVG based visualization plugins. We write a lot of GraphQL to interact with our REST layer to improve performance and data interaction.{linebreak}{linebreak}Our engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our 5 year history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of.{linebreak}{linebreak}{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Build and maintain highly scalable server-side UI processes for the purpose of data collection, manipulation, data pruning, trending and analytics{linebreak}{linebreak}* Build web-based interfaces and applications and contribute to our platforms, style guide, APIs and libraries.{linebreak}{linebreak}* Design and development of a rich user interface for mission critical high-availability analytics application using front end technologies like TypeScript, Javascript, ES6, HTML, CSS, SASS, and D3.{linebreak}{linebreak}* Experience with at least one of the following frameworks: AngularJS, Backbone.js, ReactJS, Ember.js{linebreak}{linebreak}* Execute performance analysis and optimization of page render, data transfers and page load optimizations.{linebreak}{linebreak}* Participate in constant collaboration with teammates in the form of pair programming, group code reviews and pull requests prior to commit.{linebreak}{linebreak}* Work with design and product teams to build amazing, jaw-dropping features.{linebreak}{linebreak}* Give back to the Open Source Community whenever humanly possibly.{linebreak}{linebreak}* Work hand-in-hand with our Product Managers, UX/Designers and Customers on each feature and improvement.{linebreak}{linebreak}* Deploys: our engineers deploy multiple times a day to our AWS infrastructure.{linebreak}{linebreak}* On-call rotation: every member of the team, including the VP of Engineering participates in the on-call rotation.{linebreak}{linebreak}* Technical support: Our engineers don't just release code in the wild. When our customer have issues, we have to jump in and give them help.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* You can join us in our amazing office in the Fells Point neighborhood of Baltimore.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You have experience working in Java/Spring or Python/Flask to design and implement robust and scalable APIs.{linebreak}{linebreak}* Stellar visual skills and attention to detail.{linebreak}{linebreak}* You have extensive HTML5, CSS3 (Less), and JavaScript Framework (ReactJS) experience.{linebreak}{linebreak}* Experience with TypeScript and GraphQL.{linebreak}{linebreak}* Have an eye for quality and have an interest in using tools/frameworks like Enzyme, Prettier, ReactTestRenderer, Jest, JUnit, StoryBook, etc...{linebreak}{linebreak}* AWS Services: S3, EC2, CloudFront, Lambda.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* Your code is clean, your designs are elegant and you are constantly refactoring.{linebreak}{linebreak}* Multiple years experience working in Enterprise or Commercial Software development.{linebreak}{linebreak}* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}* Competitive compensation package (salary + equity){linebreak}{linebreak}* A fun and dynamic environment where you work with other like minded people on products which make a real difference to the security of our customers{linebreak}{linebreak}* In-office lunches{linebreak}{linebreak}* Medical, dental and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* 401K{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Senior .NET Software Engineer  


Contrast Security


dev

senior

engineer

infosec

dev

senior

engineer

infosec

2mo

Apply

{linebreak}About the Opportunity{linebreak}{linebreak}At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas.{linebreak}{linebreak}Contrast is looking for a talented .NET application developer to join our team, engineering a world-class instrumentation agent for analyzing the security of Microsoft web applications. An ideal candidate is proficient in ASP.NET, C#, and C++. Ideally, we would love for you to have an interest or experience in Azure, as well as experience or curiosity with .NET Core.{linebreak}{linebreak}{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Build many variations of simple to complex web applications using ASP.NET and .NET Core for our instrumentation agent to analyze to detect security vulnerabilities at run-time.{linebreak}{linebreak}* Contribute to the development of our instrumentation agent written in C# and C++.{linebreak}{linebreak}* Support traditional ASP.NET apps and more modern .NET Core apps on Windows/Linux.{linebreak}{linebreak}* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented web applications.{linebreak}{linebreak}* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.{linebreak}{linebreak}* Be a team player. You love to work with others to find the right solutions.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* You love to code.{linebreak}{linebreak}* You have experience working on a remote team and don't mind the occasional trip to Baltimore, MD to meet up with teammates a few times a year.{linebreak}{linebreak}* Experience with at least one ASP.NET Framework (WebForms, MVC, WCF, Web API) and .NET Core web applications.{linebreak}{linebreak}* Experience with C# and C++.{linebreak}{linebreak}* Comfortable working in both a Windows and Linux operating systems.{linebreak}{linebreak}* Comfortable working with Azure DevOps for continuous integration.{linebreak}{linebreak}* Strong understanding of Microsoft IIS for configuration and deployment purposes.{linebreak}{linebreak}* Knowledge of the .NET development ecosystem.  Experience with popular .NET libraries such as Entity Framework, Dapper and Unity.{linebreak}{linebreak}* Experience deploying web applications to Azure services such as Azure VMs, Azure Web Apps, Service Fabric, SQL Server and Azure Networking Services.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Daily in-office lunches{linebreak}{linebreak}* 401K{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Elastic

Security Engineer


Elastic


infosec

engineer

infosec

engineer

3mo

Apply

{linebreak}At Elastic, we have a simple goal: to solve the world's data problems with products that delight and inspire. As the company behind the popular open source projects — Elasticsearch, Kibana, Logstash, and Beats — we help people around the world do great things with their data. From stock quotes to Twitter streams, Apache logs to WordPress blogs, our products are extending what's possible with data, delivering on the promise that good things come from connecting the dots. The Elastic family unites employees across 30+ countries into one coherent team, while the broader community spans across over 100 countries.{linebreak}{linebreak}We are looking for senior security engineers to be part of a team focused on implementing, improving and maintaining security for Elastic Cloud while enabling our team to grow and succeed. While not required, US is preferred.{linebreak}{linebreak}What You Will Be Doing:{linebreak}{linebreak}{linebreak}* Designing, engineering, and implementing security solutions for a highly complex public & private cloud environments.{linebreak}{linebreak}* Collaboration with talented engineers and developers to deploy into new environments with security in mind.{linebreak}{linebreak}* Working within a fast paced and open environment with tools like Git, Terraform, Ansible, and Rundeck.{linebreak}{linebreak}* Automation, automation, automation, if you do it more than twice, automate it!{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What You Bring Along:{linebreak}{linebreak}{linebreak}* Senior level experience in public cloud provider environments such as AWS, GCP, Azure, SoftLayer, or OpenStack along with hands on experience with Terraform or Cloudformations{linebreak}{linebreak}* A deep understanding of Linux systems hardening, containerization, and cloud security controls{linebreak}{linebreak}* The Ability to drive decisions and being hands-on{linebreak}{linebreak}* Excellent verbal and written interpersonal skills, a phenomenal teammate with strong analytical, problem solving, debugging and troubleshooting skills{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Bonus Points:{linebreak}{linebreak}{linebreak}* You've built and or maintained tools to get the job done and aren't afraid to use open source solutions{linebreak}{linebreak}* You love to learn new things and strive to continuously learn and challenge yourself and others{linebreak}{linebreak}* Knowledge of or experience with networking concepts in a large cloud based environment{linebreak}{linebreak}* Experience with or exposure to compliances (FedRAMP, SOC-2, PCI, ISO 27k, GDPR){linebreak}{linebreak}* Exposure to other areas of such as application security, Governance, Risk & Controls, and development{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Additional Information:{linebreak}{linebreak}We're looking to hire team members invested in realizing the goal of making real-time data exploration easy and available to anyone. As a distributed company, we believe that diversity drives our vibe! We'd love to expand the doc guild outside of North America. Whether you're ready to launch a new career or grow an existing one, Elastic is the type of company where you can balance great work with great life.{linebreak}{linebreak}{linebreak}* Competitive pay based on the work you do here and not your previous salary{linebreak}{linebreak}* Equity{linebreak}{linebreak}* Global minimum of 16 weeks of paid in full parental leave (moms & dads){linebreak}{linebreak}* Generous vacation time and one week of volunteer time off{linebreak}{linebreak}* Your age is only a number. It doesn't matter if you're just out of college or your children are; we need you for what you can do.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Elastic is an Equal Employment employer committed to the principles of equal employment opportunity and affirmative action for all applicants and employees. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status or any other basis protected by federal, state or local law, ordinance or regulation. Elastic also makes reasonable accommodations for disabled employees consistent with applicable law.

See more jobs at Elastic

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Auth0

Product Security Engineer


Auth0


infosec

product manager

engineer

exec

infosec

product manager

engineer

exec

3mo

Apply

Auth0, a global leader in Identity-as-a-Service (IDaaS), provides thousands of enterprise customers with a Universal Identity Platform for their web, mobile, IoT, and internal applications. Its extensible platform seamlessly authenticates and secures more than 2.5B logins per month, making it loved by developers and trusted by global enterprises. Auth0 has raised more than $110 million to date and continues its global growth at a rapid pace. We are consistently recognized as a great place to work based our outstanding leadership and dedication to company culture, and are looking for the best people to join our incredible team spread across more than 35 countries!{linebreak}{linebreak}Auth0 is a security company and Auth0's Security organization is in the privileged position of supporting a security-first culture for a company that wants to make the Internet safer. The Product Security team mission is to ensure that Auth0 products are as secure as our customers trust them to be. We partner closely with our Engineering and Product teams to embed security into every stage of the product life cycle.{linebreak}{linebreak}We are looking for a Product Security Engineer with a passion for both building and breaking things to solve security problems in partnership with our Engineering teams. You will have a chance to apply your skills and passion to improve the security of our product on a daily basis.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}In this role you will:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Provide security guidance to Engineering and Product teams{linebreak}{linebreak}* Build threat models and conduct risk assessments for new features and services{linebreak}{linebreak}* Perform design and code reviews (lots of them!){linebreak}{linebreak}* Identify, triage, resolve, and manage security vulnerabilities identified in Auth0 products{linebreak}{linebreak}* Build libraries and tools to make software built at Auth0 secure by default{linebreak}{linebreak}* Make security an integral part of our CI/CD pipeline{linebreak}{linebreak}* Perform internal penetration tests and participate in red team exercises{linebreak}{linebreak}* Champion security at Auth0{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Our ideal candidate will have:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Strong understanding of Web application security, including hands-on exploitation skills{linebreak}{linebreak}* Familiarity with secure development practices and security testing techniques (SAST, DAST, fuzzing, etc.){linebreak}{linebreak}* Ability to explain complex security issues and their impact to diverse audiences{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Also nice if you have:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Experience running a bug bounty program{linebreak}{linebreak}* Experience with JavaScript (Node.js) development{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at Auth0

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Saagie

France or between GMT-1 to GMT+3 verified

Senior Back-end Developer  


Saagie

France or between GMT-1 to GMT+3 verified

kotlin

spring

data

governance

kotlin

spring

data

governance

France or between GMT-1 to GMT+33mo

Apply

We're looking for a senior back-end developer to join our product team!{linebreak}{linebreak}## Why working at Saagie?{linebreak}* **Real agile organization**. Human before process{linebreak}* Work on **open source** projects{linebreak}* Flexible work schedules and **remote work** allowed{linebreak}* **Conferences lover**? We can sponsor you! (Limited to Europe){linebreak}{linebreak}## Additional Information{linebreak}* Location: Rouen or Paris office (France), or anywhere (full-time remote work){linebreak}* Contract: permanent{linebreak}* EU work permit needed{linebreak}{linebreak}# Responsibilities{linebreak} You'll be in charge of developing modules and connectors integrated into our product micro-services architecture (running on Kubernetes), and especially on our **data governance** and **security** modules.{linebreak}You'll be working in a feature team with direct relations with the SRE team.{linebreak}{linebreak}Your team is responsible for his own architectural and technological choices and you are committed to:{linebreak}* **🤟 Contribute** to improving Saagie's platform **quality** {linebreak}* **🛠 Improve** its **maintainability** {linebreak}* **👮 guarantee** its operational condition{linebreak}* **🏭 Industrialize** your developments so that they are integrated as soon as possible into our daily deliveries to production. {linebreak}{linebreak}# Requirements{linebreak}* Minimum **5 years experience** as a back-end developer{linebreak}* Interested in **Data**, Big data, privacy, GDPR{linebreak}* You have skills in development with **Java** (or Kotlin) and Spring Boot{linebreak}* You know how to properly **test** your code{linebreak}* **Docker** has no secret to you{linebreak}* **Automation** and **continuous integration** is a standard for you{linebreak}* You know how - and want to - share your knowledge with your teammates{linebreak}* Resourceful and **open-minded**: you're keen to enhance your skills and use new tools quickly{linebreak}* **Autonomous** but can also work with teammates{linebreak}* You are **pragmatic** and **delivery oriented**{linebreak}* At least English speaking (French appreciated){linebreak}{linebreak}### Nice to have{linebreak}Knowledge on:{linebreak}* **Kubernetes**{linebreak}* Hadoop {linebreak}* Front-end development (Angular/React){linebreak} {linebreak}{linebreak}#Salary{linebreak}38K€ - 55K€{linebreak} {linebreak}{linebreak}#Location{linebreak}- France or between GMT-1 to GMT+3

See more jobs at Saagie

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Software Engineer


Contrast Security


dev

engineer

infosec

digital nomad

dev

engineer

infosec

digital nomad

3mo

Apply

{linebreak}Our team is expanding as our company continues to grow from a small start-up to an evolving 4+ year company. We have an opportunity to bring on software engineers who are comfortable working with multiple languages on our full stack application (Java/Spring and Angular/React) and our AWS cloud-based services mainly written in Python and NodeJS Lambda services. We are in search of engineers who are interested in working across many languages.{linebreak}{linebreak}Our engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our short  history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of. We've put together some notes here which will tell you and show you a little bit about our experience. {linebreak}{linebreak}We are a growing group of engineers, designers and product specialists. Anyone who applies to work on our team is specifically looking for an opportunity to be able to:{linebreak}{linebreak}{linebreak}* Work hand-in-hand with our Product Managers, UX/Designers and Customers on each feature and improvement.{linebreak}{linebreak}* Own the technical design, implementation and quality engineering of our full stack application and Lambda services.{linebreak}{linebreak}* Participate in constant collaboration with teammates in the form of pair programming, group code reviews and pull requests prior to commit.{linebreak}{linebreak}* Deploys: our engineers deploy multiple times a day to our AWS infrastructure.{linebreak}{linebreak}* On-call rotation: every member of the team, including the VP of Engineering participates in the on-call rotation.{linebreak}{linebreak}* Technical support: Our engineers don't just release code in the wild. When our customer have issues, we have to jump in and give them help.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Skills & Requirements{linebreak}{linebreak}{linebreak}* You are a Java expert with a strong understanding of Spring, MySQL, Linux and Apache ActiveMQ.{linebreak}{linebreak}* Experience or interest working with TypeScript and GraphQL.{linebreak}{linebreak}* Have an eye for quality and have an interest in using common open source tools/frameworks.{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally. {linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Cofense

ROR Software Engineer IV  


Cofense


cyber security

ror

aws

docker

cyber security

ror

aws

docker

4mo

Apply

***This is a full time position working directly for Cofense***{linebreak}{linebreak}Reporting to the Manager of Software Engineering, the Software Engineer IV is responsible for supporting the implementation and maintenance of our products, working as part of a cross-functional team to build new features while maintaining the overall quality of our applications.{linebreak}{linebreak}At Cofense, we're searching for amazing engineers to join our team. Our company provides end-to-end cyber-defense solutions that help protect organizations and their employees from the vast and growing threat posed by phishing-related attacks. We're expanding rapidly and looking for talented engineers, like you, that care about building great products that solve big problems.{linebreak}{linebreak} In this role, you will work as part of a cross-functional team to build new features while maintaining the overall quality of our applications. Working in an agile team environment, you will apply your knowledge and experience to establish standards, ensure code quality, and mentor others. Our approach to software delivery is ambitious, and asks for regular and active participation in defining the "what" and the "how".{linebreak}{linebreak} As a senior engineer, we'd like to see the following traits from you: technical capability, leadership, and community. For more insight into our thoughts on this topic, please see The Conjoined Triangles of Senior-Level Development [http://frontside.io/blog/2016/07/07/the-conjoined-triangles-of-senior-level-development.html].{linebreak}{linebreak}# Responsibilities{linebreak} * A continuous review of overall test quality, test coverage, and exception reports.{linebreak}* Implement new features that emphasize clarity, robustness, and maintainability.{linebreak}* Mentor others through pairing, code reviews, and regular knowledge sharing.{linebreak}* Establish coding standards, driving best patterns and practices.{linebreak}* Assist with planning efforts assessing technical feasibility of new product features.{linebreak}* An effective communicator, you will work collaboratively and constructively with others in the team and broader organization.{linebreak}* Work with the Principal Engineer to support proper architectural oversight of the product.{linebreak}* Rotating on-call duties with other team members.{linebreak}* Other duties as assigned. {linebreak} {linebreak}{linebreak}The above statements are neither intended to be an all-inclusive list of the duties and responsibilities of the job described, nor are they intended to be a listing of all of the skills and abilities required to do the job. Rather, they are intended only to describe the general nature of the job. This job description is not a contract of employment, either express or implied. Employment with Cofense will be voluntarily entered into and your employment is considered at will. Cofense reserves the right to alter the job description at any time without notice.{linebreak}{linebreak} {linebreak}{linebreak}# Requirements{linebreak}Knowledge, Skills and Abilities Required:{linebreak}{linebreak}* Deep knowledge of Ruby and Ruby on Rails.{linebreak}* A test-centric approach to development, in order to build and deploy with confidence.{linebreak}* Comfortable at the command line, and with advanced git features.{linebreak}* Longstanding familiarity with the Ruby and Rails communities -- you stay on top of current news and changes to the language and framework landscape.{linebreak}* Good understanding of application security and common vulnerabilities as expressed by the OWASP Top 10.{linebreak} {linebreak}{linebreak}Education and/or Additional Experience:{linebreak}{linebreak}* Production experience in another language beyond Ruby and JavaScript, perhaps Elixir or Go{linebreak}* At least 2+ years of recent production experience developing and deploying large-scale Rails applications.{linebreak}* Experience in front-end development with JavaScript, HTML, and CSS.{linebreak}* Experience with relational databases and SQL outside of ORMs like ActiveRecord.{linebreak}* At least 8+ years of professional experience in software engineering preferred.{linebreak}* Have participated in an organization using an Agile-based approach to software delivery{linebreak}* Experience in a multi-team organization and can articulate the strategies, tools, and methods in support of an SOA approach to software .{linebreak}* Bachelor’s degree preferred{linebreak}* Have taken part in building a software appliance or on-premise solution.

See more jobs at Cofense

# How do you apply? Please apply to this job by clicking the link below:
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


vast limits

Security UX Analytics Schmiede Sucht Web Backend Profi


vast limits


infosec

design

web dev

stats

infosec

design

web dev

stats

4mo

Apply

{linebreak}Wir sind eine erfolgreiche junge Softwarefirma, die organisch weiter wachsen möchte. Wir sind inhabergeführt, nicht fremdfinanziert und haben spannende Unternehmenskunden in fast 30 Ländern.{linebreak}{linebreak}Wir sind der Überzeugung, dass Micromanagement tödlich ist für Kreativität und Produktivität. Wir bieten eine offene Arbeitskultur, in der die Mitarbeiter ihren Arbeitsort frei wählen können und sich den Tag selbst einteilen.{linebreak}{linebreak}Wir entwickeln Software für die Unternehmens-IT, weil wir den Markt kennen und die Bedürfnisse von Fachabteilungen und Mitarbeitern verstehen. Wir wissen, wie IT-Profis arbeiten und welche Werkzeuge sie verwenden. Wir wissen auch, wie komplex ein großer Teil der Unternehmenssoftware ist. Wir wollen dazu beitragen, dass sich das ändert.{linebreak}{linebreak}Unser Produkt uberAgent bietet tiefe Einsichten in User Experience and Anwendungsperformance von physischen PCs und virtuellen Desktops. Mit Hilfe dieser Informationen optimieren unsere Kunden die Geschwindigkeit, Sicherheit und Stabilität der Endgeräte ihrer Mitarbeiter.{linebreak}{linebreak}Die Kombination aus einfacher Bedienung und wertvollen Metriken macht uberAgent zu einem Produkt, mit dem sehr gerne gearbeitet wird. Insofern passt es perfekt zu Splunk, einer leistungsfähigen und gleichzeitig benutzerfreundlichen Big Data-Plattform, die von uberAgent für Datenspeicherung und -visualisierung verwendet wird.{linebreak}{linebreak}Deine Aufgaben{linebreak}{linebreak}Wir leben Qualität. Bei uns gibt es keine Deadlines, keinen Stress, keinen Termindruck. Du bleibst „im Flow“ und machst das, was Du am besten kannst: großartige Software schreiben.{linebreak}{linebreak}Dies ist eine Position mit unterschiedlichen, jeweils anspruchsvollen und spannenden Aufgaben.{linebreak}{linebreak}Du entwickelst unser WordPress-Dokumentations-Plugin vlDocs weiter, das WordPress um Fähigkeiten zum produkversionsspezifischen Publishing erweitert. vlDocs ist ein komplexes Plugin, das hervorragende Kenntnisse in WordPress- und Software-Architektur erfordert.{linebreak}{linebreak}Darüber hinaus unterstützt Du uns dabei, unsere (web-basierten) Splunk-Dashboards mit modernen Visualisierungen noch benutzerfreundlicher zu machen. Sofern es die Zeit erlaubt, erweiterst und verbesserst Du unser WordPress-basiertes Backend.{linebreak}{linebreak}Das wünschen wir uns{linebreak}{linebreak}Die einzigen Qualifikationen, die uns wirklich wichtig sind, sind der Drang, das bestmögliche Resultat zu erzielen und der Wunsch, jeden Tag etwas dazuzulernen.{linebreak}{linebreak}Daneben erwarten wir:{linebreak}{linebreak}{linebreak}* Begeisterung für Softwareentwicklung{linebreak}{linebreak}* Sehr gute Kenntnisse in JavaScript und PHP{linebreak}{linebreak}* Sehr gute Kenntnisse moderner JavaScript-Frameworks{linebreak}{linebreak}* Sehr gute Kenntnisse in WordPress{linebreak}{linebreak}* Eigenständiges Arbeiten{linebreak}{linebreak}* Hang zur Perfektion{linebreak}{linebreak}* Sehr gute Deutsch- und Englischkenntnisse{linebreak}{linebreak}* Hauptwohnsitz in Deutschland{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Zusätzlich freuen wir uns über:{linebreak}{linebreak}{linebreak}* Community-Engagement, Bloggen, Mitarbeit an freier Software (bitte schicke uns Links){linebreak}{linebreak}{linebreak}

See more jobs at vast limits

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Cloud Infrastructure Engineer


Contrast Security


cloud

engineer

infosec

cloud

engineer

infosec

4mo

Apply

{linebreak}As a member of the Contrast Security engineering team, you will be responsible for deploying and scaling one of the fastest growing application security products being built today.  You will be focused on high uptime targets while new software is being delivered daily.  We automate everything possible, gather data to make informed decisions, and work hard to make the internet a safer place.   {linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Develop and deliver AWS infrastructure to colleagues and customers{linebreak}{linebreak}* Continually improve existing infrastructure and AWS services{linebreak}{linebreak}* Promote all things DevOps and Infrastructure as Code{linebreak}{linebreak}* Perform automated and ad-hoc analysis on usage patterns, data growth, and application change to prevent performance bottlenecks{linebreak}{linebreak}* Design, build, and configure environments and services in AWS{linebreak}{linebreak}* Improve operational efficiency through automation, visibility, and transparency of performance and reliability metrics.  {linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Tools You Will Use{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Ansible{linebreak}{linebreak}* CloudFormation{linebreak}{linebreak}* SumoLogic{linebreak}{linebreak}* Docker{linebreak}{linebreak}* New Relic{linebreak}{linebreak}* Python (or similar scripting language){linebreak}{linebreak}* AWS, Atlassian (Jira, Bitbucket, Confluence){linebreak}{linebreak}* Jenkins and other CI Tools{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Qualifications{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Bachelor’s Degree or equivalent{linebreak}{linebreak}* 3+ years of professional experience{linebreak}{linebreak}* Experience working with performance testing and monitoring tools{linebreak}{linebreak}* Previous use of Ansible, CloudFormation, AWS (VPC, EC2, Route53, S3, CloudWatch){linebreak}{linebreak}* Background with deploying and troubleshooting web applications and services{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Bonus Points If You Have or Want to Work On{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* TerraFrom{linebreak}{linebreak}* Distributed Queues{linebreak}{linebreak}* Service Discovery{linebreak}{linebreak}* Caching Design{linebreak}{linebreak}* Spring and Hibernate experience{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Medical, dental and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Daily in-office lunches{linebreak}{linebreak}* 401K{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Full Stack Polyglot Reactjs Java Amazon Web Services Services


Contrast Security


react

full stack

javascript

java

react

full stack

javascript

java

4mo

Apply

{linebreak}Our team is expanding as our company continues to grow from a small start-up to an evolving 4+ year company. We have an opportunity to bring on software engineers who are comfortable working with multiple languages on our full stack application (Java/Spring and Angular/React) and our AWS cloud-based services mainly written in Python and NodeJS Lambda services. We are in search of engineers who are interested in working across many languages.{linebreak}{linebreak}Our engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our short  history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of. We've put together some notes here which will tell you and show you a little bit about our experience. {linebreak}{linebreak}We are a growing group of engineers, designers and product specialists. Anyone who applies to work on our team is specifically looking for an opportunity to be able to:{linebreak}{linebreak}{linebreak}* Work hand-in-hand with our Product Managers, UX/Designers and Customers on each feature and improvement.{linebreak}{linebreak}* Own the technical design, implementation and quality engineering of our full stack application and Lambda services.{linebreak}{linebreak}* Participate in constant collaboration with teammates in the form of pair programming, group code reviews and pull requests prior to commit.{linebreak}{linebreak}* Deploys: our engineers deploy multiple times a day to our AWS infrastructure.{linebreak}{linebreak}* On-call rotation: every member of the team, including the VP of Engineering participates in the on-call rotation.{linebreak}{linebreak}* Technical support: Our engineers don't just release code in the wild. When our customer have issues, we have to jump in and give them help.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Skills & Requirements{linebreak}{linebreak}{linebreak}* You are a Java expert with a strong understanding of Spring, MySQL, Linux, Apache ActiveMQ and are comfortable working with Cassandra, Redis or ElasticSearch.{linebreak}{linebreak}* You have experience with HTML5, CSS3 (Less), and JavaScript Framework (AngularJS, EmberJS or ReactJS) experience.{linebreak}{linebreak}* Experience or interest working with TypeScript and GraphQL.{linebreak}{linebreak}* Interest and/or experience with Python and NodeJS.{linebreak}{linebreak}* Have an eye for quality and have an interest in using tools/frameworks like Enzyme, Prettier, ReactTestRenderer, Jest, JUnit, StoryBook, etc...{linebreak}{linebreak}* Interest to work with newer technologies such Apache Kafka and AWS Lambda {linebreak}{linebreak}* Interest and experience working with Docker and Kubernetes as well as Vagrant and Ansible{linebreak}{linebreak}* AWS Services: S3, EC2, CloudFront, Lambda{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally. {linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Marqeta

Sr. Infrastructure Security Engineer - Oakland or


Marqeta


infosec

java

javascript

python

infosec

java

javascript

python

4mo

Apply

Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.{linebreak}{linebreak}Not only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.{linebreak}{linebreak}Marqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. {linebreak}{linebreak}We are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.{linebreak}{linebreak}**Position Summary**{linebreak}{linebreak}Marqeta is growing a fresh new Infrastructure Security Team with the goal of significantly improving industry standards in Secure Platform and Service Delivery in the Payments space.{linebreak}{linebreak}As a member of Marqeta’s Infrastructure Security Team, you’re responsible for design, development and implementation of our core platform and network security controls. Your work protects our most critical environments, as well as meets or exceeds the various regulatory compliance standards required in the Payments Industry. This role interfaces directly with Marqeta’s Platform Engineering, SRE, and Network Engineering teams, and is vital to Marqeta’s Application Security Program.{linebreak}{linebreak}The ideal candidate for this role has a strong desire to lead the organization in well considered Security Engineering methodologies, is seasoned in either AWS or GCP cloud-based services, has a strong passion for DevOps/SecDevOps/DevSecOps driven patterns, and an excellent ability to communicate across roles, teams and disciplines.{linebreak}{linebreak}# Responsibilities{linebreak} **Primary Responsibilities**{linebreak}* Build Self Service Tools for Infrastructure, Platform, and SRE Engineers{linebreak}* Maintain Security Controls in Platform and Infrastructure Services{linebreak}* Implement and Support End-to-End Transport Security and Proxy Layer Services{linebreak}* Lead Infrastructure and Platform Design Reviews{linebreak}* Implement and Maintain Security Patterns in Pre-Release and Post-Release Deployment{linebreak}* Triage, Respond to and Investigate Security Incidents affecting Platform and Infra Services{linebreak}* Implement and Maintain Platform and Infrastructure Threat Monitoring and Detection Tools{linebreak}* Manage and Deploy Services for Security Team{linebreak}* Mentor Marqeta App Sec, Infra, Platform and SRE Engineers{linebreak}* Support Quarterly PCI Efforts {linebreak}{linebreak}# Requirements{linebreak}**Requirements**{linebreak}* 3-5 yrs Demonstrable and Practical Experience in Systems and Infrastructure Engineering or Comparable Experience in a DevOps Role{linebreak}* You pride yourself in a holistic approach to your work{linebreak}* You have a sincere passion for Security Engineering as a discipline{linebreak}* You’re an excellent communicator{linebreak}* You employ strong collaboration patterns and enjoy creating positive team dynamics{linebreak}* You know how to own and support positive outcomes{linebreak}* You remain constructive under pressure, with a flexible working style{linebreak}* You have solid experience and consistency with remote work and engaging distributed teams{linebreak}* Demonstrated experience in some combination of the following disciplines: incident response, detection tooling, vulnerability management, security operations, cloud security, infrastructure security, network security, security tools development{linebreak}* Experience selecting and implementing tools for SIEM, IDS and vulnerability scanning{linebreak}* Experience with automating new and existing processes and tools{linebreak}* Experience with AWS, Java, Python, Ruby, and other modern open source languages and tools{linebreak}{linebreak}**Technical Skills**{linebreak}* Functional Development Experience and Proficiency in Python, Go or Ruby{linebreak}* Functional Experience with Ansible, Terraform and Packer{linebreak}* Experience with AWS Architecture and Service Deployment{linebreak}* Experience with Container Technology (Docker, ECS, Kubernetes/K8s){linebreak}* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat){linebreak}* Strong Knowledge of TLS-based Service Architectures{linebreak}* Strong Experience with Linux Platforms (CentOS/Ubuntu/Debian/etc){linebreak}* Experience with Secure Deployment Specification{linebreak}* Experience with Production Build Pipelines and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI){linebreak}* Strong Interest in Automation Practices{linebreak} {linebreak}{linebreak}**Bonus Qualifications**{linebreak}* Experience in Payments or Financial Services{linebreak}* Experience with Remote Work{linebreak}{linebreak}**Perks**{linebreak}{linebreak}* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!{linebreak}* Rich suite of benefit plans - Employee premiums paid 100%{linebreak}* Generous Paid Time Off plan{linebreak}* Market-leading fully paid Parental Leave{linebreak}* Retirement savings - 401k plan with a Company match{linebreak}* Meaningful Equity{linebreak}* Bi-annual Hack Weeks to support and reward innovation{linebreak}* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt{linebreak}* Conveniently located close to public transportation{linebreak}* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.{linebreak}* Commuter and Parking monthly subsidy{linebreak}* Access to corporate gym membership rates and other discounts and employee perks!{linebreak}* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more!{linebreak} 

See more jobs at Marqeta

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Marqeta

Application Security Engineer - Oakland or


Marqeta


infosec

java

javascript

ruby

infosec

java

javascript

ruby

4mo

Apply

Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.{linebreak}{linebreak}Not only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.{linebreak}{linebreak}Marqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. {linebreak}{linebreak}We are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.{linebreak}{linebreak}**Position Summary**{linebreak}{linebreak}Marqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space.{linebreak}{linebreak}As a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqeta’s open payments platform. This role supports the safety and security of our customer’s payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.{linebreak}{linebreak}Our ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.{linebreak}{linebreak}You'll work closely with Marqeta’s Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and you’ll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.{linebreak}{linebreak}The ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). You’re knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers. {linebreak}{linebreak}# Responsibilities{linebreak} **Primary Responsibilities** {linebreak}* Build Self Service Tools for QE, Frontend and Backend Engineers{linebreak}* Assist with Definition, Implementation, and Maintenance of S-SDLC{linebreak}* Lead Application Security Assessments and Design Reviews{linebreak}* Execute Critical Validation/Verification Functions in Pre- and Post-Release{linebreak}* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline{linebreak}* Execute Greybox and Whitebox Application Security Assessments{linebreak}* Execute and Support HTTP/S Service-Layer Pen-Testing{linebreak}* Develop Security Training and Guidelines for Engineers{linebreak}* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases{linebreak}* Lead Software Vulnerability Management and Risk Mitigation Practices{linebreak}* Offer Guidance and Leadership in PCI Compliance{linebreak} {linebreak}{linebreak}# Requirements{linebreak}**Requirements**{linebreak}* Demonstrable and Practical Experience in an Development or Security Engineering Role{linebreak}* You have a passion for Security and Engineering as a discipline{linebreak}* You’re an excellent communicator{linebreak}* You employ strong collaboration patterns and enjoy creating positive team dynamics{linebreak}* You know how to own and support positive outcomes{linebreak}* You remain constructive under pressure, with a flexible working style{linebreak}{linebreak}**Technical Skills**{linebreak}* Functional Development Experience in Python, Go, JS, Ruby, or Java{linebreak}* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar){linebreak}* Strong Knowledge of OWASP and Common Software Vulnerabilities{linebreak}* Solid Understanding of Secure Coding/Development Practices{linebreak}* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI){linebreak}* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development{linebreak}* Strong Interest in Automation Practices{linebreak}* Familiarity and Interest in Cloud Services and SAAS Platforms  (AWS, GCP){linebreak}{linebreak}**Communication Skills**{linebreak}* Ability to Communicate Technical Details and Concepts Clearly{linebreak}* Strong Capacity to Speak and Act with Candor and Empathy{linebreak}{linebreak}**Nice to Have**{linebreak}* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat){linebreak}* Solid Knowledge of OAuth and SAML{linebreak}* Strong Knowledge of HTTP/S Service Architectures{linebreak}* Strong Knowledge of Transport Security, specifically TLS and CAs {linebreak}{linebreak}**Perks**{linebreak}{linebreak}* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!{linebreak}* Rich suite of benefit plans - Employee premiums paid 100%{linebreak}* Generous Paid Time Off plan{linebreak}* Market-leading fully paid Parental Leave{linebreak}* Retirement savings - 401k plan with a Company match{linebreak}* Meaningful Equity{linebreak}* Bi-annual Hack Weeks to support and reward innovation{linebreak}* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt{linebreak}* Conveniently located close to public transportation{linebreak}* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.{linebreak}* Commuter and Parking monthly subsidy{linebreak}* Access to corporate gym membership rates and other discounts and employee perks!{linebreak}* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more!

See more jobs at Marqeta

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Marqeta

Sr. Application Security Engineer - Oakland or


Marqeta


python

go

javascript

ruby

python

go

javascript

ruby

4mo

Apply

Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.{linebreak}{linebreak}Not only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.{linebreak}{linebreak}Marqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. {linebreak}{linebreak}We are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.{linebreak}{linebreak}**Position Summary**{linebreak}{linebreak}Marqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space. We are based in Oakland, California but are open to remote engineers for this role!{linebreak}{linebreak}As a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqeta’s open payments platform. This role supports the safety and security of our customer’s payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.{linebreak}{linebreak}Our ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.{linebreak}{linebreak}You'll work closely with Marqeta’s Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and you’ll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.{linebreak}{linebreak}The ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). You’re knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers.{linebreak}{linebreak}{linebreak}# Responsibilities{linebreak} **Primary Responsibilities**{linebreak}* Build Self Service Tools for QE, Frontend and Backend Engineers{linebreak}* Assist with Definition, Implementation, and Maintenance of S-SDLC{linebreak}* Lead Application Security Assessments and Design Reviews{linebreak}* Execute Critical Validation/Verification Functions in Pre- and Post-Release{linebreak}* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline{linebreak}* Execute Greybox and Whitebox Application Security Assessments{linebreak}* Execute and Support HTTP/S Service-Layer Pen-Testing{linebreak}* Develop Security Training and Guidelines for Engineers{linebreak}* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases{linebreak}* Lead Software Vulnerability Management and Risk Mitigation Practices{linebreak}* Offer Guidance and Leadership in PCI Complianc {linebreak}{linebreak}# Requirements{linebreak}**Requirements**{linebreak}* 3-5 yrs Demonstrable and Practical Experience in Application Security Engineering or Comparable Experience in a Security Engineering Role{linebreak}* You have a passion for Security Engineering as a discipline{linebreak}* You’re an excellent communicator{linebreak}* You employ strong collaboration patterns and enjoy creating positive team dynamics{linebreak}* You know how to own and support positive outcomes{linebreak}* You remain constructive under pressure, with a flexible working style{linebreak}* Functional Development Experience and Proficiency in Python, Go, JS, Ruby, or Java{linebreak}* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat){linebreak}* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar){linebreak}* Solid Knowledge of OAuth and SAML{linebreak}* Strong Knowledge of HTTP/S Service Architectures{linebreak}* Strong Knowledge of Transport Security, specifically TLS and CAs{linebreak}* Strong Knowledge of OWASP and Common Software Vulnerabilities{linebreak}* Solid Understanding of Secure Coding/Development Practices{linebreak}* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI){linebreak}* Familiarity with Container Technology (Ex. Docker, RKT){linebreak}* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development{linebreak}* Strong Interest in Automation Practices{linebreak}* Familiarity and Interest in Cloud Services and SAAS Platforms  (AWS, GCP){linebreak}* Familiarity with Terraform and Ansible Automation Stac{linebreak}{linebreak}**Perks**{linebreak}* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!{linebreak}* Rich suite of benefit plans - Employee premiums paid 100%{linebreak}* Generous Paid Time Off plan{linebreak}* Market-leading fully paid Parental Leave{linebreak}* Retirement savings - 401k plan with a Company match{linebreak}* Meaningful Equity{linebreak}* Bi-annual Hack Weeks to support and reward innovation{linebreak}* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt{linebreak}* Conveniently located close to public transportation{linebreak}* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.{linebreak}* Commuter and Parking monthly subsidy{linebreak}* Access to corporate gym membership rates and other discounts and employee perks!{linebreak}* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more!

See more jobs at Marqeta

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Redox

Security Engineer


Redox


infosec

engineer

infosec

engineer

5mo

Apply

{linebreak}Redox is a 4 year old, fast-growing startup on a mission to change healthcare.{linebreak}{linebreak}Redox Security Engineers solve the most challenging technical security problems holding back healthcare technology. At Redox, security comes first as patients depend on our systems to be secure, available and reliable. The security team partners with every team in our business to make that happen.{linebreak}{linebreak}We’re looking for a person who will take on securing our cloud (AWS) based production environment. The scope of this program includes our cloud systems, production network (VPCs), base platform images (Ubuntu & Docker) as well as our orchestration, and deployment pipeline (Kubernetes, etc.).{linebreak}{linebreak}Security Engineer (Cloud and Infrastructure) is a critical role at Redox. To be successful in this role you will need to have a vision for what this program should look like and design capabilities which scale as the team and company grow.{linebreak}{linebreak}You can be based anywhere in the US. (See “Work Anywhere” below){linebreak}{linebreak}{linebreak}Day to Day Requirements:{linebreak}{linebreak}{linebreak}* Be an active voice in our small, focused security team as the primary engineer responsible for Cloud & Infrastructure Security.{linebreak}{linebreak}* Define the secure baseline and secure configuration required for production systems at Redox.{linebreak}{linebreak}* Approach securing our company pragmatically, empathizing with engineers and developers to understand their needs.{linebreak}{linebreak}* Communicate issues and progress on complex problems in terms easily understood by stakeholders.{linebreak}{linebreak}* Build scalable systems which enforce and monitor compliance with your secure baseline, rectify issues automatically and alert on problematic systems.{linebreak}{linebreak}* Support and build valuable training activities which uplift employee awareness and responses to security threats.{linebreak}{linebreak}* Monitor, report and seek to address security vulnerabilities in production.{linebreak}{linebreak}* Maximize security impact and reduce risk while minimizing the negative impact on our businesses velocity.{linebreak}{linebreak}* Mentor and guide engineering teams on best practices for keeping our production systems secure.{linebreak}{linebreak}* Own a platform to distill production security information (Events, Logs etc) into an actionable alerting platform.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Required Skills and Experience:{linebreak}{linebreak}{linebreak}* Knowledge of current threats and risks, how to detect them, how to build controls to stop them and how to create awareness of them. Such as cloud account takeovers, credential leakage, improper cloud configuration etc{linebreak}{linebreak}* Proficiency in cloud technologies and hands-on securing of AWS environments including detailed experience with AWS Organizations, VPC, Security Groups, CloudTrail, IAM etc){linebreak}{linebreak}* Ability to distil complex security threats and risks into simple terms for non-security (and even non-technical) stakeholders.{linebreak}{linebreak}* Experience securing Linux/Ubuntu, Docker, Kubernetes.{linebreak}{linebreak}* Knowledge of the OSI Security model and how it applies when securing networks and hosts.{linebreak}{linebreak}* Development experience sufficient to automate repetitive tasks and scale your impact.{linebreak}{linebreak}* Experience securing networks and infrastructure through firewall design, network segmentation and access (VPNs etc{linebreak}{linebreak}* High levels of Redoxiness{linebreak}{linebreak}{linebreak}{linebreak}Benefits{linebreak}{linebreak}We provide benefits that allow you to live life by your own design. Redox employees enjoy unmatched autonomy in their work and the support to live a balanced life. We trust you know what you need to be happy, at work and at home.{linebreak}{linebreak}{linebreak}{linebreak}* Tackle Challenging Problems Everyday. There is no roadmap for what we are building, so you’ll have the backing and support of talented engineers and security practitioners to make sure you have what you need to be successful.{linebreak}{linebreak}* Work Anywhere. All Redox employees are encouraged to live and work wherever they're happiest. All you need is power, wifi, and a computer and you’re good to go. We also run a number of co-located working spaces across many US cities if you prefer an office environment.{linebreak}{linebreak}* Flexible Working. Our best work happens when we feel fresh and inspired. We leave it up to you to decide when you need to take breaks and encourage you to make time for adventure and discovery.{linebreak}{linebreak}* Health & Dental from Day 1. Your health and dental coverage starts when you do to make sure you're always covered. We provide health and dental insurance for employees, spouses, domestic partners, and dependents, as well as life and disability insurance.{linebreak}{linebreak}* Parental Leave. You can take 12 weeks of paid time off within the first year of your new addition arriving. We know that they need you and we have your back.{linebreak}{linebreak}* Productivity Fund. We want you to be able to set up a workspace that allows you to perform at your very best. All Redox employees receive an annual discretionary stipend so you can select what helps you be productive.{linebreak}{linebreak}* 401k. We offer an optional, customizable and flexible 401k plan for you to plan for your financial future on your terms.{linebreak}{linebreak}{linebreak}

See more jobs at Redox

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Senior Software Developer Java


Contrast Security


dev

java

senior

infosec

dev

java

senior

infosec

5mo

Apply

{linebreak}At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas.{linebreak}{linebreak}We are in search of someone who loves Java and wants to explore the internals of the JVM. The opportunity is to join our flagship team, which is our Java agent. It's our most widely adopted language/agent.{linebreak}{linebreak}Writing an application security agent is a responsibility we take very seriously at Contrast. Our customers trust us enough to run our agents directly in their applications. We're looking for an engineer to exercise that power carefully, to help us build a quality, thoroughly tested agent that our customers run with complete confidence.{linebreak}{linebreak}An ideal candidate is proficient in Java and wants to get into the internals of the JVM. He or she likely has professional Java experience, including some experience contributing to open source frameworks and/or libraries, this could be a great opportunity for you to deepen your understanding of Java. You like to reverse engineer code, making it better with each iteration.{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* Experience with one or more Java frameworks like Spring or Struts.{linebreak}{linebreak}* Able to design modular and well tested java code bases.{linebreak}{linebreak}* Interest in reverse engineering Java web applications.{linebreak}{linebreak}* Desire to learn as much about Java Application Security as humanly possible.{linebreak}{linebreak}* Experience with popular Java OSGi and ORM frameworks.{linebreak}{linebreak}* Strong skills in developing and debugging multi-threaded code{linebreak}{linebreak}* Deep understanding of Java threads, locks, I/O and garbage collection.{linebreak}{linebreak}* Experience and/or curiosity in JVM languages: Kotlin, Groovy, Scala or Clojure{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak} Here's a little about what we offer:{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Meaningful stock plans{linebreak}{linebreak}* Daily team lunches{linebreak}{linebreak}* 100% individual paid medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Extended benefits for new and expecting parents.{linebreak}{linebreak}* Choice of a MacBook Pro or Microsoft Surface Pro {linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Platform.sh

Security Compliance Engineer


Platform.sh


infosec

engineer

infosec

engineer

5mo

Apply

{linebreak}Mission{linebreak}{linebreak}To reinforce our commitment to customers’ privacy and security, for its PaaS solution, Platform.sh is looking for a Security & Compliance Engineer with a taste for Python and Go, excellent Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC compliance, and a real hunger for the challenges of building compliant distributed systems. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.{linebreak}{linebreak}This position is well suited for engineers wanting to transition into a heavy security and compliance role. We are targeting developers/sys admins that like writing documentation and can function in a high performing, multithreaded environment.{linebreak}{linebreak}Security, privacy, and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated and where every constraint becomes a feature making the product better.{linebreak}{linebreak}Directly reporting to our Data Protection Officer (VP), and in close interaction with our Chief Product Officer, CTO, VP of Infrastructure, and our Engineering and Customer Support teams.{linebreak}{linebreak}In a given day you might be:{linebreak}{linebreak}{linebreak}* Acting as a technical liaison between the Security & Compliance department and our product, engineering, and operations staff.{linebreak}{linebreak}* Creating documentation and processes in English to help satisfy compliance requirements.{linebreak}{linebreak}* Evaluating, deploying, and creating, systems and tools that will enhance our support and operations efficiency.{linebreak}{linebreak}* Supporting our data protection officer and compliance team with information requests, pen testing, disaster recovery, and related activities.{linebreak}{linebreak}* Executing our security incident management process.{linebreak}{linebreak}* Working with appropriate teams to deploy and operate security tools and solutions.{linebreak}{linebreak}* Ensuring all systems, security applications, and services in environment are securely configured and managed through operating system appropriate security platforms and tools.{linebreak}{linebreak}* Ensuring optimal operation of all security solutions and tools.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Qualifications:{linebreak}{linebreak}Minimum Qualifications{linebreak}{linebreak}{linebreak}* Excellent written English skills (as in, you could have been a tech writer or commercial author in another life){linebreak}{linebreak}* Experience with Linux (preferably Debian-based){linebreak}{linebreak}* Familiar with markdown{linebreak}{linebreak}* Experience implementing PCI, SOC, or related{linebreak}{linebreak}* Operate largely independently (go take that hill) with management support{linebreak}{linebreak}* Juggle several requests at the same time{linebreak}{linebreak}* Proven successful experience in an operations role{linebreak}{linebreak}* Exposure to cloud services (AWS in particular){linebreak}{linebreak}* Understands how an OS works, knows networking, how git works, and the constraints of a distributed system{linebreak}{linebreak}* Proficient in Python{linebreak}{linebreak}* Has an understanding of{linebreak}{linebreak}{linebreak}{linebreak}* Patch and Vulnerability Management process{linebreak}{linebreak}* Principle of Least Privilege{linebreak}{linebreak}* Incident response{linebreak}{linebreak}* Identity and Access Management{linebreak}{linebreak}* IPTABLES{linebreak}{linebreak}* WAFs{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Preferred Qualifications{linebreak}{linebreak}{linebreak}* Experience with containerization technologies (LXC/LXD, Docker){linebreak}{linebreak}* Experience with vendor management{linebreak}{linebreak}* Experience with Puppet and Golang{linebreak}{linebreak}* Demonstrated the ability to successfully manage cloud-based infrastructure for a fast growing organization{linebreak}{linebreak}* Knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3{linebreak}{linebreak}* Relational database skills{linebreak}{linebreak}* Public speaking experience{linebreak}{linebreak}* Ability to speak French or German a plus{linebreak}{linebreak}* Ability to kick ass in Chess or beat Zork without using a map{linebreak}{linebreak}* CISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP Certification or similar will get you moved to the top of the queue{linebreak}{linebreak}* CIPM/E, CIPP/E, CIPM/E certification or similar will get you moved to the top of the queue{linebreak}{linebreak}* Can bravely take on new challenges like a Gryffindor, analyzes problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Sound Like a Good Fit? We’d love to talk to you!  {linebreak}{linebreak}* This is a remote job. 

See more jobs at Platform.sh

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Dealer Inspire

Lead Security Engineer


Dealer Inspire


infosec

exec

engineer

infosec

exec

engineer

5mo

Apply

{linebreak}Company Overview{linebreak}{linebreak}Dealer Inspire is an automotive website platform provider located in Naperville, Illinois. We pride ourselves in having a fun, unconventional working environment and a great culture. While our team works extremely hard, we try to keep it a fun and creative work environment. At Dealer Inspire, we like to look at current problems and 'rethink' about solutions. We're flexible - we don't write requirements in stone, and things can change regularly. This means rethinking how the solutions work best. {linebreak}{linebreak}Want to learn more about who we are? Check us out here!{linebreak}{linebreak}Job Summary{linebreak}{linebreak}We are looking for a Lead Security Engineer to take the reins of our security programs. At Dealer Inspire, we believe that security is paramount to building trust with our customers. As the Lead Security Engineer you will have the opportunity to develop and improve security programs that enable stakeholders across Dealer Inspire to deliver secure software. {linebreak}{linebreak}What you will do:{linebreak}{linebreak}{linebreak}* Partner with development teams to ensure OWASP best practices are being followed. {linebreak}{linebreak}* Lead internal penetration tests across critical assets. {linebreak}{linebreak}* Develop internal data handling & storage procedures. {linebreak}{linebreak}* Partner with sales teams to ensure compliance with customer security requirements. {linebreak}{linebreak}* Develop roadmaps to receive ISO & SOC certifications. {linebreak}{linebreak}* Train internal teams on security policies and practices. {linebreak}{linebreak}* Work with executive team to develop long-term security goals. {linebreak}{linebreak}* Partner with IT teams to assess the risk of  threats and vulnerabilities to Dealer Inspire and the services Dealer Inspire provides to its clients.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Required Skills{linebreak}{linebreak}{linebreak}* Working knowledge of Unix/Linux shell, AWS, vulnerability scanners, Mac OS X{linebreak}{linebreak}* Ability to perform tasks with limited supervision{linebreak}{linebreak}* Previous application security testing or Incident Response (IR) experience, including presenting and documenting vulnerabilities, findings or incidents.{linebreak}{linebreak}* Strong understanding of software security architecture and design and the ability to clearly articulate best practices for application security{linebreak}{linebreak}* Excellent interpersonal communication skills, breaking down vulnerabilities to both developers and leadership.{linebreak}{linebreak}* Comprehensive knowledge, experience, and understanding of testing for the OWASP Top 10{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Desired Skills{linebreak}{linebreak}{linebreak}* CISSP or CISA certification.{linebreak}{linebreak}* Experience programming in Ruby, PHP, or JavaScript.{linebreak}{linebreak}* Experience working directly with clients {linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Compensation{linebreak}{linebreak}$90,000+ per year based upon skill and previous experience. Motivated and talented individuals may advance quickly in our fast growing company.{linebreak}{linebreak}Perks:{linebreak}{linebreak}{linebreak}* Health Insurance with BCBS, Delta Dental (Orthodontics coverage available), Eye Med Vision{linebreak}{linebreak}* 401k plan with company match{linebreak}{linebreak}* Tuition Reimbursement{linebreak}{linebreak}* 13 days paid time off, parental leave, and selected paid holidays{linebreak}{linebreak}* Life and Disability Insurance{linebreak}{linebreak}* Subsidized gym membership{linebreak}{linebreak}* Subsidized internet access for your home{linebreak}{linebreak}* Peer to Peer Bonus program{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}*Not a complete, detailed list. Benefits have terms and requirements before employees are eligible.

See more jobs at Dealer Inspire

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

.net Engineer


Contrast Security


engineer

infosec

engineer

infosec

5mo

Apply

{linebreak}At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Contrast is looking for a talented .NET application developer to join our team, engineering a world-class instrumentation agent for analyzing the security of Microsoft web applications. An ideal candidate is proficient in ASP.NET, C#, and C++. Ideally, we would love for you to have an interest or experience in Azure, as well as experience or curiosity with .NET Core.{linebreak}{linebreak}Key Responsibilities{linebreak}{linebreak}{linebreak}* Build many variations of simple to complex web applications using ASP.NET and .NET Core for our instrumentation agent to analyze to detect security vulnerabilities at run-time.{linebreak}{linebreak}* Contribute to the development of our instrumentation agent written in C# and C++.{linebreak}{linebreak}* Support traditional ASP.NET apps and more modern .NET Core apps on Windows/Linux.{linebreak}{linebreak}* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented web applications.{linebreak}{linebreak}* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.{linebreak}{linebreak}* Be a team player. You love to work with others to find the right solutions.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* You love to code.{linebreak}{linebreak}* Experience with at least one ASP.NET Framework (WebForms, MVC, WCF, Web API) or .NET Core web applications.{linebreak}{linebreak}* Experience with C# and C++.{linebreak}{linebreak}* Comfortable working with Visual Studio Team Services for continuous integration.{linebreak}{linebreak}* Strong understanding of Microsoft IIS for configuration and deployment purposes.{linebreak}{linebreak}* Knowledge of the .NET development ecosystem.  Experience with popular .NET libraries such as Entity Framework, Dapper and Unity.{linebreak}{linebreak}* Experience deploying web applications to Azure services such as Azure VMs, Azure Web Apps, Service Fabric, Azure Table Storage (NoSQL), SQL Server and Azure Networking Services.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Numbrs Personal Finance AG

Security Engineer


Numbrs Personal Finance AG


securitiy

cryptography

go

python

securitiy

cryptography

go

python

5mo

Apply

At Numbrs, our engineers don’t just develop things – we have an impact. We change the way how people are managing their finances by building the best products and services for our users. {linebreak}{linebreak}Numbrs engineers are innovators, problem-solvers, and hard-workers who are building solutions in big data, mobile technology and much more. We look for professional, highly skilled engineers who evolve, adapt to change and thrive in a fast-paced, value-driven environment.{linebreak}{linebreak}Join our dedicated technology team that builds massively scalable systems, designs low latency architecture solutions and leverages machine learning technology to turn financial data into action. Want to push the limit of personal finance management? Join Numbrs.{linebreak}{linebreak}**Job Description**{linebreak}You will be a part of a team that is responsible for developing, releasing, monitoring and troubleshooting large scale micro-service based distributed systems with high transaction volume. You enjoy learning new things and are passionate about developing custom security tools, reviewing designs, code, performing in-depth security assessments of mobile apps, distributed backend systems and internal IT infrastructure. You are a great teammate who thrives in a dynamic environment with rapidly changing priorities.{linebreak}{linebreak}# Responsibilities{linebreak} **All candidates will have**{linebreak}* a Bachelor's or higher degree in technical field of study{linebreak}* a minimum of 3 years security work experience{linebreak}* experience with performing application code reviews, design reviews and penetration testing{linebreak}* experience in penetration testing web-based apps, mobile apps and back-end infrastructure{linebreak}* experience implementing modern cryptosystems{linebreak}* excellent knowledge with at least one modern programming language, such as Go, Java, C++, Python and Scala{linebreak}* excellent troubleshooting and creative problem-solving abilities{linebreak}* excellent written and oral communication and interpersonal skills{linebreak}{linebreak}**Ideally, candidates will also have**{linebreak}* experience with systems for automating deployment, scaling, and management of containerised applications, such as Kubernetes or Mesos{linebreak}* experience working with large scale distributed systems

See more jobs at Numbrs Personal Finance AG

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Python Instrumentation Engineer


Contrast Security


python

engineer

infosec

python

engineer

infosec

5mo

Apply

{linebreak}About the Position At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Contrast is looking for a talented Python and C application developer to join our team, engineering a world-class instrumentation agent for analyzing the security of Python web applications. An ideal candidate is proficient in Python and C. He or she likely has professional Python experience, including some experience contributing to open source frameworks and/or libraries, this could be a great opportunity for you to deepen your understanding of Python's unique characteristics. You like to reverse engineer code, making it better with each iteration. Writing instrumentation agents is a responsibility we take very seriously at Contrast. Our customers trust us enough to run our agents directly in their applications. We're looking for an engineer to exercise that power carefully, to help us build a quality, thoroughly tested agent that our customers run with complete confidence. Responsibilities{linebreak}{linebreak}{linebreak}* Contribute to the development of our instrumentation agent written in Python, C, Pybuf and Protobuf.{linebreak}{linebreak}* Author security rules in Python, C and RegEx to detect and defend common attack patterns and security anti-patterns in Python.{linebreak}{linebreak}* Learn and reverse engineer popular ORM frameworks native to the Python ecosystem for the purpose of analyzing approaches for SQL Injection.{linebreak}{linebreak}* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented web applications.{linebreak}{linebreak}* Build many variations of simple to complex web applications in Python using Django, Flask, Pyramid, web2py and TurboGears for our instrumentation agent to analyze to detect security vulnerabilities at run-time.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* You must love to code and have a strong passion for making software more secure.{linebreak}{linebreak}* You’re a true scientist and think about algorithms and regular expressions while you sleep.{linebreak}{linebreak}* You’re a Python expert with a strong understanding of C, Linux (Ubuntu) and Apache.{linebreak}{linebreak}* Experience writing Python using Django, web2py, TurboGears, Flask and/or Pyramid.{linebreak}{linebreak}* Experience with popular Python ORM frameworks like SQLAlchemy, Django ORM, Storm and/or SQL Object.{linebreak}{linebreak}* Experience building Python packaging tools such as pip, easy_install and buildout.{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally. {linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Daily in-office lunches{linebreak}{linebreak}* 401K{linebreak}{linebreak}* Professional Development Budget{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Security Roots Ltd.

EU-only

Full-stack Rails Developer / 100% Team / IT Security


Security Roots Ltd.

EU-only

rails

full-stack

ruby

infosec

rails

full-stack

ruby

infosec

EU-only6mo

Apply

# Our Story{linebreak}In short, Security Roots helps make the Internet safer. We work with IT security professionals and ethical hackers to help them find security holes and vulnerabilities in systems before the bad guys do.{linebreak}{linebreak}There is a lot of creativity and innovation involved in findings those holes. Unfortunately, it’s not all fun and games, in order for their “findings” to be useful, they need to document their results, track progress, notify stakeholders, review mitigations implemented, verify, re-test, etc. There is a lot of overhead involved in the process.{linebreak}{linebreak}Surprising no one, IT Security experts like the fun and games but don’t like the overhead/ back-office stuff. That’s where we come in, we exist to make the life of IT Security professionals easier, better, more enjoyable by making all of these overhead tasks easier and more painless.{linebreak}{linebreak}We've been in business for 5 years, completely self-funded and profitable. Today, we serve over 440 Infosecurity teams across 37 different countries.{linebreak}{linebreak}{linebreak}# What’s the opportunity?{linebreak}We’re looking to hire our 6th full-time employee, a well-rounded Rails developer.{linebreak}In this role, you will learn a ton and be part of a small, global, and user-centered company. You’ll even report directly to Daniel Martin, the founder.{linebreak}{linebreak}You’ll have the opportunity to make a difference to the lives of 100s of hackers. Plus, as a small team, you will will have a lot of choice about what to work on, and there are still a lot of untapped opportunities for you to grow as the company does.{linebreak}{linebreak}![Daniel at the BlackHat conference](https://lh5.googleusercontent.com/-F7nk_6rb8B2qCVyuyU1kASsJyz83C4CmQsgl4MzaCZcY6qyPBkK9i7Qgp_W-UHklRlO0-kOUP269JImrK5zoPvRS1dh6zoAp-wWaLgdJTW3VfTH0DGMLVqT04q1xi6kn6SWPybt){linebreak}_That’s our founder, Daniel, presenting on the conference floor._{linebreak}{linebreak}{linebreak}# What's in it for you?{linebreak}- **Work anywhere** – We're 100% remote.{linebreak}- **Flexible work hours** - Provided you have reasonable overlap with the team (roughly within EU/US Eastern business hours).{linebreak}- **Great salary** – You will be making more than others in your region.{linebreak}- **Flexible vacation** – Take time off when you need it, we trust you (no less than 4 weeks each year).{linebreak}- **No external pressures** - Our users are king, we do what's best for them. We're self-funded, and don't have any investors, so we can make the right decisions for our customers without worrying about artificial deadlines or financial targets.{linebreak}- **Autonomy** – You will be given a lot of freedom to do what you think is right, without needing to explain every decision.{linebreak}- **Meaningful work** – You will take initiative and ownership to see things through to completion. We won't micro-manage you. And your work will be measured by your results.{linebreak}- You will have great hardware and tools to work with.{linebreak}- Company retreats.{linebreak}# What we offer and what we are looking for{linebreak}You'll be a trusted and key member of our team, and this is (some of) what you'll end up doing on a day-to-day basis:{linebreak}- Improve the experience for our users, help them get the results they need.{linebreak}- Detect opportunities to enhance and improve our stack.{linebreak}- Extend the coverage of our API layer.{linebreak}- Improve our existing products and internal systems. We want to learn from you as you learn from us.{linebreak}- Prioritize and decide what features we should tackle next.{linebreak}# Our stack{linebreak}- Rails 5{linebreak}- JS, Stimulus, CoffeeScript and Sass{linebreak}- Bootstrap and jQuery{linebreak}- Postgres and MySQL{linebreak}- Sinatra, Resque, Middlemanapp, Chef, Vagrant, Nginx, Unicorn,...{linebreak}We're looking for a solid Rubyist with «adequate» experience who is comfortable in a 100% remote team and is self-driven.{linebreak}This is a full-time position for the right candidate and it has an immediate start date. Work 100% remotely (although you need to have a home base - i.e. no perma-travellers this time, sorry!).{linebreak}# This position might be for you if:{linebreak}- You've held a remote position before, or you've held a similar position of responsibility in a traditional organisation but now are looking to **improve your work-life balance**.{linebreak}- You are a well-rounded individual, work is not everything in life, you may have a family and social life. You work hard when it's work time and are **able to switch off** when it isn't.{linebreak}- You're comfortable communicating with others verbally and in writing. **Our team is spread across the world**, and so are our clients.{linebreak}- You are organised, like to be on top of your responsibilities and don't let things slip through the cracks. You will be sure to include the name of your favourite tv series as part of your application.{linebreak}- You have a knack for design / UX will be a plus. Background in Information Security wouldn't hurt either.{linebreak}- **You believe in giving back to the community**. We started with an open-source project and to this day we remain firm believers of open-source and giving back. Part of what you will be creating with the team will be released as open-source. {linebreak}{linebreak}#Location{linebreak}- EU-only

See more jobs at Security Roots Ltd.

# How do you apply? 1. Read more about what's like to work with us: https://dradisframework.com/careers/{linebreak}2. Check out our open-source project's repo: https://github.com/dradis/dradis-ce/{linebreak}3. Learn more about the team: https://dradisframework.com/story.html{linebreak}4. Read more about this Full-stack Rails Developer opening: https://dradisframework.com/careers/openings/developer.html
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Swimlane

Security Automation Professional Services Engineer


Swimlane


infosec

engineer

infosec

engineer

6mo

Apply

{linebreak}Swimlane is looking for a Professional Services Engineer to deliver implementation and deployment services to Swimlane customers.{linebreak}{linebreak}The ideal candidate has a solid background in Security Operations Center (SOCs) and Incident Response (IR) processes and procedures, with a strong understanding of modern cyber security technologies and methodologies, including deploying and integrating such platforms, consulting on best-practices for SOC/IR functions, and developing and implementing automation and orchestration capabilities to streamline operations.  This role will require a willingness to travel to Kansas City an average of once a month and be onsite with the customer for a week each visit.{linebreak}{linebreak}Key Responsibilities:{linebreak}{linebreak}{linebreak}* Deploy and configure the Swimlane platform{linebreak}{linebreak}* Develop and implement new SOC/IR playbooks{linebreak}{linebreak}* Develop new integrations with 3rd party systems leveraging Python{linebreak}{linebreak}* Support customer success initiatives to drive renewals{linebreak}{linebreak}* Assist in Swimlane architecture design for non-standard deployments (ie, HA, DR, etc){linebreak}{linebreak}* Assist with and contribute to the Swimlane Community to answer customer/prospect questions, create relevant content, and facilitate broader adoption of security automation and orchestration.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Position Requirements:{linebreak}{linebreak}{linebreak}* 2 to 5 years of experience in Professional Services at a security vendor, SOC/IR experience, or a combination of the two{linebreak}{linebreak}* Working knowledge of Python{linebreak}{linebreak}* Working knowledge of RESTful APIs{linebreak}{linebreak}* Hands-on experience with the following types of technologies: SIEM, Next Gen Firewall, Threat Intelligence Platforms, Malware Sandboxing{linebreak}{linebreak}* Team player that works well in collaborative situations and start-up environments{linebreak}{linebreak}* University degree in Computer Science, Information technology, Engineering, equivalent work experience.{linebreak}{linebreak}* Ability to quickly grasp complex technical concepts and make them easily understandable verbally, in writing, and in network diagrams/illustrations.{linebreak}{linebreak}{linebreak}

See more jobs at Swimlane

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Senior Ruby Developer


Contrast Security


dev

ruby

senior

infosec

dev

ruby

senior

infosec

6mo

Apply

{linebreak}About the Position{linebreak}{linebreak}At Contrast, our goal is the make the Internet safer day by day. We work on the exciting and challenging problem of Security Instrumentation within Ruby applications. If you are familiar with applications like New Relic, ScoutApp, AppSignal, Elastic or Skylight, then you likely understand Instrumentation from a performance standpoint. If you understand tools like Brakeman or Hakiri, then you understand static code analysis for Ruby Security. Contrast is similar to both, but we solve the most complicated problem of runtime data flow analysis within your application to make it secure in the most accurate fashion possible.{linebreak}{linebreak}We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Contrast is looking for a talented Ruby application developer to join our team, engineering a world-class instrumentation agent for analyzing the security of Ruby web applications. An ideal candidate is incredibly proficient in Ruby. He or she likely has professional Ruby, Rails and Gems experience, including some experience contributing to open source frameworks and/or libraries, this could be a great opportunity for you to deepen your understanding of Ruby’s unique characteristics.{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Contribute to the development of our instrumentation agent written in Ruby, C and Protobuf.{linebreak}{linebreak}* Build many variations of simple to complex web applications in Ruby using Rails, Rack, Sinatra and/or Padrino for our instrumentation agent to analyze to detect security vulnerabilities at run-time.{linebreak}{linebreak}* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented web applications.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* Experience with or a passion to learn Ruby Instrumentation{linebreak}{linebreak}* A possible one day desire to become a Rails contributor{linebreak}{linebreak}* You must love to code and have a strong passion for making software more secure.{linebreak}{linebreak}* You’re a true scientist and think about algorithms and regular expressions while you sleep.{linebreak}{linebreak}* You’re a Ruby expert with a strong understanding of Rails and Linux (Ubuntu).{linebreak}{linebreak}* Experience writing Ruby using Rails, Rack, Sinatra and/or Padrino.{linebreak}{linebreak}* Experience and/or increasing interest working with Protobuf{linebreak}{linebreak}* Experience with popular Ruby ORM frameworks like Active Record, Sequel, Mongoid, Lotus::Model and/or DataMapper.{linebreak}{linebreak}* Experience building Ruby packaging tools such as bundler, RVM and Ruby Gems.{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Daily in-office lunches{linebreak}{linebreak}* 401K{linebreak}{linebreak}* Professional Development Budget{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Tigera

verified

Senior Software Engineer


Tigera

verified

kubernetes

golang

go

calico

kubernetes

golang

go

calico

7mo

Apply

Tigera is looking for passionate and skilled Golang software engineers to join us in our mission to secure the next generation of cloud native applications. At the heart of our strategy is a set of open source networking and security projects (currently Calico, flannel, and Canal) that define the new gold standard for application connectivity within large scale cloud environments, such as Kubernetes, OpenShift, Docker, and related technologies. Building upon this open source foundation, we are working on complementary commercial offerings to help enterprises build and operate cloud native applications and infrastructures, securely and at scale.{linebreak}{linebreak}You will be joining a team that is highly engineering-focused with a culture that values diversity, collaboration, agility and innovation, keeping us one step ahead in the exciting and fast moving cloud-native technology space. {linebreak}{linebreak}# Requirements{linebreak}**Must-Haves**{linebreak}{linebreak}2+ years of experience with the Golang programming language.{linebreak}{linebreak}A drive to get things done in a highly collaborative, agile development environment.{linebreak}{linebreak}Experience with one or more of the following areas and technologies: Networking, Security, Kubernetes, Docker, related or similar.{linebreak}{linebreak}**Nice-to-Haves**{linebreak}{linebreak}Experience developing, securing or operating cloud scale applications or infrastructure.{linebreak}{linebreak}Experience or familiarity with any of these technologies: Istio, Envoy, CNI, OpenShift, Docker{linebreak}{linebreak}Experience in an open source based company, with a focus on cloud, networking and/or security.{linebreak}

See more jobs at Tigera

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Elastic

Senior JavaScript Security Engineer


Elastic


infosec

javascript

senior

engineer

infosec

javascript

senior

engineer

7mo

Apply


Stats (beta): 👁 786 views,✍️ 0 applied (0%)
{linebreak}About Elastic {linebreak}{linebreak}At Elastic, we have a simple goal: to pursue the world's data problems with products that delight and inspire. We help people around the world do extraordinary things with their data. From stock quotes to Twitter streams, Apache logs to WordPress blogs, our products are extending what's possible with data, delivering on the promise that good things come from connecting the dots. Founded in 2012 by the people behind the Elasticsearch, Kibana, Logstash, and Beats open source projects, we believe that diversity drives our vibe. We unite employees across 30+ countries into one coherent team, while the broader community spans across over 100 countries.{linebreak}{linebreak}{linebreak}Engineering Philosophy{linebreak}{linebreak}We believe that engineering complex, pluggable software for the web that is built to last the test of time is both tricky and exciting. Doing so requires a team of diverse individuals, with sharp minds and the ability to empathize with our users, working together with mutual respect and a common mission.{linebreak}{linebreak}We care deeply about giving you full ownership of what you're working on. Our company fundamentally believes great minds achieve greatness when they are set free and are surrounded and challenged by their peers, which is clearly visible throughout our organization. At Elastic, hierarchy does not determine how decisions get made. We feel that anyone needs to be in the position to comment on absolutely anything, regardless of their role within the company.{linebreak}{linebreak}{linebreak}About The Role{linebreak}{linebreak}You will act as a hands-on developer of the Kibana Security team which is responsible for the authentication providers, access control systems, and security hardening in Kibana. Additionally, the security team works with others to instill secure coding principles and best practices. You will work on many key projects and initiatives partnering closely across all Elastic teams. You will be responsible for delivering the roadmap of the Security team, reinforcing the quality of work, managing the technical debt, updating the project status, and providing support for the other parts of the Kibana team.{linebreak}{linebreak}{linebreak}Some of the things you'll work on{linebreak}{linebreak}{linebreak}* Design and implement internal security mechanisms to secure individual Kibana servers{linebreak}{linebreak}* Implement access control for APIs, saved objects, and UI functionality{linebreak}{linebreak}* Create multi-layer solutions for safely executing server-side plugin code with node.js sandboxing and seccomp{linebreak}{linebreak}* Advocate for secure coding principles and best practices{linebreak}{linebreak}* Develop different single sign-on integrations{linebreak}{linebreak}* Perform vulnerability scans and coordinate remediation{linebreak}{linebreak}* Support our support engineers with harder security problems{linebreak}{linebreak}* Own compliance/standards agenda for Kibana( FIPS, PCI DSS, HIPAA, ISO, etc.){linebreak}{linebreak}* Help define how developers build Kibana now and into the future{linebreak}{linebreak}* Work with the tech lead to architect a large JavaScript project designed to be actively developed for decades while embracing continuously-evolving modern web technologies{linebreak}{linebreak}* Write comprehensive tests, including unit tests, service-level, HTTP-level, UI component, and browser-level integration tests that provide confidence in the stability and function of Kibana{linebreak}{linebreak}* Collaborate with other experienced developers both in Elastic and our open source community, including code and technical design reviews{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements{linebreak}{linebreak}{linebreak}* 7+ years of experience building secure and scalable applications with JavaScript{linebreak}{linebreak}* Experience supporting and analyzing security incidents in production web services and applications{linebreak}{linebreak}* Experience writing and a deep appreciation for automated testing{linebreak}{linebreak}* Excellent verbal and written communication skills{linebreak}{linebreak}* A great teammate with strong analytical, problem solving, debugging and troubleshooting skills{linebreak}{linebreak}* Knowledge of common security related protocols (SSL, TLS, IPSec, etc.){linebreak}{linebreak}* Experience of cryptographic encryption algorithms, key exchange algorithms, hashing algorithms, PKI, etc.{linebreak}{linebreak}* Strong JavaScript programming skills{linebreak}{linebreak}* Deep knowledge of Node.js{linebreak}{linebreak}* Understanding of many legacy JS frameworks and at least one modern JS framework such as Angular.js and React.js{linebreak}{linebreak}* Experience with the release process: Source code control, package installers, build scripts, Jenkins, etc.{linebreak}{linebreak}* Experience working with continuous Integration platforms. Jenkins experience is a plus.{linebreak}{linebreak}* Deep under{linebreak}{linebreak}{linebreak}

See more jobs at Elastic

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Join the fastest growing data loss prevention SaaS startup! Teramind (www.teramind.co) is a late-stage, fast-paced SaaS startup with aspirations to take over the world in the insider threat and data loss prevention space. We are looking for an SEO and digital content marketing master, with a strong technology background and familiarity with the cybersecurity space to take over our content marketing and SEO. The successful candidate will work closely with the head of marketing and CTO of the company to devise, plan and execute an aggressive content marketing strategy. This is an individual contributor position.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}# Responsibilities{linebreak} * Contributing to planning, executing and analyzing the company's SEO and web content strategy{linebreak}* Optimizing the paths to conversion{linebreak}* Writing web content, emails/newsletters (includes drip marketing, A/B testing and optimization){linebreak} {linebreak}{linebreak}# Requirements{linebreak}Qualifications Include:{linebreak}{linebreak}* Excellent knowledge of SEO, content marketing and A/B testing{linebreak}* Funnel optimization and email marketing experience{linebreak}* Knowledge of the best practices of the main social media channels{linebreak}* Familiarity with Google Analytics {linebreak}* Analytical skills{linebreak}* Proven ability to work remotely, independently with minimal supervision as part of a globally distributed team

See more jobs at Teramind

# How do you apply? Email your LinkedIn profile and resume to [email protected]
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Sonatype

Senior Security Researcher


Sonatype


infosec

senior

infosec

senior

7mo

Apply


Stats (beta): 👁 790 views,✍️ 0 applied (0%)
{linebreak}The Senior Security Researcher will investigate and analyze vulnerabilities in open-source software. Sonatype is looking for a passionate, driven and talented developer to provide high-quality security data from researching software vulnerabilities.  This is not a development position but relies on development experience to help navigate complex architectures and threat vectors in open source software. This high-quality security data ensures that our customers are getting maximum value out of our products making them feel like they are part of the Sonatype family.   If you are a positive-thinker and problem-solver and believe that customer success and company success go hand-in-hand, this is a great job for you. This position will provide a valuable learning opportunity with the great potential to grow your newly started career in cyber-security. Enjoy your job as you work in a fast-paced, flexible, and fun environment, with talented, diverse, and forward-thinking individuals. Key Areas of Focus{linebreak}{linebreak}{linebreak}* Review, isolate, analyze, and reverse engineer vulnerabilities in open-source software{linebreak}{linebreak}* Document attack capabilitiesProvide detection and remediation guidance{linebreak}{linebreak}* Aid in ideas and prototypes for new tooling{linebreak}{linebreak}* Collaborate with other team members toward shared product goals{linebreak}{linebreak}* Improve Sonatype products by providing valuable security data{linebreak}{linebreak}* Work with technology and business team members to define and refine requirements in an agile development environment{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Required Background{linebreak}{linebreak}{linebreak}* 5+ years of experience in application security or development experience in Java, C#, Python, JavaScript, C/C++ or Ruby{linebreak}{linebreak}* Excellent oral and written communication skills{linebreak}{linebreak}* Excellent organizational skills and detail oriented{linebreak}{linebreak}* Ability to work independently and as part of a team{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Desired Background{linebreak}{linebreak}{linebreak}* Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field{linebreak}{linebreak}* Knowledge of application security such as the OWASP Top 10 or Sans 25{linebreak}{linebreak}* Knowledge of different languages such as Python, Ruby, and scripting{linebreak}{linebreak}* Knowledge of different operating systems such as *NIX, Windows{linebreak}{linebreak}* Application vulnerability assessment or penetration testing experience{linebreak}{linebreak}* Knowledge of open source environments like Github is a plus{linebreak}{linebreak}{linebreak}

See more jobs at Sonatype

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Senior Full Stack Developer


Contrast Security


full stack

dev

senior

infosec

full stack

dev

senior

infosec

7mo

Apply

{linebreak}Our team is expanding as our company continues to grow from a small start-up to an evolving 4+ year company. We have an opportunity to bring on software engineers who are comfortable working with multiple languages on our full stack application (Java/Spring and Angular/React) and our AWS cloud-based services mainly written in Python AWS Lambda services. We are in search of engineers who are interested in working across many languages.{linebreak}{linebreak}Our engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our short  history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of. We've put together some notes here which will tell you and show you a little bit about our experience. {linebreak}{linebreak}We are a growing group of engineers, designers and product specialists. Anyone who applies to work on our team is specifically looking for an opportunity to be able to:{linebreak}{linebreak}{linebreak}* Work hand-in-hand with our Product Managers, UX/Designers and Customers on each feature and improvement.{linebreak}{linebreak}* Own the technical design, implementation and quality engineering of our full stack application and Lambda services.{linebreak}{linebreak}* Participate in constant collaboration with teammates in the form of pair programming, group code reviews and pull requests prior to commit.{linebreak}{linebreak}* Deploys: our engineers deploy multiple times a day to our AWS infrastructure.{linebreak}{linebreak}* Technical support: Our engineers don't just release code in the wild. When our customer have issues, we have to jump in and give them help.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Skills & Requirements{linebreak}{linebreak}{linebreak}* You are comfortable solving common problems in Java, with a fundamental understanding of Spring, MySQL, Linux, Apache ActiveMQ and are comfortable working with Cassandra, Redis or ElasticSearch.{linebreak}{linebreak}* You have experience with HTML5, CSS3 (Less), and JavaScript Framework (AngularJS, EmberJS or ReactJS) experience.{linebreak}{linebreak}* Experience or interest working with TypeScript and GraphQL.{linebreak}{linebreak}* Interest and/or experience with Python Flask Microservice.{linebreak}{linebreak}* Have an eye for quality and have an interest in using tools/frameworks like Enzyme, Prettier, ReactTestRenderer, Jest, JUnit, StoryBook, etc...{linebreak}{linebreak}* Interest to work with newer technologies such Apache Kafka and AWS Lambda {linebreak}{linebreak}* Interest and experience working with Docker and Kubernetes as well as Vagrant and Ansible{linebreak}{linebreak}* AWS Services: S3, EC2, CloudFront, Lambda{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally. {linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About Contrast Security{linebreak}{linebreak}At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas.{linebreak}{linebreak}Are you looking to make a difference? Are you a problem solver, but want to be challenged with complex and interesting problems. Do you believe the best work is the result of finding the simplest solution to complex challenges? Do you long to be an early contributor to a product and a company culture? Do you ever wish you were there in the early days of these startups everyone is talking about? Here's a little about what we offer:{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Daily team lunches{linebreak}{linebreak}* Meaningful stock plans{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Choice of a MacBook Pro or Microsoft Surface Pro {linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Xapo

Security Analyst


Xapo


infosec

analyst

infosec

analyst

8mo

Apply


Stats (beta): 👁 1,008 views,✍️ 0 applied (0%)
Overview{linebreak}{linebreak}Xapo is a leading bitcoin wallet, and we have a mission to bring bitcoin to the everyday lives of people across the world.{linebreak}Our business is growing fast, and we want to make sure we can keep providing the best quality support to our customers. We’re known for our fast responses to users, a positive attitude, and a real desire to find the best working solutions for the people who chose to use Xapo’s products and services.{linebreak}{linebreak}Do you see yourself working with smart people in a collaborative, fast-paced, environment using the latest technologies? Have you always dreamed about working for a tech startup where you can apply your great talents and continue to learn and grow throughout your career? If you answered “Yes” to all of these questions then Xapo is the place for you!{linebreak}{linebreak}This full-time position is planned to be remote, meaning you can work from anywhere in the USA!{linebreak}{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}High-level coordination and communication across various business units, overseeing operational execution of Global IT Security Policies, and ensuring regulatory IT Security compliance requirements are being met.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Enforcement and validation of Global information security policies, standards, and procedures.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Assess IT general controls and/or application layer security controls to ensure compliance with XAPO Global Information Security policies, international standards, best practices, and regulations, especially in the USA.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Deep understanding of business processes and technology used within the areas to ensure compliance with regulatory requirements and the XAPO Information Security Policy and applicable procedures, processes, and standards.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Identify and evaluate technology risks internally and/or at third parties, internal controls which mitigate risks, and related opportunities for internal control improvements.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Ensure users understand and adhere to policies and procedures including implementation and enforcement of an information Security awareness program.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Job Requirement:{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}5 years or more as an auditor or in audit departments.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Proven experience in  SOC1/2 Reports and ISO 27001 Certification, Information Security controls - Big 4, Consulting or IT internal audit experience.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Have understanding or work experience with GDPR, the new Data Privacy Regulation in the EU.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Information Security certification such as CISSP, CISSM, CRISC, CISA or equivalent desirable.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Deep understanding and experience on implementation of Policies for Data Privacy and Security control for the protection of Personal Data and Personally Identifiable Information.{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}Privacy regulations and security compliance requirements affecting Global financial institutions (i.e. GDPR).{linebreak}{linebreak}{linebreak}* {linebreak}{linebreak}To be located in the USA.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Additional Skills:{linebreak}{linebreak}- Knowledge in various cybersecurity areas such as Identity and Access Management, Threat and Vulnerability - Management, Information Risk and Governance, IT Architecture, Monitoring, Incident Response and Security Strategy, Physical Security and/or Business Resiliency.{linebreak}{linebreak}- Good written and verbal communication skills for report writing, business requirement proposals, technical policies, and methodology documentation.{linebreak}{linebreak}- Strong analytical, problem solving, organizational, documentation; time management skills and attention to details.{linebreak}{linebreak}- Good analytical and problem-solving skills coupled with thoroughness and attention to detail is highly desired.{linebreak}{linebreak}- Ability to optimize and condense information and transform data into easily understandable concepts.{linebreak}{linebreak}- Technical skills in MS Excel, PowerPoint, Word, and Project.{linebreak}{linebreak}- Fluent in English. Speak a second language ideal, preferably Spanish, but not a requirement.{linebreak}{linebreak}Some of the Perks of working for Xapo:{linebreak}{linebreak}{linebreak}{linebreak}Attractive compensation.{linebreak}{linebreak}{linebreak}{linebreak}Great remote-work environment.{linebreak}{linebreak}{linebreak}Fully remote job.{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at Xapo

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Software Development Manager


Contrast Security


dev

exec

infosec

digital nomad

dev

exec

infosec

digital nomad

8mo

Apply


Stats (beta): 👁 885 views,✍️ 0 applied (0%)
{linebreak}As a member of the Contrast Security team, you will join a group responsible for industry leading Application Security products. Our team includes engineers, designers, and product managers, all focused on making the Internet safer for everyone.  We believe in agile practices to build our software, as well as continuously delivering features and improvements to our users. You are a person who is always pushing your teammates to do their best work and intolerant of anything else. Our team believes that a successful product is built by working with designers, product managers, and operators to understand the full cycle of software development.{linebreak}{linebreak}The role of the Development Manager involves a balance of day-to-day personnel management, as well managing development projects in a cross-functional manner. Development managers are not just managers, as they are expected to commit code, but at a different pace than contributing engineers.{linebreak}{linebreak}As Development Manager of the Java Agent team you have a number of responsibilities, but the primary one is to get a product out the door. Your goal is deliver results to the customer, or market, and do everything necessary to achieve this. To do this you need to make sure the development team is able to work as efficiently as possible and this means making sure they have clear goals, both short term and long term, and that nothing prevents them from doing their work. From the initial project scope to deploying the product out to customer sites, each step is your responsibility. You can, and should, delegate as much as you can but be ready to check that things are being done as you want and be ready to jump in if it is not.{linebreak}{linebreak}Roles and Responsibilities{linebreak}{linebreak}{linebreak}* Own your product and software code base, including the feature road map, customer issues/defects and the technology road map.{linebreak}{linebreak}* Lead up cross-functional development project initiatives owning project management, issue tracking, scoping and planning.{linebreak}{linebreak}* Drive the daily standup meeting with the team to ensure the project is on-track and that issues are resolved timely.{linebreak}{linebreak}* Support all hiring and recruiting initiatives for your team.{linebreak}{linebreak}* Work on technical designs and architectural initiatives on a project by project basis.{linebreak}{linebreak}* Manage individuals supporting their personal/career growth and development.{linebreak}{linebreak}* Develop team and individual goals/objectives that align to the department and company goal{linebreak}{linebreak}* Perform consistent and regular individual one on one meetings with team members.{linebreak}{linebreak}* Be a team player. You love to work with others to find the right solutions.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* You love to manage others and make them better developers.{linebreak}{linebreak}* You love to code and deploy at scale.{linebreak}{linebreak}* Desire to make the Internet a safer place.{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What We Offer{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Daily team lunches{linebreak}{linebreak}* Meaningful stock plans{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}{linebreak}

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Zapier

Application Security Engineer


Zapier


infosec

engineer

infosec

engineer

8mo

Apply

{linebreak}Hi there!{linebreak}{linebreak}We're looking for someone to join our Engineering team at Zapier as an Application Security Engineer Are you interested in helping build and secure a powerful automation tool? Then read on…{linebreak}{linebreak}We know applying for and taking on a new job at any company requires a leap of faith. We want you to feel comfortable and excited to apply at Zapier. To help share a bit more about life at Zapier, here are a few resources in addition to the job description that can give you an inside look at what life is like at Zapier. We hope you'll take the leap of faith and apply.{linebreak}{linebreak}{linebreak}* Our Commitment to Applicants{linebreak}{linebreak}* Culture and Values at Zapier{linebreak}{linebreak}* Zapier Guide to Remote Work{linebreak}{linebreak}* Zapier Code of Conduct{linebreak}{linebreak}* Diversity and Inclusivity at Zapier{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Zapier is proud to be an equal opportunity workplace dedicated to pursuing and hiring a diverse workforce.{linebreak}{linebreak}Even though our job description may seem like we're looking for a specific candidate, the role inevitably ends up tailored to the person who applies and joins. Regardless of how well you feel you fit our description, we encourage you to apply if you meet these criteria:{linebreak}{linebreak}You care deeply about building secure products in secure ways that simplify the lives of millions of people through automation.{linebreak}{linebreak}About You{linebreak}{linebreak}You have web application and infrastructure security experience. Keeping the core Zapier web application secure is at the heart of this role. Zapier is a SaaS product, so experience building software and managing infrastructure under a similar model is a big plus.{linebreak}{linebreak}You know what makes browsers and sites secure.  The web browser is practically the operating system of the internet; these days nearly everything that happens online, happens in a browser.  You’ll help us continue to keep customer data safe by ensuring the “first mile” is trouble-free.{linebreak}{linebreak}You love writing software and building infrastructure. Most of what you’ll do each day is guiding, building and maintaining Zapier's infrastructure and product. You'll focus on high value, high risk portions of Zapier. You'll use code to automate and improve the more mundane parts of auditing and monitoring of internal processes, as well as in the product.{linebreak}{linebreak}You have worked with teams before on large Python, AWS, & Kubernetes projects. You’re also familiar with some common frameworks for languages like Django, Flask, or Rails as well as React/Backbone.js. You've also worked extensively in cloud providers like AWS, GCE, or Azure{linebreak}{linebreak}You love doing things efficiently. At Zapier, the work you do will have a disproportionate impact on the business. We believe in systems and processes that let us scale our impact to be larger than ourselves. You'll be in a unique position to find and eliminate "insecure and painful" experiences and replace them with "secure and joyful" experiences.{linebreak}{linebreak}You love learning. Engineering is an ever-evolving world. You enjoy playing with new tech and exploring areas that you might not have experience with yet.{linebreak}{linebreak}You love to set your own direction. At Zapier, we have one team meeting each week and one-on-one meetings every month. Between those we chat in Slack and then go make things happen.{linebreak}{linebreak}You are friendly and patient, welcoming, considerate, and respectful. Learn more about these attributes in our code of conduct.{linebreak}{linebreak}Things You Might Do{linebreak}{linebreak}Zapier is a small, fast-growing, and remote-first company, so you'll likely get experience on many different projects across the organization. That said, here are some things you'll probably do:{linebreak}{linebreak}{linebreak}* Write some Python!{linebreak}{linebreak}* Identify where we can add more layers of defense in depth and implement them.{linebreak}{linebreak}* Periodically embed with product teams with to help with security sensitive projects.{linebreak}{linebreak}* Build internal tooling to ensure safe data access patterns for Zapier employees.{linebreak}{linebreak}* Review code across Zapier's product and infrastructure.{linebreak}{linebreak}* Locating weak points across Zapier and strengthening them.{linebreak}{linebreak}* Ship code to millions of users every week.{linebreak}{linebreak}* Experiment: this is a startup so everything can change{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}As part of our All Hands Support initiative, help customers have the best experience with Zapier as possible.{linebreak}{linebreak}{linebreak}How To Apply{linebreak}{linebreak}We have a non-standard application process. To jump-start the process we ask a few questions we normally would ask at the start of an interview. This helps speed up the process and lets us get to know you a bit better right out of the gate.{linebreak}{linebreak}After you apply, you are going to hear back from us, even if we don't seem like a good fit. In fact, throughout the process, we strive to make sure you never go more than seven days without hearing from us.

See more jobs at Zapier

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


ORCID

verified

Operations Project Manager


ORCID

verified

salesforce

project manager

operations

technology

salesforce

project manager

operations

technology

9mo

Apply


Stats (beta): 👁 1,702 views,✍️ 0 applied (0%)
ORCID is seeking an experienced and enthusiastic professional for the position of Operations Project Manager. If you like the excitement of a start-up and the public-service orientation of a non-profit, join us in building and managing our operational infrastructure.{linebreak}{linebreak}ORCID (https://orcid.org) is an international non-profit organization working to create a world in which all who participate in research and innovation are uniquely identified and connected to their contributions and affiliations across disciplines, borders, and time. To achieve our vision of a trustworthy identifier-enabled research information infrastructure, we provide individuals a unique persistent identifier while building and sustaining a community of users and adopters. We are committed to openness, diversity, and our core principles of privacy and researcher control. {linebreak}{linebreak}To Apply: Send a cover letter and resume to [email protected] In your letter please include the name of your favorite airport. {linebreak}{linebreak}Job Summary {linebreak}ORCID is seeking an Operations Project Manager. This role will administer ORCID’s internal portfolio of information systems and tools, manage our information and privacy policies, and lead projects to ensure effective and efficient information sharing across the organization. If you are a problem solver that likes to foster teamwork and genuine collaboration, are assertive and self-motivated, organized, dedicated, and enjoy the mission-driven environment of a fast-paced start-up non-profit organization, this could be the job for you. The position reports to the Director of Operations. The successful candidate will have excellent communication skills and proven successes in project management and designing and implementing business process improvements.{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}Serve as the administrator of ORCID’s internal portfolio of information systems and tools (Gsuite, Salesforce, Dropbox, figshare, HelloSign, ZenDesk, and other platforms), in collaboration with each business owner and related external consultants, to ensure effective and efficient information sharing across the organization. Respond to staff IT queries. Conduct periodic platform reviews to identify and implement new or replacement tools and ensure our systems are compliant with privacy and security requirements.{linebreak}Assist in developing and expanding ORCID’s infrastructure related to policies and procedures across all ORCID teams and develop and maintain internal audit process to maintain compliance and identify areas of concern or vulnerabilities. Consult with other stakeholders as needed. {linebreak}Serve as project manager to lead and execute cross functional, high impact projects related, but not limited to, internal systems and tools, financial management, privacy and security compliance, operations, or the improvement of current business processes. Formulate project goals, and establish and maintain clear project management plans. Identify and motivate key stakeholders, manage timelines and expectations, and ensure that the project delivers the desired value. Ensure effective, accurate and timely communication of project information. Create and deliver executive project summaries and level status presentations{linebreak}Document and regularly review internal privacy and data security policies and practices and manage annual third-party audit to ensure alignment with international privacy and data security regulation frameworks, including Privacy Shield, GDPR, and APEC. Serve as the point person across the organization for questions about our privacy policy. {linebreak}{linebreak}Requirements and Qualifications {linebreak}{linebreak}Demonstrated ability to integrate information to lead and implement organizational solutions{linebreak}Bachelor's degree, preferably in engineering, technology, or business management{linebreak}Excellent communication, presentation, and collaboration skills{linebreak}Strong business, analytical, and planning skills{linebreak}Self-motivated, high attention to detail{linebreak}3-5 plus years of demonstrated project management experience in a tech environment, PMP certification preferred{linebreak}1+ years of Salesforce administration and customization strongly preferred{linebreak}Knowledge of relevant privacy and data security legislation, regulations, and laws preferred{linebreak}Fluency in English required. Second language a plus.{linebreak}Ability to travel based upon business needs (less than 10%){linebreak}{linebreak}We provide:{linebreak}{linebreak}A committed and awesome team serving a community-driven organization{linebreak}Competitive compensation and benefits{linebreak}Flexible work hours and tools to support our virtual office environment{linebreak}Budget to choose your preferred laptop{linebreak}Knowledgeable and involved Board and community participants{linebreak}

See more jobs at ORCID

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Surevine

Information Security Lead


Surevine


infosec

exec

infosec

exec

9mo

Apply


Stats (beta): 👁 930 views,✍️ 0 applied (0%)
{linebreak}UK APPLICANTS ONLY{linebreak}{linebreak}Description{linebreak}{linebreak}Security is at the heart of what Surevine do and our Information Security Lead is responsible for keeping us honest to that. Responsible for the development, implementation, delivery and support of our Information Security Management System (ISMS), they will ensure Security doesn’t become a tick-box exercise in compliance, but remains aligned with the strategic requirements of the business, through the promotion of a security awareness culture throughout the business and an active programme of training, audits and exercises.{linebreak}{linebreak}This role is ultimately to ensure protections are in place, and being continually monitored and improved, to ensure the business minimises security threats and our security culture is externally benchmarked to meet or exceed the appropriate standards to demonstrate our security stance to the business’ stakeholders, e.g. maintaining ISO27001 and Cyber Essentials Plus certification.{linebreak}{linebreak}Skills and experience{linebreak}{linebreak}Essential{linebreak}{linebreak}{linebreak}* You will have carried out audits and have many examples of actioning any non-compliances or making improvements through effective training, processes and systems, e.g. you have completed ISO27001 audits and actioned observations{linebreak}{linebreak}* You will have defined and run exercises that test people, processes and tools are complying with a Security Information Management System and more generally ensuring a system is in place that is effective against a documented set of potential threats{linebreak}{linebreak}* You have maintained and run an effective Incident Management process responding to security incidents quickly and ensure continuity of the business or organization{linebreak}{linebreak}* You will be a sensitive and sophisticated communicator, able to adapt your interactions to allSurevine stakeholders, including the board, in a way that is accessible to both technical and non-technical customers, employees, contractors, partners and board memberS{linebreak}{linebreak}* You will be able to demonstrate highly experienced managerial skills required to expertly manage the security programmes, projects and initiatives you will lead.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Highly-Desirable{linebreak}{linebreak}{linebreak}* You will have a deep understanding of software, platform and infrastructure cloud services (particularly Amazon Web Services) and the implications of using such services to support the business and its customers{linebreak}{linebreak}* You will be able to support an estate of mainly Apple end-user devices, e.g. Macs and iOS devices, used to connect to typically cloud-based services by our remote workers.Information Security Lead{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Ensure the right tools, processes and culture is in place to maintain and continue to build on our living Information Security Management System{linebreak}{linebreak}* Maintain an accurate risk register for the business, ensuring effective treatments are in place for risks and communicating an accurate picture of the risk profile to the board as required, e.g. at board meetings{linebreak}{linebreak}* Complete the necessary audits to maintain our ISO27001 certification and build on our Information Security Management System to incorporate aspects of other relevant standards, to include our current Cyber Essential Plus certification{linebreak}{linebreak}* Be the main point-of-contact for external accreditation bodies ensuring our certifications are maintained{linebreak}{linebreak}{linebreak}

See more jobs at Surevine

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


GeoComm

verified

Senior Software Engineer - Security Video Integration


GeoComm

verified

esri

gis

azure

agile

esri

gis

azure

agile

9mo

Apply


Stats (beta): 👁 1,365 views,✍️ 0 applied (0%)
We are looking for a motivated and experienced senior software engineer to help enhance our development effort using a cutting-edge tech stack. Successful candidates will demonstrate a passion for high quality software, have strong engineering principles and methodical problem-solving skills. This is a unique opportunity to build products that truly make a difference. This position is exempt and reports directly to the Joint Operations General Manager. {linebreak}Qualifications{linebreak}BS/MS in Computer Science or Software Engineering{linebreak}7+ years of experience developing software applications and web services{linebreak}Programming experience in Python, C# / .NET, JavaScript or TypeScript{linebreak}Working experience with video camera system SDKs and APIs{linebreak}Working experience with frameworks such as Angular{linebreak}Working experience with SQL databases{linebreak}Working knowledge of Git version control{linebreak}Hands on experience creating responsive web applications using modern frameworks{linebreak}Experience designing applications that operate on cloud environments such as AWS or Azure{linebreak}Ability to establish priorities and work independently on multiple tasks{linebreak}Knowledge of Agile software development methodologies and practices{linebreak}Preferred Experience{linebreak}Experience developing, maintaining, and innovating large scale, consumer facing applications{linebreak}Familiar with the development challenges inherent with highly scalable and available web applications{linebreak}Experience with open source technologies{linebreak}Experience with various modern web frameworks{linebreak}Experience developing GIS applications using Esri technology{linebreak}Experience with Docker{linebreak}Geo-Comm is an equal opportunity employer and does not discriminate in hiring or employment on the basis of race, color, religion, sex, national origin, age, disability, marital status, familial status, sexual orientation, veteran status or any other status protected by applicable law.{linebreak}Geo-Comm Corporation provides a drug-free working environment and is an Equal Opportunity Employer.

See more jobs at GeoComm

Visit GeoComm's website

# How do you apply? Go to www.geo-comm.com and go to the careers tab.
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Redox

US-only

Security Systems Engineer


Redox

US-only

infosec

engineer

infosec

engineer

US-only9mo

Apply


Stats (beta): 👁 977 views,✍️ 0 applied (0%)
{linebreak}Redox Security Engineers solve the most challenging technical security problems holding back healthcare technology. At Redox, security comes first as patients depend on our systems to be secure, available and reliable. The Security team partners with every team in our business to make that happen.{linebreak}{linebreak}As a cloud-centric, remote first company we’re looking for a person who will take on securing our highly distributed workforce and make it more secure than the traditional "corporate network." You will be responsible for technical leadership and the hands on building, operating and maintaining of Corporate Operations Security.{linebreak}{linebreak}The scope of this program includes securing the devices, networks and software we use everyday to build and operate Redox. You’ll also build monitoring and alerting systems for the Security team to identify and tackle threats and issues in real-time.{linebreak}{linebreak}Security Engineer (Corporate Operations) is a new, yet critical role at Redox. To be successful in this role you will need to have a vision for what this program should look like and design capabilities which scale as the team and company grows. You can be based anywhere in the US. (See “Work Anywhere” below){linebreak}{linebreak}{linebreak}* Be an active voice in our small, focused security team as the primary engineer responsible for Corporate Operations Security.{linebreak}{linebreak}* Define the secure baseline and secure configuration required for devices and networks at Redox.{linebreak}{linebreak}* Approach securing our company pragmatically, emphasizing with your end-users to understand their needs.{linebreak}{linebreak}* Be responsible for the security management program of all corporate devices. (Asset Management, MDM, Secure Configuration, Monitoring){linebreak}{linebreak}* Take the complex problems you’re working on each day and make them simple when explaining them to your stakeholders.{linebreak}{linebreak}* Build scalable systems which enforce and monitor device compliance with the secure baseline, rectify issues automatically and alert on problematic systems.{linebreak}{linebreak}* Support and build valuable training activities which uplift employee awareness and responses to security threats.{linebreak}{linebreak}* Monitor, report and seek to address security vulnerabilities in corporate devices or networks.{linebreak}{linebreak}* Maximize security impact and reduce risk while minimizing negative impact on our businesses velocity.{linebreak}{linebreak}* Build automated monitoring and alerting which identifies anomalous events.{linebreak}{linebreak}* Lead security incident response through engaging relevant engineers and management to provide support and guidance.{linebreak}{linebreak}* Mentor and guide engineering teams on best practices and preparation for potential compromises (logging etc){linebreak}{linebreak}* Build scalable alerting and monitoring systems using vendor solutions, open source and/or homegrown systems to detect breaches.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Required Skills{linebreak}{linebreak}{linebreak}* Knowledge of current threats and risks, how to detect them, build controls to stop them and training to create awareness of them.{linebreak}{linebreak}* Ability to distill complex security threats and risks into simple terms for non-security (and even non-technical) stakeholders.{linebreak}{linebreak}* Familiarity with MacOS operating system internals, knowledge and ideas of how to manage and secure these devices at scale.{linebreak}{linebreak}* Development experience sufficient to automate repetitive tasks and scale your impact.{linebreak}{linebreak}* Experience with log aggregation and monitoring tooling.{linebreak}{linebreak}* [Bonus Points] Experience with Jamfsoft (Casper Suite){linebreak}{linebreak}* [Bonus Points] Experience with Vulnerability Management Tooling{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We provide benefits that allow you to live life by your own design. Redox employees enjoy unmatched autonomy in their work and the support to live a balanced life. We trust you know what you need to be happy, at work and at home.{linebreak}{linebreak}{linebreak}* Tackle Challenging Problems Everyday. There is no roadmap for what we are building, so you’ll have the backing and support of talented engineers and security practitioners to make sure you have what you need to be successful.{linebreak}{linebreak}* Work Anywhere. (Within the US) We want to have the best people at Redox - no matter where you call home. All Redox employees are encouraged to live and work wherever they're happiest. All you need is power, wifi, and a computer and you’re good to go. We also run a number of co-located working spaces across many US cities if you prefer an office environment.{linebreak}{linebreak}* Flexible Time Off. Take a trip somewhere fun, stay home to recover from being sick, or have a staycation to unplug and recharge. Our best work happens when we feel fresh and inspired. We leave it up to you to decide when you need to take breaks and encourage you to make time for adventure and discovery.{linebreak}{linebreak}* Health & Dental from Day 1. Working in healthcare makes you understand all the challenges life can throw at you. Your health and dental coverage starts when you do to make sure you're always covered. We provide health and dental insurance for employees, spouses, domestic partners, and dependents, as well as life and disability insurance.{linebreak}{linebreak}* Parental Leave. As your family grows, it’s important that you’re there and have time to figure out what your family’s new norm is. You can take 12 weeks of paid time off within the first year of your new addition arriving. We know that they need you and we have your back.{linebreak}{linebreak}* Productivity Fund. We want you to be able to set up a workspace that allows you to perform at your very best. All Redox employees receive an annual discretionary stipend so you can select what helps you be productive.{linebreak}{linebreak}* 401k. We offer an optional, customizable and flexible 401k plan for you to plan for your financial future on your terms.{linebreak}{linebreak}{linebreak} {linebreak}{linebreak}#Location{linebreak}- US-only

See more jobs at Redox

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


GitHub

Security Operations Engineer


GitHub


infosec

ops

engineer

infosec

ops

engineer

9mo

Apply

Full Time: Security Operations Engineer at GitHub in Remote-US

See more jobs at GitHub

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Cloud Technology Partners

Cloud Security Architect


Cloud Technology Partners


infosec

architecture

cloud

infosec

architecture

cloud

10mo

Apply


Stats (beta): 👁 1,056 views,✍️ 0 applied (0%)
{linebreak}Cloud Technology Partners is growing! We are expanding our team and actively recruiting for our growing Security practice area. Here are a few reasons why to consider CTP for your next career move:{linebreak}{linebreak}{linebreak}* You want to be on the leading edge of a monumental change in IT{linebreak}{linebreak}* You enjoy venturing into new territory and think of yourself as a “builder”{linebreak}{linebreak}* You appreciate the balance of a dynamic and entrepreneurial culture led by an experienced management team{linebreak}{linebreak}* You want to contribute to the success of a growing company{linebreak}{linebreak}* You are committed to the success of clients and your colleagues{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We are the cloud application and infrastructure experts behind some of the world’s most advanced cloud computing initiatives. We’re not just learning a new way of doing things – we’re defining the best way to do them. We are innovative, disciplined, passionate and creative individuals who stay ahead of the technology curve and love what we do. We are building a great company by doing work that matters delivering best practices, solutions, and methodologies to accelerate our clients’ cloud transformations.{linebreak}{linebreak}Although we are headquartered in Boston, our clients are located across the US. We are open to candidates interested in either full-time employment or contractor status. We are flexible on location – you may work remotely from any US location, as long as you are able to travel to client locations at least 50%.{linebreak}{linebreak}As a Security Architect, you will: {linebreak}{linebreak}{linebreak}* Analyze and design security solutions for applications and infrastructure, and provide expertise and consulting to clients;{linebreak}{linebreak}* Identify and document information security risks and propose mitigating controls;{linebreak}{linebreak}* Will be responsible for understanding complex business IT needs, requirements, and projects scopes, with a focus on information security requirements;{linebreak}{linebreak}* Research, design, and develop new information security controls for clients;{linebreak}{linebreak}* Assess current IT environments and make recommendations to increase security;{linebreak}{linebreak}* Assist clients in troubleshooting and resolving information security issues;{linebreak}{linebreak}* Author project and support documentation and diagrams; and{linebreak}{linebreak}* Implement security solutions.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Desired Skills and Experience {linebreak}{linebreak}{linebreak}* Bachelor's Degree in Computer Science, other technical fields{linebreak}{linebreak}* 7+ years of hands-on experience with − Identity and Access Management solutions (Ping, Okta, OneLogin){linebreak}{linebreak}{linebreak}{linebreak}* Roles Based Access Control (RBAC){linebreak}{linebreak}* Identity Federation (OAuth, SAML 2.0, WS-FED){linebreak}{linebreak}* Privileged User Management solutions (Dome9, Centrify, CyberArc, NetIQ, Secret Store){linebreak}{linebreak}* Security Logging and Monitoring solutions (SIEM) (Trend Micro, Splunk, Alert Logic); and{linebreak}{linebreak}* Security Vulnerability testing solutions (Nessus, AWS, CIS and OWASP audits){linebreak}{linebreak}{linebreak}{linebreak}* Experience with security architecture frameworks in cloud-based environments (e.g., AWS, OpenStack, VMware, etc) is strongly preferred.{linebreak}{linebreak}* Knowledge of Cloud Security Alliance (CSA) best practices and guidelines.{linebreak}{linebreak}* Experience as a hands-on technical practitioner/specialist in a client facing role in mid-size or large enterprises and demonstrated client facing consulting skills, including building strong client relationships{linebreak}{linebreak}* Ability to design and implement reliable, scalable, high performing web-based solutions that meet the service levels associated with mission-critical Identity and Access Management based solutions.{linebreak}{linebreak}* Security certifications desired, such as CISSP, CISM or CISA; ability to earn certifications required{linebreak}{linebreak}* Understanding of identity and IAM processes, technologies, standards and industry best practices{linebreak}{linebreak}* Proven ability to thrive and succeed in a dynamic, fast growing, startup environment{linebreak}{linebreak}* Superior written and verbal communication skills as well as strong consultative selling, presentation and negotiation skills{linebreak}{linebreak}* Ability to thrive in ambiguous/pressure situations.{linebreak}{linebreak}* Team player{linebreak}{linebreak}* Must have the ability to travel and work onsite at client locations (typically 50%){linebreak}{linebreak}* A sense of humor a requirement!{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We offer competitive compensation (base, bonus, and equity) and a comprehensive benefits program that includes medical, dental, life, disability, 401(k) and a competitive paid time off program.

See more jobs at Cloud Technology Partners

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Olo

Senior Security Engineer Blue Team


Olo


infosec

senior

engineer

infosec

senior

engineer

10mo

Apply


Stats (beta): 👁 1,208 views,✍️ 0 applied (0%)
{linebreak}At Olo we develop an online food ordering platform used by many of the country’s largest restaurant chains, reaching millions of consumers. Chances are if you’ve ordered directly from a restaurant brand’s app or website, we’ve made that happen. Mobile ordering and payments is an exciting and active industry full of interesting players and yet still a relatively untapped market ripe for disruption. We’re quite up-front about the technical challenges our business faces. Running a platform with multiple white-labeled front-ends, that maintains real-time connections into thousands of restaurants’ POS systems, and coordinates complex transactions between these and other third parties (such as payment gateways and gift card providers) is not for the faint of heart!{linebreak}{linebreak}We take great pride in the reliability, security, and performance of our systems and services. We are looking for a talented security engineer with experience in a Blue Team role to help us fortify our defenses and protect the systems that enable hungry people to order their food quickly and securely.{linebreak}{linebreak}In the role of Senior Security Engineer, you will design and implement the security defenses that enable our systems to keep running while protecting the data of our clients and their customers. Specific responsibilities include:{linebreak}{linebreak}{linebreak}* Monitoring and defending attacks using security technologies that include advanced anti-malware solutions, network forensics, and detection solutions{linebreak}{linebreak}* Participating in Security Incident response investigations{linebreak}{linebreak}* Supporting AV and Endpoint technology and supporting deployments{linebreak}{linebreak}* Responding to alerts, events, and incidents per our specified procedures and policies{linebreak}{linebreak}* Resolving or escalating events and incidents{linebreak}{linebreak}* Interacting with IT operational teams to advise on, coordinate, and track mitigation and remediation activities{linebreak}{linebreak}* Conducting Blue Team exercises and Computer Network Defense drills that enable us to evaluate and improve processes related to threat detection, incident response, patching, remediation, and user training{linebreak}{linebreak}* Maintaining centralized patch and vulnerability management solutions to ensure endpoints are compliant with security guidelines{linebreak}{linebreak}* Performing endpoint management to provide patching and task automation of servers and desktops to maintain a secure and compliant environment.{linebreak}{linebreak}* Performing daily operational work that includes security monitoring, addressing security tickets, security data/logs, and Forensic analysis, host configuration audits, firewall rule reviews, and other security tasks.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}This is a full-time position reporting into our Operations Team. Any engineer may work at Olo’s headquarters in New York City’s Financial District or remotely from anywhere in the U.S. In fact, more than half of our engineering team is remote!{linebreak}{linebreak}Desired Experience{linebreak}{linebreak}{linebreak}* Previous Blue Team experience{linebreak}{linebreak}* Proven experience developing and leading remediation/ mitigation activities, and providing status updates and reports.  Emphasis on remediation plans and strategies.{linebreak}{linebreak}* Experience with Windows Desktop, Windows Server and Linux operating systems and system administration – specifically with regard to patching and compliance{linebreak}{linebreak}* Experience with networking hardware (routers, switches, firewalls) and configuration – specifically with regard to patching and compliance{linebreak}{linebreak}* Understanding of networking concepts such as DMZs, subnets, VLANs, private IP addressing and NAT{linebreak}{linebreak}* Technical knowledge of information technology and cyber security standards and issues{linebreak}{linebreak}* Strong working knowledge of security-relevant data, including network protocols, ports and common services, such as TCP/IP network protocols and application layer protocols (e.g. HTTP/S, DNS, FTP, SMTP, Active Directory etc.){linebreak}{linebreak}* Past experience deploying and maintaining security technologies such as Symantec DLP, Palo Alto, Check Point, Carbon Black, CrowdStrike, Alert Logic, Sophos{linebreak}{linebreak}* Security experience in an AWS operational environment{linebreak}{linebreak}* CISSP certification{linebreak}{linebreak}* Strong English writing and verbal communication skills{linebreak}{linebreak}* Legal right to work in the U.S.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About Olo{linebreak}{linebreak}Olo is the on-demand interface for the restaurant industry, powering digital ordering and delivery for over 200 restaurant brands. Olo’s enterprise-grade software powers every stage of the digital restaurant transaction, from fully-branded user interfaces to the back-of-house order management features that keep the kitchen running smoothly. Orders from Olo are injected seamlessly into existing restaurant systems to help brands capture demand from on-demand channels such as branded website and apps, third-party marketplaces, social media channels, and personal assistant devices like the Amazon Echo. Olo is a pioneer in the industry, beginning with text message ordering on mobile feature phones in 2005. Today, millions of consumers use Olo to order ahead (SKIP THE LINE®) or get meals delivered from the restaurants they love. Customers include Applebee’s, Chili’s, Chipotle, Denny’s, Five Guys Burgers & Fries, Jamba Juice, Noodles & Company, Red Robin, Shake Shack, sweetgreen, Wingstop, and more.{linebreak}{linebreak}Olo is located at 26 Broadway in the historic Standard Oil Building, the former home of John D. Rockefeller.  We offer great benefits, such as 20 days of Paid Time Off, fully paid health, dental and vision care premiums, stock options, a generous parental leave plan, and perks like FitBits, rotating craft beers on tap in our kitchen, and food events featuring our clients' menu items (now you know why we give out FitBits!). Check out our culture map: https://www.olo.com/images/culture.jpg.{linebreak}{linebreak}We encourage you to apply!{linebreak}{linebreak}At Olo, we know a diverse and inclusive team not only makes our products better, but our workplace better. Many groups are consistently underrepresented across the tech sector and we are fully committed in doing our part to move the needle.{linebreak}{linebreak}Olo is an equal opportunity employer and diversity is highly valued at our company. All applicants receive consideration for employment. We do not discriminate on the basis of race, religion, color, national origin, gender identity, sexual orientation, pregnancy, age, marital status, veteran status, or disability status.{linebreak}{linebreak}If you like what you read, hear, and/or know about Olo, and want to be a part of our team, please do not hesitate to apply! We are excited to hear from you!

See more jobs at Olo

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Doximity is transforming the healthcare industry. Our mission is to help doctors save time so they can provide better care for patients.{linebreak}{linebreak}We value diversity — in backgrounds and in experiences. Healthcare is a universal concern, and we need people from all backgrounds to help build the future of healthcare.{linebreak}{linebreak}This position is for an experienced DevOps engineer to own Security efforts for our entire application stack and join our 8 person DevOps team. We’re looking for someone with a strong track record in building infrastructure, maintaining high level of uptime and optimal security. You will be supporting and building products alongside our 50+ person engineering team used by hundreds of thousands of people.{linebreak}{linebreak}**How you’ll make an impact:**{linebreak}{linebreak}* Develop, schedule, and execute automated security audits on infrastructure using industry standard security frameworks and tooling.{linebreak}* Write penetration tests for applications and services.{linebreak}* Periodically audit and rotate access credentials.{linebreak}* Document current and future security procedures and policies in the wiki.{linebreak}* Lead security/policy related audits such as SOC2 Type II (annual renewal).{linebreak}* Work with sales and client services teams to answer infrastructure related security questions and concerns that clients inquire about.{linebreak}* Remediate and write post-mortem reports on security-related issues.{linebreak}* Active involvement in design, implementation, and maintenance of the development, staging, and production infrastructure security.{linebreak}* Work on automating tasks using Jenkins.{linebreak}* Troubleshoot system issues (such as high-load, memory, CPU usage, etc.) and come up with temporary/long-term solutions based on the root cause.{linebreak}* Work with developers to deploy applications ready for production (Terraform, Consul, Vault, Upstart, NGINX, Sensu). We believe in infrastructure as code and follow it.{linebreak}* Write Chef cookbooks (using "Berkshelf Way") to automate configuration management.{linebreak}* Participate in a 1-week on 7-week off, 24/7 on-call rotation.{linebreak}* Hands-on maintenance on our Ruby on Rails and Go (Golang) applications.{linebreak}* Troubleshoot issues across the whole stack: hardware, software, and network.{linebreak}{linebreak}**What we’re looking for:**{linebreak}{linebreak}* Minimum of 5 years of Linux/UNIX systems engineer & administrator experience.{linebreak}* Minimum of 5 years of relevant web application security experience{linebreak}* Extensive AWS experience{linebreak}* Experience writing application security penetration tests with an open source framework.{linebreak}* Automation experience with configuration management tools such as Chef, Ansible, or Puppet.{linebreak}* Intermediate to advanced experience administering and securing an RDB (MySQL or Postgres a plus){linebreak}* Proficient in bash shell scripting (sed + awk) and one of Ruby or Python.{linebreak}* Experience automating application deployments with Capistrano or Jenkins.{linebreak}* Ability to work in a proactive manner and manage your own queue.{linebreak}* Experience with Hashicorp tools, Neo4j, Elasticsearch, Kibana, Grafana is a big plus.{linebreak}{linebreak}**About Doximity**{linebreak}{linebreak}We’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $2.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunity for you to make an impact—join us!{linebreak}{linebreak}*Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.* {linebreak}{linebreak}# Requirements{linebreak}Use apply button

See more jobs at Doximity

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Teramind

verified

Product Marketing Manager


Teramind

verified

product marketing

marketing manager

saas

startup

product marketing

marketing manager

saas

startup

11mo

Apply


Stats (beta): 👁 1,401 views,✍️ 0 applied (0%)
Teramind is looking for a world class product marketing manager to take on the challenge of revamping its collateral, web site and marketing campaign strategy. If you like working in a highly distributed, fast paced and fun environment with super smart people, and have prior experience in security SaaS offerings, you are a perfect fit!

See more jobs at Teramind

Visit Teramind's website

# How do you apply? Send a link to your LinkedIn profile to [email protected] and quote "Product Marketing Manager"
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Center for Internet Security

Senior Application Developer


Center for Internet Security


dev

senior

infosec

digital nomad

dev

senior

infosec

digital nomad

11mo

Apply

{linebreak}The Senior Application Developer is assigned to the Security Best Practices team at the Center for Internet Security. Reporting to the Benchmarks Team Manager, the Sr. Application Developer will partner with other cybersecurity team members to promote the CIS mission and help support our growth. As an integral member of the Benchmarks Team, you will be responsible for the creation of machine readable content from our Benchmark recommendations document. This senior role requires a strong computer science background with an emphasis in Ruby with a DevOps mindset.{linebreak}{linebreak}Tasks and Responsibilities{linebreak}{linebreak}{linebreak}* Develop and maintain new and existing software applications and scripts.{linebreak}{linebreak}* Maintain existing code and debug when necessary.{linebreak}{linebreak}* Create and maintain documentation of all applications.{linebreak}{linebreak}* Maintain code in an appropriate repository.{linebreak}{linebreak}* Lead Software Quality Assurance (SQA) efforts through the use of unit testing and integration testing and scheduled roll out of new/updated applications.{linebreak}{linebreak}* Other tasks and responsibilities as assigned.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Qualifications and Experience{linebreak}{linebreak}{linebreak}* Bachelor’s Degree from an accredited college in Computer Science or related field. *{linebreak}{linebreak}* 5+ years of relevant work experience.{linebreak}{linebreak}* Excellent working knowledge of Ruby development and scripting.{linebreak}{linebreak}* Thorough documentation skills for both code and end user.{linebreak}{linebreak}* Proficiency in HTML.{linebreak}{linebreak}* Must be authorized to work in the United States.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}*Additional years of relevant experience or a combination of an Associate’s degree or equivalent and relevant experience may be substituted for the Bachelor’s degree.{linebreak}{linebreak}Preferred:{linebreak}{linebreak}{linebreak}* Experience in agile development.{linebreak}{linebreak}* Strong understanding of PHP or modern JavaScript client frameworks.{linebreak}{linebreak}* Experience within the security automation domain, including expertise in Security Content{linebreak}Automation Protocol (SCAP)-related schemas, such as Open Vulnerability and Assessment Language (OVAL), Extensible Configuration Checklist Description Format (XCCDF), Common Configuration Enumeration (CCE) and Common Platform Enumeration (CPE).{linebreak}{linebreak}* Experience with XML.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Core Competencies:{linebreak}{linebreak}{linebreak}* Drive innovation by analyzing and interpreting data to test and inform a new initiative or approach.{linebreak}{linebreak}* Accountable for successful completion of multiple, individual projects simultaneously.{linebreak}{linebreak}* Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.{linebreak}{linebreak}* Manage change and demonstrate adaptability by embracing change and adjusting priorities or processes and approach as needs dictate.{linebreak}{linebreak}* Take responsibility for successes and failures related to individual and team-based project work assignments; actively presents suggestions for solution(s), if objectives not met.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}The CIS Offer{linebreak}{linebreak}{linebreak}* A culture that is engaging, fun and energetic{linebreak}{linebreak}* An organization that supports Work/Life balance{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Comprehensive benefits package including medical, dental, vision and life insurance{linebreak}{linebreak}* 401K plan with company match{linebreak}{linebreak}* Bonding and military leave{linebreak}{linebreak}* Paid time off upon date of hire{linebreak}{linebreak}* Tuition and certification reimbursement{linebreak}{linebreak}* Relocation Assistance{linebreak}{linebreak}* On-site wellness programs{linebreak}{linebreak}* Community involvement opportunities{linebreak}{linebreak}* An environment that promotes growth and professional development including our award-winning training opportunities{linebreak}{linebreak}{linebreak}

See more jobs at Center for Internet Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Retail Zipline

Security Engineer For Rails Enterprise Saas


Retail Zipline


infosec

saas

ruby

engineer

infosec

saas

ruby

engineer

11mo

Apply

{linebreak}Retailers use archaic, old systems that don't work (think fax machines and voicemails). We're replacing the core operational processes with a modern platform that our customers love. Help us transform a $4.4 trillion industry and improve the way millions of people work. Major retailers like Gap, Nike, LEGO, and Old Navy are already using Zipline every day, but there is so much more to do!{linebreak}{linebreak}We are looking for our first dedicated Cloud Security Engineer to join our team as the surface area of our product and infrastructure continue to scale and keep up with rapid customer growth.{linebreak}{linebreak}“I think I just shed a tear. This is great!” – One of our Fortune 100 customers{linebreak}{linebreak}Here are some projects we're excited for you to work on: {linebreak}- Security strategies such as static analysis, alerting, logging, and monitoring {linebreak}- Interface with the rest of engineering and product teams by building common libraries and processes for all of engineering to leverage {linebreak}- Scoping and managing third party assessment and compliance vendors {linebreak}- Security-oriented feature development {linebreak}- Collaboration with infrastructure team on security-oriented infrastructure topics {linebreak}- Evangelize security best practices for product and engineering teams{linebreak}{linebreak}What we look for: {linebreak}- You have significant relevant production experience with large scale web applications {linebreak}- You have great written and verbal communication skills. {linebreak}- You prefer taking projects from inception to completion, and are outcome oriented. {linebreak}- You have 3+ years experience in web application security {linebreak}- You have a strong understanding of security architecture, risk analysis, network security, identity management, and security monitoring. {linebreak}- You proactive with communication and have no problem managing your time as a remote employee. {linebreak}- You are proud of your craft, and enjoy and value clean code that scales to keep large teams productive.{linebreak}{linebreak}Bonus points: {linebreak}- CISSP certified {linebreak}- Scaled security for another cloud startup {linebreak}- Experience with retailers

See more jobs at Retail Zipline

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Center for Internet Security

Software Engineer


Center for Internet Security


dev

engineer

infosec

digital nomad

dev

engineer

infosec

digital nomad

12mo

Apply


Stats (beta): 👁 1,022 views,✍️ 0 applied (0%)
{linebreak}About the Job{linebreak}{linebreak}The Software Engineer is assigned to the Security Best Practices Division at the Center for Internet Security. Reporting to the Development Team Leader – CIS-CAT, the Software Engineer will partner with other cybersecurity team members to promote the CIS mission and help support our growth. The primary purpose of this position is development, maintenance, and coordination of the ongoing release (monthly, and as-needed) of our security configuration assessment software offerings (CIS-CAT Pro).{linebreak}{linebreak}Here’s a Snapshot of your Tasks and Responsibilities{linebreak}{linebreak}{linebreak}* Contribute to the development of new software applications and to the maintenance of existing applications.{linebreak}{linebreak}* Create and maintain documentation of application features, user guide updates and source code.{linebreak}{linebreak}* Ensure software quality assurance throughout the software development lifecycle, through the use of unit testing and integration testing.{linebreak}{linebreak}* Application support activities, such as working with operations staff on member support requests and new member orientation presentations.{linebreak}{linebreak}* Collaborate with other SCA team members as needed.{linebreak}{linebreak}* Other tasks and responsibilities as assigned.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What are we looking for in you?{linebreak}{linebreak}Required Qualifications:{linebreak}{linebreak}{linebreak}* Bachelor’s degree in Computer Science or Information Technology at an accredited college or equivalent work experience.{linebreak}{linebreak}* 3+ years’ experience developing data-driven Java (or other JVM language) applications, including web-based and standalone desktop/command-line applications.{linebreak}{linebreak}* Proficiency in Java and Groovy, or JVM-based programming languages.{linebreak}Experience parsing and processing large XML data sets.{linebreak}{linebreak}* Must be authorized to work in the United States.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}*Additional years of relevant experience or a combination of an Associate’s degree or equivalent and relevant experience may be substituted for the Bachelor’s degree.{linebreak}{linebreak}Preferred Qualifications:{linebreak}{linebreak}{linebreak}* 5+ years’ experience developing data-driven Java (or other JVM language) applications, including web-based and standalone desktop/command-line applications.{linebreak}{linebreak}* Demonstrated experience using multiple programming languages is preferable; languages such as Groovy, C#, and Python, PowerShell, Windows API’s, Linux commands and shell scripting, XSLT, JSON, and database management systems.{linebreak}{linebreak}* Front-end development experience using Bootstrap, JavaScript, and/or JQuery.{linebreak}{linebreak}* Experience with Security Automation standards, such as the Open Vulnerability and Assessment Language (OVAL), Extensible Configuration Checklist Description Format (XCCDF), Common Platform Enumerations (CPE), Common Vulnerabilities and Exposures (CVE), or the Common Vulnerability Scoring System (CVSS) are strongly encouraged.{linebreak}{linebreak}* Operational experience in an Agile/Scrum development team.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Core Competencies:{linebreak}{linebreak}{linebreak}* Drive innovation by analyzing and interpreting data to test and inform a new initiative or approach.{linebreak}{linebreak}* Accountable for successful completion of multiple, individual projects simultaneously.{linebreak}{linebreak}* Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.{linebreak}{linebreak}* Manage change and demonstrate adaptability by embracing change and adjusting priorities or processes and approach as needs dictate.{linebreak}{linebreak}* Take responsibility for successes and failures related to individual and team-based project work assignments; actively presents suggestions for solution(s), if objectives not met.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}The CIS Offer{linebreak}{linebreak}{linebreak}* A culture that is engaging, fun and energetic{linebreak}{linebreak}* An organization that supports Work/Life balance{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Comprehensive benefits package including medical, dental, vision and life insurance{linebreak}{linebreak}* 401K plan with company match{linebreak}{linebreak}* Bonding and military leave{linebreak}{linebreak}* Paid time off upon date of hire{linebreak}{linebreak}* Tuition and certification reimbursement{linebreak}{linebreak}* Relocation assistance{linebreak}{linebreak}* On-site wellness programs{linebreak}{linebreak}* Community involvement opportunities{linebreak}{linebreak}* An environment that promotes growth and professional development including our award-winning training opportunities{linebreak}{linebreak}{linebreak}

See more jobs at Center for Internet Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


SUSE

Senior Security Engineer


SUSE


infosec

senior

engineer

infosec

senior

engineer

12mo

Apply

Full Time: Senior Security Engineer at SUSE in Nuremberg, Germany or remote office

See more jobs at SUSE

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Defiant

Security Analyst ­ Forensics Remediation


Defiant


infosec

analyst

infosec

analyst

12mo

Apply


Stats (beta): 👁 1,223 views,✍️ 0 applied (0%)
{linebreak}Defiant is a fast-moving cybersecurity company that delivers the best threat protection for WordPress sites.{linebreak}{linebreak}We’re a 100% remote team, nimble, self managing and work in a relaxed atmosphere with a sense of humor. Rather than working for a mega-corp, you will be working in a company where your work has real impact in the fun, high-growth stages of our evolution.{linebreak}{linebreak}We are looking for security analysts to join our forensics team. You will assist our customers to investigate how their site was hacked and to repair their site and remove all traces of the intrusion. In addition to this you will also collect evidence from intrusions that will help improve our threat detection. You will need to determine how the intrusion occurred and then collect all IOC’s (indicators of compromise) and share this data with our product team in a structured way.{linebreak}{linebreak}General requirements:{linebreak}{linebreak} You must be highly technical and be comfortable with a wide range of open source tools.{linebreak}{linebreak} Excellent written and verbal communication skills.{linebreak}{linebreak} You must work well in a team.{linebreak}{linebreak} You must be nimble, be able to come up with creative solutions to challenging problems and must have a mature approach to problem solving.{linebreak}{linebreak} Attention to detail.{linebreak}{linebreak}Note: Applicants who can work weekends will be given priority consideration.{linebreak}{linebreak}We have the highest star rating for any WordPress plugin in history and we pride ourselves on providing an excellent product with great customer service that helps secure small and large production websites. If you're passionate about information security and would like to help secure the web, this is your dream job. We take our team's family time seriously and don't ask you to work long hours if we can avoid it (we almost always can). Our entire team works remotely using Slack for casual interaction ­so you can live practically anywhere in the world as long as you have an internet connection. Wordfence is high growth, but we are not a startup. The company is still controlled by the founders, we are profitable and have been for many years. So you will enjoy the rush of high growth but you won't have to risk working for a company that is controlled by venture capitalists or may not be here tomorrow.

See more jobs at Defiant

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Federated Wireless

Cloud Security Engineer


Federated Wireless


infosec

cloud

engineer

infosec

cloud

engineer

1yr

Apply

{linebreak}Federated Wireless is a dynamic, fast-paced, cutting-edge software company that is leading the wireless industry through the shared spectrum revolution.{linebreak}{linebreak}Federated Wireless is disaggregating the wireless networks to allow for new disruptive models for fast, low-cost cloud enabled wireless connectivity solutions. We are taking advantage of the latest cloud services and implementing advanced algorithms to fully automate service creative and delivery. We are looking for leaders who want to revolutionize the way wireless networks are built.{linebreak}{linebreak}Federated Wireless is led by CEO Iyad Tarazi and a team of industry veterans who continue to build on this heritage, pioneering new territory in the commercialization of shared spectrum.{linebreak}{linebreak}The Role:{linebreak}{linebreak}Federated Wireless is seeking a Cloud Security Engineer to monitor and proactively manage the security of Federated Wireless’ network and application services. The engineer is expected to be able to independently design, develop, deploy and maintain security management technologies in all phases of an agile service development and deployment life cycle. She or he will be required to design components or sub-components, and then follow through with the integration, and testing of all components. Self-motivation, teamwork and experience working in a fast paced agile environment are highly desired.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}{linebreak}* Designs, integrates, and tests a suite of tools for security management of multi-tenant private and public cloud application services.{linebreak}{linebreak}* Recommends configuration changes to improve the performance, usability, and value of cyber analysis tools.{linebreak}{linebreak}* Assists with product studies, performs requirements analysis, and develops software architectures to meet requirements{linebreak}{linebreak}* Creates technical proposals and white papers, writes functional and design specifications{linebreak}{linebreak}* Measure compliance against standards{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Experience in the following areas is required:{linebreak}{linebreak}{linebreak}* 3-5 years experience (preferred) with security management of cloud based services (SaaS) in a fast-paced Agile environment.{linebreak}{linebreak}* Experience architecting, deploying and managing a suite of security management tools, including tools for: WAF, SIEM, log management, DDOS protection, Pen-testing, vulnerability management, automated code analysis, and anti-malware.{linebreak}{linebreak}* Hands-on experience with security management of virtual machines, containers, and applications.{linebreak}{linebreak}* Experience with Git source code control{linebreak}{linebreak}* Excellent oral and written communication skills{linebreak}{linebreak}* Strong knowledge of public key cryptography, web services SSO strategies, CVSS scoring{linebreak}{linebreak}{linebreak}{linebreak}{linebreak} Experience in the following area is desired:{linebreak}{linebreak}{linebreak}* Experience with Agile development and participating in CI/CD pipelines{linebreak}{linebreak}* Experience with automation and dev-ops technologies (such as puppet, chef, ansible, etc){linebreak}{linebreak}* Strong knowledge of open-source libraries/packages{linebreak}{linebreak}{linebreak}{linebreak}{linebreak} Location:{linebreak}{linebreak}{linebreak}* Open to any of Federated Wireless' office locations in Arlington, VA; Boston, MA; or San Jose, California{linebreak}{linebreak}* Travel will be required in this position, domestically or internationally as deemed necessary to the growth and expansion of the Company.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak} Federated Wireless is committed to providing equal opportunity for all employees and applicants without regard to race, color, religion, sex, sexual preference/orientation, gender identity or expression, age, marital status, national origin, physical or mental disability, veteran status, or any other protected classification under applicable law.

See more jobs at Federated Wireless

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


EnBW Energie Baden-Württemberg AG

Cloud Security Architect


EnBW Energie Baden-Württemberg AG


infosec

architecture

cloud

infosec

architecture

cloud

1yr

Apply

{linebreak}Ihre Aufgaben{linebreak}{linebreak}{linebreak}* Sie entwickeln und auditieren Sicherheitsarchitekturen für Cloud-Lösungen und Ihre Mitarbeit ist in agilen Softwareentwicklungsprojekten gefragt{linebreak}{linebreak}* Sie definieren und implementieren die Security-Strategie, wozu Sie auch die konzernweiten Security-Vorgaben für Cloud-Lösungen formulieren und einführen{linebreak}{linebreak}* Durch Ihr Adlerauge bei technischen Sicherheitsanalysen leiten Sie die Gefährdungslage her{linebreak}{linebreak}* Bei Projekten im Umfeld IaaS, PaaS und SaaS sind Sie kompetenter Ansprechpartner{linebreak}{linebreak}* Sie sind operatives Mitglied im Computer Emergency Response Team (CERT) der EnBW{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Ihr Profil{linebreak}{linebreak}{linebreak}* Sie verfügen über ein erfolgreich abgeschlossenes (Fach-) Hochschulstudium, bspw. der Informatik oder Wirtschaftsinformatik. Viel wichtiger ist uns, dass Sie mehrjährige Erfahrung in Web-/Appentwicklung, Enterprise Architekturmanagement oder Securitymanagement haben{linebreak}{linebreak}* Ihre Kenntnisse in IT-Sicherheitskonzepten, Entwicklung auf AWS, Google und Microsoft Azure Plattformen sind exzellent{linebreak}{linebreak}* Ihr Spaß an der Zusammenarbeit in crossfunktionalen Teams begeistert auch andere für Security{linebreak}{linebreak}* Sie kennen spezifische Normen und Standards (ISO/IEC 27001, BSI) und arbeiten analytisch und strukturiert{linebreak}{linebreak}* Sie riechen die IT-Risiken von IT-Systemen und Software und wenden adäquate Verfahren (funktional und wirtschaftlich) an{linebreak}{linebreak}{linebreak}

See more jobs at EnBW Energie Baden-Württemberg AG

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Wikimedia Foundation

Information Security Analyst


Wikimedia Foundation


infosec

analyst

infosec

analyst

1yr

Apply

{linebreak}Summary{linebreak}{linebreak}We are looking for a smart security practitioner with an interest in large scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly, and volunteers can add arbitrary JavaScript to our site. That should both frighten and thrill you.{linebreak}{linebreak}Privacy is one of the core values of the Wikimedia Foundation and you will be joining the team responsible for providing technical and governance security solutions to ensure the confidentiality, integrity and availability of Wikimedia applications.  This is your opportunity to participate in and provide security and privacy solutions so together we can create a world in which everyone can freely share in the sum of all knowledge.  {linebreak}{linebreak}This is what you will be doing:{linebreak}{linebreak}{linebreak}* Review security controls, policies and procedures and provide recommendations for the adaption of new technologies or policies.  {linebreak}{linebreak}* Conduct internal and external security audits{linebreak}{linebreak}* Provide support for security incidents or events{linebreak}{linebreak}* Evaluate current organizational risk and threat profile{linebreak}{linebreak}* Identify improvement areas and provide organization wide security awareness training.  {linebreak}{linebreak}* Work with teams to ensure they make safe, compliant, design and architectural decisions{linebreak}{linebreak}* Participate in privacy initiatives{linebreak}{linebreak}* Participate in operational security initiatives{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}You’ll need these skills and experience:{linebreak}{linebreak}{linebreak}* 5+ years experience as part of an Information Security team{linebreak}{linebreak}* CISSP/GIAC{linebreak}{linebreak}* Experience in policy creation and enforcement{linebreak}{linebreak}* Experience with Threat Modeling and Risk Assessments{linebreak}{linebreak}* Experience in Incident Response{linebreak}{linebreak}* Bachelor’s degree in CS or related field or the equivalent in work related experience{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Pluses{linebreak}{linebreak}{linebreak}* Wikimedia community experience{linebreak}{linebreak}* Interest in/passion for all things open source{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}The Wikimedia Foundation is... {linebreak}{linebreak}{linebreak}...the nonprofit organization that supports Wikipedia and the other Wikimedia free knowledge projects. Our vision is a world in which every single human can freely share in the sum of all knowledge. We believe that everyone has the potential to contribute something to our shared knowledge, and that everyone should be able to access that knowledge, free of interference. We host the Wikimedia projects, build software experiences for reading, contributing, and sharing Wikimedia content, support the volunteer communities and partners who make Wikimedia possible, and advocate for policies that enable Wikimedia and free knowledge to thrive. The Wikimedia Foundation is a charitable, not-for-profit organization that relies on donations. We receive financial support from millions of individuals around the world, with an average donation of about $15. We also receive donations through institutional grants and gifts. The Wikimedia Foundation is a United States 501(c)(3) tax-exempt organization with offices in San Francisco, California, USA.{linebreak}{linebreak}The Wikimedia Foundation is an equal opportunity employer, and we encourage people with a diverse range of backgrounds to apply{linebreak}{linebreak}{linebreak}{linebreak}Benefits & Perks *{linebreak}{linebreak}{linebreak}* Fully paid medical, dental and vision coverage for employees and their eligible families (yes, fully paid premiums!){linebreak}{linebreak}* The Wellness Program provides reimbursement for mind, body and soul activities such as fitness memberships, baby sitting, continuing education and much more{linebreak}{linebreak}* The 401(k) retirement plan offers matched contributions at 4% of annual salary{linebreak}{linebreak}* Flexible and generous time off - vacation, sick and volunteer days, plus 19 paid holidays - including the last week of the year.{linebreak}{linebreak}* Family friendly! 100% paid new parent leave for seven weeks plus an additional five weeks for pregnancy, flexible options to phase back in after leave, fully equipped lactation room.{linebreak}{linebreak}* For those emergency moments - long and short term disability, life insurance (2x salary) and an employee assistance program{linebreak}{linebreak}* Pre-tax savings plans for health care, child care, elder care, public transportation and parking expenses{linebreak}{linebreak}* Telecommuting and flexible work schedules available{linebreak}{linebreak}* Appropriate fuel for thinking and coding (aka, a pantry full of treats) and monthly massages to help staff relax{linebreak}{linebreak}* Great colleagues - diverse staff and contractors speaking dozens of languages from around the world, fantastic intellectual discourse, mission-driven and intensely passionate people{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* for benefits eligible staff, benefits may vary by location{linebreak}{linebreak}More information{linebreak}{linebreak}WMF{linebreak}{linebreak}Blog{linebreak}{linebreak}Annual Report - 2017{linebreak}{linebreak}Wikimedia 2030{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at Wikimedia Foundation

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Elastic

Security Operations Area Lead


Elastic


infosec

exec

ops

infosec

exec

ops

1yr

Apply


Stats (beta): 👁 1,181 views,✍️ 0 applied (0%)
{linebreak}At Elastic, we have a simple goal: to solve the world's data problems with products that delight and inspire. As the company behind the popular open source projects — Elasticsearch, Kibana, Logstash, and Beats — we help people around the world do great things with their data. From stock quotes to Twitter streams, Apache logs to WordPress blogs, our products are extending what's possible with data, delivering on the promise that good things come from connecting the dots. We unite Elasticians across 34 countries (and counting!), 18 timezones and 30 different languages into one coherent team, while the broader community spans across over 100 countries.{linebreak}{linebreak}We are looking for someone to lead a team of engineers focused on implementing, improving and maintaining security controls for Elastic Cloud. You will be acting as a partner for the security of the Elastic Cloud, and assume ownership of architectural decisions, organizing cross-team efforts and being a security SME for Elastic’s SaaS. Does this sound like something you are interested in?{linebreak}{linebreak}What You Will be Doing:{linebreak}{linebreak}{linebreak}* Leading the Security Engineers on the Elastic Cloud team{linebreak}{linebreak}* Owning of Compliance items agenda for Elastic Cloud (SOC-2, ISO 27k, HIPAA){linebreak}{linebreak}* Organizing cross-team efforts{linebreak}{linebreak}* Maintaining a tight collaboration with Infosec and SecEng teams{linebreak}{linebreak}* Collaborating with the Cloud team Lead{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What You Bring Along:{linebreak}{linebreak}{linebreak}* Experience in leading engineering teams{linebreak}{linebreak}* Architect level experience in public cloud provider environments{linebreak}{linebreak}* A Deep understanding of Linux systems hardening, containerization, and network perimeter controls.{linebreak}{linebreak}* The Ability to drive decisions and being hands-on{linebreak}{linebreak}* Experience with compliance (SOC-2, PCI, ISO 27k, GDPR){linebreak}{linebreak}* Excellent verbal and written interpersonal skills, a phenomenal teammate with strong analytical, problem solving, debugging and troubleshooting skills{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Bonus Points:{linebreak}{linebreak}{linebreak}* Experience in running or participating in a Blue team{linebreak}{linebreak}* If you are a leader in Security within SaaS products{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Additional Information:{linebreak}{linebreak}We're looking to hire team members invested in realizing the goal of making real-time data exploration easy and available to anyone. As a distributed company, we believe that diversity drives our vibe! Whether you're looking to launch a new career or grow an existing one, Elastic is the type of company where you can balance great work with great life.{linebreak}{linebreak}{linebreak}* Competitive pay based on the work you do here and not your previous salary{linebreak}{linebreak}* Stock options{linebreak}{linebreak}* Global minimum of 16 weeks of paid parental leave (moms & dads){linebreak}{linebreak}* Generous vacation time and one week of volunteer time off{linebreak}{linebreak}* An environment in which you can balance great work with a great life{linebreak}{linebreak}* Your age is only a number. It doesn't matter if you're just out of college or your children are; we need you for what you can do.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Elastic is an Equal Employment employer committed to the principles of equal employment opportunity and affirmative action for all applicants and employees. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status or any other basis protected by federal, state or local law, ordinance or regulation. Elastic also makes reasonable accommodations for disabled employees consistent with applicable law.

See more jobs at Elastic

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Numbrs Personal Finance AG

Security Engineer


Numbrs Personal Finance AG


golang

infosec

engineer

golang

infosec

engineer

1yr
Zürich, Switzerland - Responsibilities include but are not limited to reviewing designs, code, performing in-depth security assessments of mobile apps, distributed backend systems and internal IT infrastructure; developing custom security tools; documenting the infrastructure, poli...

See more jobs at Numbrs Personal Finance AG

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


InVisionApp

Senior Security DevOps Engineer


InVisionApp


infosec

devops

senior

engineer

infosec

devops

senior

engineer

1yr

Apply


Stats (beta): 👁 1,186 views,✍️ 0 applied (0%)
As a Security SRE, you will play a critical role in effectively maintaining and improving the security of our organization’s systems, platform and infrastructure. You will be responsible for monitoring and managing the security in our cutting edge containerized environments using Docker, Kubernetes and CoreOS. You will also work with the security team to manage traditional system and network security tools such as web application firewalls, DDoS service, IPS and more designed to protect our customers and business against malicious external attacks. You will have the opportunity to influence and design current strategies and procedures for securing our environments. You will directly influence the application configuration, deployment process of our application and create tools to improve our processes, monitoring and application infrastructure, all in a container centric environment!{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Work across engineering teams to establish and enforce secure practices and procedures in the building of environments and deployment of code{linebreak}{linebreak}* Implementation, configuration and management of cutting edge container security tooling of hosts and nodes{linebreak}{linebreak}* Perform vulnerability identification and remediation including patch management for systems and networks{linebreak}{linebreak}* Management of AWS Security including best practices, security groups, user access{linebreak}{linebreak}* Management and configuration of security tooling including web application firewall, DDoS service, IPS, IDS, FIM, AV and more{linebreak}{linebreak}* Remediation of reported infrastructure or platform vulnerabilities, exploits and threats{linebreak}{linebreak}* Management of user access, roles and permissions to critical services{linebreak}{linebreak}* System hardening according to industry best practices{linebreak}{linebreak}* Cross-team work with infrastructure and platform teams{linebreak}{linebreak}{linebreak}{linebreak}Preferred skills/tools:{linebreak}{linebreak}{linebreak}* Containerization / Kubernetes{linebreak}{linebreak}* CoreOS / Alpine / Ubuntu{linebreak}{linebreak}* Patch Management{linebreak}{linebreak}* AWS environment builds / security groups{linebreak}{linebreak}* Github{linebreak}{linebreak}* WAF, IDS, IPS, FIM, AV, VPN{linebreak}{linebreak}{linebreak}{linebreak}Preferred Certifications:{linebreak}{linebreak}{linebreak}* CISSP{linebreak}{linebreak}* SSCP{linebreak}{linebreak}* CCSP{linebreak}{linebreak}* SANS Certs{linebreak}{linebreak}{linebreak}

See more jobs at InVisionApp

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Auth0

Security Engineering Manager


Auth0


infosec

exec

engineer

infosec

exec

engineer

1yr

Apply

{linebreak}Auth0 gives companies simple, powerful and developer friendly building blocks so they can free up resources to focus on innovation. We strive to be the identity platform of choice of developers and Enterprises. We take our culture very seriously and are looking for people who are drawn to both our mission and our culture.{linebreak}{linebreak}We are a security company and Auth0's Security Team is in the privilege position of supporting a security first culture for a company that wants to make the internet safer.{linebreak}{linebreak}The Cloud Security team builds, owns and maintains the critical security infrastructure that provides visibility into Auth0’s production operations. We are looking for a security engineer with a passion for solving security problems and building tools to drive automation. This is an exciting time to join Auth0 as we are growing quickly and this role is an opportunity to drive the expansion of our Cloud Security team.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Provide team leadership and own the delivery of security engineering projects{linebreak}{linebreak}* Design, build and maintain the systems that help keep Auth0 secure{linebreak}{linebreak}* Demonstrate the effectiveness and coverage of these systems{linebreak}{linebreak}* Develop tools to test, monitor and enforce security policy{linebreak}{linebreak}* Automate security process to reduce as much manual process as possible{linebreak}{linebreak}* Own and improve our security monitoring pipeline{linebreak}{linebreak}* Participate in the on-call rotation to support the infrastructure and respond to security events{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Experience working as a Security Engineer and delivering engineering projects{linebreak}{linebreak}* Experience administering and securing AWS{linebreak}{linebreak}* Strong Linux experience{linebreak}{linebreak}* Proficiency in at least one programming language (e.g. Python, Node, Go etc.){linebreak}{linebreak}* Experience with log collection and storage (e.g. ELK/EFK stacks, Sumo Logic etc){linebreak}{linebreak}* Strong written and verbal communication skills{linebreak}{linebreak}* Comfort working in a globally distributed environment with a remote workforce{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Extra Points:{linebreak}{linebreak}{linebreak}* A passion for infrastructure as code and have used tools such as Terraform and CloudFormation{linebreak}{linebreak}* Experience running a vulnerability management programme{linebreak}{linebreak}* You have used configuration management tools (e.g. Salt Stack, Ansible, Puppet, etc){linebreak}{linebreak}* You write readable, maintainable code and have experience managing source code with git{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Examples of our Engineering Culture:{linebreak}{linebreak}{linebreak}* https://auth0.engineering/{linebreak}{linebreak}* https://auth0.engineering/cloud-security-monitoring-at-auth0-part-ii-b106354a0e5d{linebreak}{linebreak}* https://auth0.engineering/detecting-secrets-in-source-code-bd63b0fe4921{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Auth0 values diversity and inclusion and is an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Auth0 participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

See more jobs at Auth0

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Twin Technologies

Contract Microservice Security Architect


Twin Technologies


infosec

architecture

infosec

architecture

1yr

Apply

{linebreak}Company Description{linebreak}{linebreak}{linebreak}We dream, create, and deliver digital solutions that transform what’s possible for enterprises, government institutions and organizations and partner with our clients through every stage of digital transformation: from strategy, to activation, to delivery to decrease risk and increase speed-to-market.{linebreak}{linebreak}We are Remotely Awesome! We understand that quality of life directly impacts quality of work, and we know that talent is all over the place. Our team is not limited by geography, and seeks top talent where it exists. Our remote work model encourages independent thinking, requires professional discipline, and contributes to a high quality work/life balance.{linebreak}{linebreak}What’s does this mean for you? Many of our team members have the flexibility to work from anywhere in the United States, and is provided the tools and infrastructure to successfully collaborate across the globe. We will continue to grow and evolve with the market and provide an environment where creativity, leadership, mentoring, planning, and resources are in place to achieve our shared goals.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Job Description{linebreak}{linebreak}{linebreak}The Security Architect will serve as part of a development team supporting both established projects and creating from the ground up. The ideal candidate is an experienced leader and team player with a background in security and a passion for delivering well through DevOps best practices.  They are passionate about technology and committed to lifelong learning, possessing the ability to apply their technical knowledge, skills and experience to solve complex/real-world problems.{linebreak}{linebreak}Technologies and Disciplines:{linebreak}{linebreak}We use several different technologies in our development stack across multiple clients and projects. We continuously evaluate new technologies to make sure we are fully aware and always using the right tool for the job. Examples of the technologies we currently use include:{linebreak}{linebreak}{linebreak}* Java, JPA, Dropwizard, JBoss, Javascript{linebreak}{linebreak}* Docker, Kubernetes, Linkerd, Consul{linebreak}{linebreak}* SQL Server, Oracle{linebreak}{linebreak}* Jenkins, Maven, Stash, Git{linebreak}{linebreak}* AWS EC2, Lambda, S3{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Solving complex problems with elegant and maintainable solutions{linebreak}{linebreak}* Designing, implementing, and evaluating microservice architecture implementations to improve delivery and support new features{linebreak}{linebreak}* Delivering back-end and tooling solutions using modern Java frameworks{linebreak}{linebreak}* Developing and bringing security processes in line with current best practices{linebreak}{linebreak}* Integrating existing legacy Java enterprise system with microservice/mesh architecture based APIs{linebreak}{linebreak}* Working with the team to continuously improve security across all areas of the software project{linebreak}{linebreak}* Participating on an agile / scrum software delivery team{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Qualifications{linebreak}{linebreak}{linebreak}{linebreak}* A strong foundation in computer security and authz & authn best practices{linebreak}{linebreak}* 5-10+ years software engineering experience{linebreak}{linebreak}* 1-2+ years experience integrating with Identity and Access Management frameworks, or security policy and enforcement toolsets.{linebreak}{linebreak}* Secured APIs and services within SOA or microservice architectures{linebreak}{linebreak}* Experience with Kubernetes resource APIs and related CLI tools{linebreak}{linebreak}* Experience with running and defining Docker containers{linebreak}{linebreak}* Comfortable using and configuring software on Linux based operating systems{linebreak}{linebreak}* Familiar with service mesh proxies like Istio/Envoy or Linkerd{linebreak}{linebreak}* Understands best practices for JWT algorithm choice and token claim assertions{linebreak}{linebreak}* Capable of integrating security related components into CI/CD automation pipelines using tools like Spinnaker or Jenkins{linebreak}{linebreak}* BS in Computer Science or equivalent experience{linebreak}{linebreak}* Applicants MUST be US Citizens, due to the nature of the work{linebreak}{linebreak}* Applicants MUST live in the US, with a remote home office{linebreak}{linebreak}* This is a contract position to start{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Additional Information{linebreak}{linebreak}{linebreak}Twin Technologies offers a competitive and comprehensive employee compensation and benefits package that includes medical, dental and vision insurance, LTD, STD, life insurance, 401k program with company match, and an unlimited PTO plan{linebreak}{linebreak}Twin Technologies is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity and expression, national origin, disability, or protected veteran status.

See more jobs at Twin Technologies

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Surge

Security


Surge


infosec

infosec

1yr

Apply

{linebreak}{linebreak}* Excellent verbal and written communication skills{linebreak}{linebreak}* Strong knowledge of NIST SP 800-53 & SP 800-30{linebreak}{linebreak}* Experience in conducting audits based on NIST Cyber Security Framework & NIST security controls{linebreak}{linebreak}* Experience in developing technical risk management framework and managing security risk assessments{linebreak}{linebreak}* Must have CISSP{linebreak}{linebreak}{linebreak}

See more jobs at Surge

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


InVisionApp

Senior Security Engineer Risk Compliance


InVisionApp


infosec

senior

engineer

infosec

senior

engineer

1yr

Apply


Stats (beta): 👁 1,258 views,✍️ 0 applied (0%)
InVision is the world's leading product design platform, powering the future of digital product design through our deep understanding of the dynamics of collaboration. We provide two million people with the power to prototype, review, refine, manage and user test web and mobile products. InVision drives the product design process at leading Fortune 100 companies, including at Disney, IBM, Walmart, Apple, Verizon and General Motors. Backed by Accel, ICONIQ Capital, FirstMark Capital, Tiger Global and others. InVision is a distributed team with over 200 employees around the world.{linebreak}{linebreak}As a Security Specialist focused on risk and compliance, this position will provide the individual an opportunity to help shape the direction of our company’s security program by providing thought leadership, professional support and valued contributions to a range of activities.  We are looking for an experienced security professional with a strong background in audit and compliance management.  This role will work with third parties, customers and auditors to manage compliance efforts as well as performing internal audits across various departments to ensure security and customer requirements are met.  You will have the opportunity to expand beyond audit and compliance efforts as well by providing operational support for our security defenses, including the technologies deployed for protecting company and customer information assets and infrastructure.  This position plays a critical role in identifying, protecting, detecting and responding to potential security vulnerabilities, while also providing consultative support for security-related projects.  The right person will bring passion that promotes understanding and continuous education.{linebreak}{linebreak}This role will report to the Manager of Information Security.{linebreak}{linebreak}{linebreak}Key Responsibilities Include:{linebreak}{linebreak}{linebreak}* Work with internal and external entities to ensure the security of our customers{linebreak}{linebreak}* Manage third party and customer audits{linebreak}{linebreak}* Third party risk assessments{linebreak}{linebreak}* Internal risk assessments{linebreak}{linebreak}* Internal compliance audits (user access reviews, firewall reviews){linebreak}{linebreak}* Employee / endpoint compliance efforts{linebreak}{linebreak}* Risk assessments and risk remediation efforts{linebreak}{linebreak}* Security audits of people, systems and processes{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Preferred skills/tools:{linebreak}{linebreak}{linebreak}* GRC Tools{linebreak}{linebreak}* PCI / SOC 2 knowledge{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Preferred Certifications:{linebreak}{linebreak}{linebreak}* CISSP{linebreak}{linebreak}* CISM{linebreak}{linebreak}* CISA{linebreak}{linebreak}* CGEIT{linebreak}{linebreak}* CRISC{linebreak}{linebreak}{linebreak}

See more jobs at InVisionApp

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Oportun

Identity Access Management Security Analyst


Oportun


infosec

analyst

infosec

analyst

1yr

Apply


Stats (beta): 👁 1,819 views,✍️ 0 applied (0%)
{linebreak}ABOUT TECHNOLOGY @ Oportun{linebreak}{linebreak}The Technology team @ Oportun is dedicated to delivering and maintaining performant, elegant, and intuitive systems to our business partners and retail customers.  We provide the platform, technology services, and interfaces that have enabled Oportun to serve over 1.1M customers with over $5 billion in life-changing, responsible loans disbursed.{linebreak}{linebreak}We work on a very unique platform, combining service-oriented platform services with sophisticated user experiences, all enabled through a best-in-class (and fun to use!) automated development infrastructure.  We prove that FinTech is more fun, more challenging, and in our case, more rewarding as we build technology that changes our customers’ lives.  At the corporate level, Oportun delivers a very supportive and welcoming service experience, with bilingual staff across channels, and operates in more than 270 locations in CA, IL, AZ, FL, NM, TX, UT & NV, with mobile services available in MO and WI.{linebreak}{linebreak}Summary{linebreak}{linebreak}The IaM Security Analyst reports to the VP of Security and is responsible for managing identity governance, security controls and security configuration management for critical business applications, such as Workday and others.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Management of Workday identity governance, security controls and security configuration items such as:{linebreak}{linebreak}{linebreak}* Separation of Duties (SOD) framework{linebreak}{linebreak}* Role-based, job-based, aggregation, intersection, segmented security groups{linebreak}{linebreak}* Authentication and password policies to control users logging into the tenant{linebreak}{linebreak}* Security controls for business processes{linebreak}{linebreak}* Security controls for integrations{linebreak}{linebreak}* Tenant setup for security{linebreak}{linebreak}* Data scrambling and data masking options for Workday{linebreak}{linebreak}* Different types of custom reports, calculated fields and custom dashboards{linebreak}{linebreak}* Single Sign-on configuration options for Workday{linebreak}{linebreak}* Mobile configuration options for Workday{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Longer-term arc for this role will focus on the management of identity governance, security controls and security configuration items in other in-scope critical business applications.{linebreak}{linebreak}* Support the deployment of an Identity Governance system by: Creating and managing Identity Governance policies and processes, developing automated continuous monitoring solutions for Identity Governance attestation processes, and developing/publishing Identity Governance reports and metrics.{linebreak}{linebreak}* Develop and help deliver Identity Governance awareness materials, and document Identity Governance training materials.{linebreak}{linebreak}* Collaborate with business partners to manage other in-scope critical business applications{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Required Skills & Experience:{linebreak}{linebreak}{linebreak}* 3+ years of experience in Identity and Access Management and Identity Governance REQUIRED.{linebreak}{linebreak}* 3+ years’ experience in Workday Security analysis, design, and configuration REQUIRED.{linebreak}{linebreak}* Ability to develop automated solutions.{linebreak}{linebreak}* Experience completing at least one full Workday HCM and Financial Management implementation.{linebreak}{linebreak}* Experience designing and configuring Workday security groups and user profiles.{linebreak}{linebreak}* Experience working closely with technical teams to translate functional specifications into technical solutions.{linebreak}{linebreak}* Strong understanding of Segregation of Duties (SOD) frameworks.{linebreak}{linebreak}* Ability to work in partnership with management from other business units to assure business practices meet defined policies, standards, and key business objectives for continuous control compliance.{linebreak}{linebreak}* Excellent presentation skills, analytical judgment, decision-making skills, functional and technical skills, business acumen, detailed, and task oriented.{linebreak}{linebreak}* Knowledge in analyzing and resolving complex problems and providing resolutions and recommendations to control deficiencies based on practice and precedent.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Preferred:{linebreak}{linebreak}{linebreak}* Sc. in Computer Science or related field{linebreak}{linebreak}* Experience with Identity Governance solutions and automation, including SailPoint and Saviynt products/solutions.{linebreak}{linebreak}* Experience with project management methods, process mapping, and a solid ability to establish priorities and/or multi-task.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}BENEFITS:{linebreak}{linebreak}We offer competitive salaries, bonuses, stock options, great benefits and a fully loaded laptop of your choosing.  We have strong opinions about work/life balance, and seek to create a comfortable and productive environment where we can ship apps that we’re proud of and that best serve our customers.

See more jobs at Oportun

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Defiant

Senior PHP Developer With Security Emphasis


Defiant


infosec

dev

php

senior

infosec

dev

php

senior

1yr

Apply

{linebreak}DESCRIPTION{linebreak}{linebreak}Do you want to work in cyber security? How about being able to work anywhere on the Planet? On a beach in Hawaii, or taking your lunch break fly fishing a stream in Alaska.{linebreak}{linebreak}We are one of the fastest growing cyber security companies in the World. You will be working for us remotely full-time, with full benefits including platinum level medical, dental, 401K, a generous stock options package, gym reimbursement, company paid security certifications (CISSP, Security+) and conferences.{linebreak}{linebreak}We are a team of 33 talented and highly motivated people. We're fast moving, nimble, self managing and work in a relaxed atmosphere with a sense of humor. Rather than working for a mega-corp, you will be working in a company where your work has real impact in the fun high-growth stages of our evolution.{linebreak}{linebreak}We use apps like Slack, Fogbugz, Github and Google Apps for our workflow. Each team member is world-class at what they do. We have flexible working hours and we are a diverse team ranging in age. Most of us are based in the USA and many are international including countries like Sweden, Bulgaria, the UK and many more.{linebreak}{linebreak}Here are some of the core skills we look for in team members:{linebreak}{linebreak}{linebreak}* A willingness to grab whatever task is required of you and run with it. This may include work outside of your core tasks. We are a small team and everyone needs to pitch in.{linebreak}{linebreak}* A high level of productivity and self-management.{linebreak}{linebreak}* Must be comfortable working remotely and interfacing with other team members using Slack and other remote tools.{linebreak}{linebreak}* Excellent analytical ability and problem solving skills.{linebreak}{linebreak}* A strong work ethic.{linebreak}{linebreak}* Effective communication skills. This is critical for remote workers and we can't emphasize this enough. You will spend a significant amount of time interfacing with our customers and/or other team members through your keyboard and it's critically important that you can effectively convey your thoughts.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}REQUIREMENTS{linebreak}{linebreak}{linebreak}* PHP including object oriented PHP. Experience with Laravel is helpful. You need to write clean, high performance and maintainable code that is secure.{linebreak}{linebreak}* Knowledge of subversion and git, including github workflow is a requirement.{linebreak}{linebreak}* MySQL including the ability to write well performing SQL, ability to design schemas and an understanding of MySQL data types and performance.{linebreak}{linebreak}* Experiencing with Apache, Nginx and other web platforms like Lightspeed highly desirable.{linebreak}{linebreak}* Must be comfortable using Linux and comfortable with Linux administration.{linebreak}{linebreak}* HTML, CSS, Javascript and jQuery a requirement.{linebreak}{linebreak}* Understanding of common web vulnerabilities required.{linebreak}{linebreak}* Vulnerability research – ability to identify vulnerabilities in code is a requirement.{linebreak}{linebreak}* WordPress experience required – including ability to use the WordPress plugin API.{linebreak}{linebreak}* A keen interest in infosec. Credentials like Security+, CISSP or other is a strong plus.{linebreak}{linebreak}* Knowledge of other languages a strong plus.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}All positions require a trial period of approximately 2-3 weeks with a minimum commitment of 10 hours per week. You will be paid for this short-term contract, and it will be used to evaluate whether both parties want to pursue an ongoing, regular employment relationship.{linebreak}{linebreak}All offers of employment are contingent on successful completion of a background check. The results of the background check are considered as they relate to the position and do not automatically disqualify someone from a offer of employment with the company.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}BENEFITS{linebreak}{linebreak}Full-time permanent positions include the following benefits:{linebreak}{linebreak}{linebreak}* Platinum level PPO medical plan with dental and vision included. Company pays 100% of the premiums for employees and 50% for dependents.{linebreak}{linebreak}* 21 days PTO per year{linebreak}{linebreak}* 401k with matching contributions{linebreak}{linebreak}* Opportunities to attend security conferences and WordCamps (conferences vary but we have attended RSA, DefCon, BSides, Shmoocon and others){linebreak}{linebreak}* Company paid local gym membership{linebreak}{linebreak}* Company paid fees and study time provided for work-related educational courses and security certifications such as Security+, CEH and CISSP.{linebreak}{linebreak}* You will receive a new laptop (MacBook Pro or equivalent) and any items needed to create a successful work environment at home.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Click here to apply for this job now.

See more jobs at Defiant

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


VividCortex

US-only

Application Security Engineer


VividCortex

US-only

infosec

engineer

infosec

engineer

US-only1yr

Apply

{linebreak}The Application Security Engineer champions security within VividCortex’ product development teams through the design and integration of security controls, and educating our teams through training and security programs. Our security team is a key part of our growth strategy! Diversity is important to us, and we welcome and encourage applicants from all walks of life and all backgrounds. Remote work within the US with regular travel to our Charlottesville, VA headquarters, is available for this position.{linebreak}{linebreak}What you’ll get to do here:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Provide security expertise on our systems, network, encryption, and authentication.{linebreak}{linebreak}* Understand our AWS architecture, full engineering stack, services, and data flow and own their security controls.{linebreak}{linebreak}* Implement and maintain technologies for security, such as vulnerability testing, logging, monitoring and incident response.{linebreak}{linebreak}* Help define our secure development standards and ensure they are met.{linebreak}{linebreak}* Consult with engineering on planned and current platform and code changes to ensure security is given due consideration during architectural planning and implementation.{linebreak}{linebreak}* Perform code reviews, penetration testing, and security functional testing.{linebreak}{linebreak}* Own security awareness training for engineering, and create engaging security programs (bug bounty, white hat testing, and more).{linebreak}{linebreak}* Document and develop security engineering processes and procedures in support of compliance processes.{linebreak}{linebreak}* Identify and assist in the development of  security features within our products.{linebreak}{linebreak}* Represent Security as a resource for a great engineering culture.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}You’re great at:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Sharing your passion for security with the team and advocating for customer needs.{linebreak}{linebreak}* Being the engineering team member that others depend on for guidance on security issues.{linebreak}{linebreak}* Staying on top of security trends and emerging threats in a rapidly changing industry.{linebreak}{linebreak}* Creating engaging programs for training and security awareness.{linebreak}{linebreak}* Choosing and using vulnerability testing tools for penetration tests and compliance audits.{linebreak}{linebreak}* Understanding complex applications, infrastructure and business processes.{linebreak}{linebreak}* Identifying security risks in the product and SDLC and finding pragmatic ways to mitigate them.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}You'll benefit from experience in:{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* High-growth technology environments.{linebreak}{linebreak}* Software as a Service products.{linebreak}{linebreak}* Frameworks and standards such as ISO, CSA, HIPAA, PCI, GLBA, etc.{linebreak}{linebreak}* System administration, particularly AWS.{linebreak}{linebreak}* General development, deployment, and operation of modern API-powered web applications using continuous delivery and Git in a Unix/Linux environment.{linebreak}{linebreak}* Coding, particularly with Go and scripting languages such as Bash.{linebreak}{linebreak}* Coding platforms include, PHP, Golang, C+, C++, Perl, Python, and Javascript.{linebreak}{linebreak}* Database platforms include, MySQL, PostgreSQL, MongoDB, Redis, Cassandra.{linebreak}{linebreak}* OS platforms include Linux, Free BSD and Windows.{linebreak}{linebreak}* Cloud SaaS Services, AWS{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}At VividCortex, we want to build a diverse team because it's the right thing to do, and because we believe diversity is strength. We encourage applicants from all walks of life and all backgrounds. Note to Agencies and Recruiters: VividCortex has a strict company policy against engaging with unsolicited contact from agencies or recruiters.  Unsolicited resumes and leads are property of VividCortex and VividCortex explicitly denies that any information sent to VividCortex can be construe {linebreak}{linebreak}#Location{linebreak}- US-only

See more jobs at VividCortex

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


InVisionApp

Engineering Manager Security


InVisionApp


infosec

exec

engineer

infosec

exec

engineer

1yr

Apply

{linebreak}InVision is the Digital Product Design platform used to make the world’s best customer experiences. We provide design tools and educational resources for teams to navigate every stage of the product design process, from ideation to development.{linebreak}{linebreak}{linebreak}Today, more than 3.5 million people use InVision to create a repeatable and streamlined design workflow; rapidly design and prototype products before writing code, and collaborate across their entire organization. That includes more than 80 percent of the Fortune 100, and organizations like Airbnb, Amazon, HBO, Netflix, Slack, Starbucks, and Uber, who are now able to design better products, faster.{linebreak}{linebreak}{linebreak}InVision is a fully distributed company with employees in 25 countries around the world. The company has raised more than $235 million in funding from leading investors including Accel, ICONIQ, FirstMark, Tiger Global, Battery Ventures, and Spark Capital. Visit us at InVisionApp.com and InVisionApp.com/blog.{linebreak}{linebreak}{linebreak}You are someone who loves building high performing teams. You believe that the foundations of a really good team are a clear vision, engaged and talented engineers, just enough process, fast and effective decision-making, and excellent communication.  You’re never satisfied and are always looking for ways to make things better and to deliver faster with higher reliability. You care deeply about the work that you do and the people who are doing it. You practice the leader-leader model. Ok, so it’s pretty clear that you’re awesome.  And awesome people like to work on awesome stuff, right?{linebreak}{linebreak}{linebreak}We want you to help us establish and solidify our SecDevOps framework.  We’re fully invested in the latest security and platform technologies such as Containerization, Kubernetes, AWS services, Go, Web Application Firewalls, and much more.  You will get to work on tools and security products that will help protect our organization and customers; and critical in helping the business succeed.{linebreak}{linebreak}{linebreak}Your work will directly contribute to people loving their work. You will manage the SecDevOps team and collaborate closely with our Platform’s DevOps team to maintain the security of the build, stability, and availability of our service. It’s genuinely a lot of fun working on a great product and pushing the edge in SecDevOps.{linebreak}{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Be accountable for your team’s delivery and execution on projects and operation of services.{linebreak}{linebreak}* Lead and grow the engineers on your team through coaching and mentoring, regular reviews, and one-on-ones.{linebreak}{linebreak}* Manage projects through effective planning, communication of status, and coordination of activities within your team and across teams.{linebreak}{linebreak}* Continuously improve your team’s processes.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Strong Player Coach that can develop and lead SecDevOps strategy{linebreak}{linebreak}* Experienced in mentoring and coaching engineers.{linebreak}{linebreak}* Experienced in delivering complex projects quickly and with a focus on quality and reliability.{linebreak}{linebreak}* Process-oriented but hates bureaucracy. Experienced with Agile and/or Lean.{linebreak}{linebreak}* Good at getting things done with minimal oversight while maintaining good information flow.{linebreak}{linebreak}* Experienced hiring good engineers who add to the strengths of the team.{linebreak}{linebreak}* Strong architectural understanding of back end systems.{linebreak}{linebreak}* Balances good strategic vision with tactical execution.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}There are a number of reasons you really want to be an Engineering Manager on this team.  You will have the opportunity to work with a super talented, engaged engineers who love what they do.  You will work with an experienced leadership team that has successfully grown and mentored managers. You’ll be part of a peer group that is supportive and always learning.  {linebreak}{linebreak}If this sounds like you, we’d like to know more!

See more jobs at InVisionApp

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Contrast Security

Senior Java Developer


Contrast Security


dev

java

senior

infosec

dev

java

senior

infosec

1yr

Apply

{linebreak}We are in search of someone who loves Java and wants to explore the internals of the JVM. There are a lot of people out there that can program in Java, but they moonlight in other languages. We kind of want someone who wants to be focused just on Java and JVM languages like Scala, Kotlin and Groovy.{linebreak}{linebreak}The opportunity is to join our flagship team, which is our Java agent. It's our most widely adopted language/agent. It just happens to be our most mature and feature rich. We have so much more work to do with our technology, so let me assure you that joining this team will be a fun, wild ride. Writing an application security agent is a responsibility we take very seriously at Contrast. Our customers trust us enough to run our agents directly in their applications. We're looking for an engineer to exercise that power carefully, to help us build a quality, thoroughly tested agent that our customers run with complete confidence.{linebreak}{linebreak}An ideal candidate is proficient in Java and wants to get into the internals of the JVM. He or she likely has professional Java experience, including some experience contributing to open source frameworks and/or libraries, this could be a great opportunity for you to deepen your understanding of Java. You like to reverse engineer code, making it better with each iteration.{linebreak}{linebreak}About You{linebreak}{linebreak}{linebreak}* Able to design modular and well tested java code bases.{linebreak}{linebreak}* Experience with popular Java OSGi and ORM frameworks.{linebreak}{linebreak}* Research and implement JVM Compiler and Runtime optimizations {linebreak}{linebreak}* Strong skills in developing and debugging multi-threaded code{linebreak}{linebreak}* Hands-on experience in JVM development, configuration, and Java concurrency practices.{linebreak}{linebreak}* Deep understanding of Java threads, locks, I/O and garbage collection.{linebreak}{linebreak}* Experience and/or curiosity in JVM languages: Kotlin, Groovy, Scala or Clojure{linebreak}{linebreak}* You approach problems from a product perspective, thinking through how the user will interact with what you're building.{linebreak}{linebreak}* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.{linebreak}{linebreak}* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.{linebreak}{linebreak}* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.{linebreak}{linebreak}* You can join us in our office in Baltimore{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}At Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Are you looking to make a difference? Are you a problem solver, but want to be challenged with complex and interesting problems. Do you believe the best work is the result of finding the simplest solution to complex challenges? Do you long to be an early contributor to a product and a company culture? Do you ever wish you were there in the early days of these startups everyone is talking about? Here's a little about what we offer:{linebreak}{linebreak}{linebreak}* Competitive compensation{linebreak}{linebreak}* Daily team lunches{linebreak}{linebreak}* Meaningful stock plans{linebreak}{linebreak}* Medical, dental, and vision benefits{linebreak}{linebreak}* Flexible paid time off{linebreak}{linebreak}* Choice of a MacBook Pro or Microsoft Surface Pro {linebreak}{linebreak}{linebreak}{linebreak}{linebreak}We are changing the world of software security. Do it with us.   We believe in what we do and are passionate about helping our customers secure their business. We work hard, and we have fun doing it. Solve the impossible. Easy = boring. If you’re looking for a fun work environment and like a challenge, you’ll love Contrast Security. By submitting your application, you are providing Personally Identifiable Information about yourself (cover letter, resume, references, or other employment-related information) and hereby give your consent for Contrast Security, and/ or our HR-related Service Providers, to use this information for the purpose of processing, evaluating and responding to your application for current and future career opportunities. Contrast Security is an equal opportunity employer and our team is comprised of individuals from many diverse backgrounds, lifestyles and locations. 

See more jobs at Contrast Security

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Auth0

Security Engineer


Auth0


infosec

engineer

infosec

engineer

1yr

Apply

{linebreak}Auth0 gives companies simple, powerful and developer friendly building blocks so they can free up resources to focus on innovation. We strive to be the identity platform of choice of developers and Enterprises. We take our culture very seriously and are looking for people who are drawn to both our mission and our culture.{linebreak}{linebreak}We are a security company and Auth0's Security Team is in the privilege position of supporting a security first culture for a company that wants to make the internet safer.{linebreak}{linebreak}{linebreak}The Infrastructure Security team builds, owns and maintains the critical security infrastructure that provides visibility into Auth0’s production operations. We are looking for a Senior engineers...{linebreak}{linebreak}{linebreak}This is an exciting time to join Auth0 as we are growing quickly and this role is an opportunity to drive the expansion of our Security Operations team.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Provide team leadership and own the delivery of security engineering projects{linebreak}{linebreak}* Design, build and maintain the systems that help keep Auth0 secure{linebreak}{linebreak}* Demonstrate the effectiveness and coverage of these systems{linebreak}{linebreak}* Develop tools to test, monitor and enforce security policy{linebreak}{linebreak}* Automate security process to reduce as much manual process as possible{linebreak}{linebreak}* Own and improve our security monitoring pipeline{linebreak}{linebreak}* Participate in the on-call rotation to support the infrastructure and respond to security events{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Experience working as a Security Engineer and delivering engineering projects{linebreak}{linebreak}* Experience administering and securing AWS{linebreak}{linebreak}* Strong Linux experience{linebreak}{linebreak}* Proficiency in at least one programming language (e.g. Python, Node, Go etc.){linebreak}{linebreak}* Experience with log collection and storage (e.g. ELK/EFK stacks, Sumo Logic etc){linebreak}{linebreak}* Strong written and verbal communication skills{linebreak}{linebreak}* Comfort working in a globally distributed environment with a remote workforce{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Extra Points:{linebreak}{linebreak}{linebreak}* A passion for infrastructure as code and have used tools such as Terraform and CloudFormation{linebreak}{linebreak}* Experience running a vulnerability management programme{linebreak}{linebreak}* You have used configuration management tools (e.g. Salt Stack, Ansible, Puppet, etc){linebreak}{linebreak}* You write readable, maintainable code and have experience managing source code with git{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Examples of our Engineering Culture:{linebreak}{linebreak}{linebreak}* https://auth0.engineering/{linebreak}{linebreak}* https://auth0.engineering/cloud-security-monitoring-at-auth0-part-ii-b106354a0e5d{linebreak}{linebreak}* https://auth0.engineering/detecting-secrets-in-source-code-bd63b0fe4921{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Auth0 is an Equal Employment Opportunity employer. Auth0 conducts all employment-related activities without regard to race, religion, color, national origin, age, sex, marital status, sexual orientation, disability, citizenship status, genetics, or status as a Vietnam-era special disabled and other covered veteran status, or any other characteristic protected by law. Auth0 participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

See more jobs at Auth0

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Auth0

Product Security


Auth0


infosec

product manager

exec

infosec

product manager

exec

1yr

Apply

{linebreak}We give companies simple, powerful and developer friendly building blocks so they can free up resources to focus on innovation. We strive to be the identity platform of choice of developers and Enterprises. We take our culture very seriously and are looking for people who are drawn to both our mission and our culture.{linebreak}{linebreak}Auth0 is a security company and Auth0's Security Team is in the privilege position of supporting a security first culture for a company that wants to make the internet safer.{linebreak}{linebreak}{linebreak}As part of the Product Security team your job will be to ensure that Auth0 products are as secure as our customers trust them to be. We are looking for a Software Engineer with a passion for solving security problems to partner with our Engineering teams and own security-critical code throughout the entire product lifecycle.{linebreak}{linebreak}{linebreak}Our Engineers are encouraged to contribute back to the community and you will be supported in sharing your work by speaking at conferences and open sourcing the tools we build.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Develop, maintain, and test security-critical code and libraries that make up Auth0 products{linebreak}{linebreak}* Resolve security vulnerabilities identified in Auth0 products{linebreak}{linebreak}* Perform security reviews of requirements, design specifications, and code{linebreak}{linebreak}* Participate in Secure Software Development Lifecycle as a security subject matter expert{linebreak}{linebreak}* Work closely with our Engineering teams to gain in-depth knowledge of our systems{linebreak}{linebreak}* Develop a roadmap of security features{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Strong background in software engineering{linebreak}{linebreak}* Solid grounding in information security principles and passion for security{linebreak}{linebreak}* Deep understanding of Web application security{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Extra points:{linebreak}{linebreak}{linebreak}* Experience working as an application developer in the identity space and knowledge of OAuth 2.0, OpenID Connect, or SAML{linebreak}{linebreak}* Experience with JavaScript and Node.js development{linebreak}{linebreak}* Knowledge of FIDO U2F standard{linebreak}{linebreak}* Knowledge of container security{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Auth0 is an Equal Employment Opportunity employer. Auth0 conducts all employment-related activities without regard to race, religion, color, national origin, age, sex, marital status, sexual orientation, disability, citizenship status, genetics, or status as a Vietnam-era special disabled and other covered veteran status, or any other characteristic protected by law. Auth0 participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

See more jobs at Auth0

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


CoverMyMeds

Application Security Engineer


CoverMyMeds


infosec

engineer

infosec

engineer

1yr

Apply

{linebreak}As the Application Security Engineer at CoverMyMeds, you’ll be responsible for building and growing our application security program.  You’ll focus on creating and improving tools and processes that contribute to highly-secure application development environments and technical operations.  You’ll partner closely with developers across the company, supporting their needs and advocating for security best practices.  You’ll work on a small team with endless opportunities to continue growing and mentor others.{linebreak}{linebreak}What You'll Do: {linebreak}{linebreak}{linebreak}* Build and grow our application security program, including:{linebreak}{linebreak}{linebreak}{linebreak}* Assessing and assigning risk{linebreak}{linebreak}* Static code reviews{linebreak}{linebreak}* Secure coding policies{linebreak}{linebreak}* Security checkpoints{linebreak}{linebreak}* Code review methodologies{linebreak}{linebreak}* Security education for our development teams{linebreak}{linebreak}* Anything else you think should be part of the program{linebreak}{linebreak}{linebreak}{linebreak}* Document everything important you do for our application security program{linebreak}{linebreak}* Partner closely with our development teams to understand their needs and incorporate secure code-development practices from the very beginning of our processes to disseminate security expertise and knowledge of our complex environment{linebreak}{linebreak}* Proactively seek out opportunities to continuously learn about security best practices{linebreak}{linebreak}* Support the assessment and implementation of application security tools and technologies {linebreak}{linebreak}{linebreak}{linebreak}{linebreak}About You:{linebreak}{linebreak}{linebreak}* 3+ years of web development experience{linebreak}{linebreak}* 2+ years of application security experience{linebreak}{linebreak}* 2+ years of experience using dynamic web application vulnerability scanning and static code analysis tools and services{linebreak}{linebreak}* Proven experience mitigating and addressing application threat vectors {linebreak}{linebreak}* Proven experience securing all major web server environments and cloud platforms based on OWASP top ten recommendations {linebreak}{linebreak}* A natural collaborator who seeks out new perspectives and builds trusting relationships with stakeholders and team members{linebreak}{linebreak}* Excellent interpersonal skills to influence stakeholders to do the right thing for our products{linebreak}{linebreak}* Devoted to learning, constantly working to stay up-to-date on security best practices{linebreak}{linebreak}{linebreak}

See more jobs at CoverMyMeds

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Accenture India

Application Security Professionals


Accenture India


infosec

infosec

1yr

Apply


Stats (beta): 👁 1,154 views,✍️ 0 applied (0%)
{linebreak}We are looking for professionals (with 2-12 years  of experience) who can fulfill the following criteria:{linebreak}{linebreak} Job Location: Bengaluru{linebreak}{linebreak}Must Have Skills{linebreak}{linebreak}{linebreak}* Experience in performing web application security assessments using hands on techniques for identifying SQL injections, XSS, CSRF, authentication/authorization issues {linebreak}{linebreak}* Good knowledge of security technologies for secure software development such as cryptography, authentication techniques and protocols etc {linebreak}{linebreak}* Experience on both commercial and open source tools  Cenzic Hailstorm, Burpsuite, metasploit, CheckMarx, AppScan, WebInspect, Fortify, Nessus, nmap, sqlmap{linebreak}{linebreak}* Hands on experience in Dynamic security testing of web based application {linebreak}{linebreak}* Knowledge of Secure SDLC and Security standards like OWASP, CWE, NIST, OSSTMM {linebreak}{linebreak}* Understanding of OWASP top 10 and mitigation techniques {linebreak}{linebreak}* Work with development teams to carry out Application Security Reviews{linebreak}{linebreak}* Hands on experience in Application Code Review {linebreak}{linebreak}* Tool exposure in  CheckMarx, Fortify, IBM AppScan Source, Veracode  {linebreak}{linebreak}* Application Vulnerability Assessment/ Penetration Testing Cenzic, IBM AppScan {linebreak}{linebreak}* Understanding of network  mobile security and tool exposure{linebreak}{linebreak}* Experience in Dynamic Application Security Testing(DAST)/Static Application Security Testing(SAST){linebreak}{linebreak}* Excellent Communication Skills{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Good to have:{linebreak}{linebreak}Security Certification CSSLP, CEH, GIAC Information Security Professional GISP {linebreak}{linebreak}If you, or a friend, match these requirements, please send in your resumes to [email protected], marking “Application Security-Stackoverflow” in the subject line{linebreak}{linebreak}Accenture is an equal opportunities employer and welcomes applications from all sections of society and does not discriminate on grounds of race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, or any other basis as protected by applicable law{linebreak}{linebreak}

See more jobs at Accenture India

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Auth0

Infrastructure Security


Auth0


infosec

infosec

1yr

Apply

{linebreak}Auth0 provides a secure, highly available, enterprise-grade platform that secures billions of log-ins every year. The company makes it easy to implement even the most complex identity solutions for their web, mobile, IoT and internal applications, as well as sophisticated identity management for employees, customers and partners. Auth0 has raised over $54 million from Meritech Capital, NTT DoCoMo, Trinity Ventures, Bessemer Venture Partners, K9 Ventures, Silicon Valley Bank, Founders Co-Op, Portland Seed Fund and NXTP Labs.{linebreak}{linebreak}Thousands of enterprises and millions of users worldwide depend on Auth0 for authentication and authorization of their most mission-critical apps, APIs and IoT devices. Auth0’s top priorities are availability and security.{linebreak}{linebreak}The Infrastructure Security team builds, owns and maintains the critical security infrastructure that provides visibility into Auth0’s production operations. We are looking for a Security Engineering Manager who is passionate about people and can lead them to deliver world class security infrastructure.{linebreak}{linebreak}This is an exciting time to join Auth0 as we are growing quickly and this role is an opportunity to drive the expansion of our Security Operations team.{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}{linebreak}* Lead a team of Security Engineers to deliver great security infrastructure{linebreak}{linebreak}* Mentor and coach the engineers to keep them challenged and delivering their best work{linebreak}{linebreak}* Build processes and frameworks for Security Engineering and Security Operations{linebreak}{linebreak}* Build a diverse team - fostering a collaborative and an inclusive environment{linebreak}{linebreak}* Develop a roadmap for future work and be accountable for it's delivery{linebreak}{linebreak}* Build a metrics program{linebreak}{linebreak}* Develop strong relationship with our internal{linebreak}{linebreak}* Engineering teams; influencing their roadmaps and understand where we need to fill any gaps{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Several years experience in an security engineering management role or a senior engineering team lead role{linebreak}{linebreak}* Experience working as a Security Engineer and delivering engineering projects{linebreak}{linebreak}* Experience hiring and attracting talented Engineers{linebreak}{linebreak}* You have enough technical expertise to drive to engineering and architecture decisions to:{linebreak}{linebreak}{linebreak}{linebreak}* Design, build and maintain the systems that help keep Auth0 secure{linebreak}{linebreak}* Develop tools to test, monitor and enforce security policy{linebreak}{linebreak}* Automate security process to reduce as much manual process{linebreak}{linebreak}* Own and improve our security monitoring pipeline{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Experience administering and securing AWS Strong Linux experience{linebreak}{linebreak}* Experience with log collection and storage (e.g. ELK/EFK stacks, Sumo Logic etc){linebreak}{linebreak}* Great organisational and project management skills{linebreak}{linebreak}* Strong written and verbal communication skills Comfort managing a remote, globally distributed team{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Extra Points:{linebreak}{linebreak}{linebreak}* Exposure to agile release processes and supporting tools and infrastructure{linebreak}{linebreak}* A passion for infrastructure as code and have used tools such as Terraform and CloudFormation{linebreak}{linebreak}* Proficiency in at least one programming language (e.g. Python, Node, Go etc.){linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Examples of our Engineering Culture:{linebreak}{linebreak}{linebreak}* https://auth0.engineering/{linebreak}{linebreak}* https://auth0.engineering/cloud-security-monitoring-at-auth0-part-ii-b106354a0e5d{linebreak}{linebreak}* https://auth0.engineering/detecting-secrets-in-source-code-bd63b0fe4921{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Auth0 is an Equal Employment Opportunity employer. Auth0 conducts all employment-related activities without regard to race, religion, color, national origin, age, sex, marital status, sexual orientation, disability, citizenship status, genetics, or status as a Vietnam-era special disabled and other covered veteran status, or any other characteristic protected by law. Auth0 participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.

See more jobs at Auth0

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


GitLab

Backend Developer Security Products


GitLab


infosec

dev

backend

digital nomad

infosec

dev

backend

digital nomad

1yr

Apply


Stats (beta): 👁 1,403 views,✍️ 0 applied (0%)
{linebreak}This position is remote based. This role will focus on security features and security products for GitLab. This role will specifically focus on security.  This role will report to and collaborate directly with the Security Products Engineering Manager.{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Develop security products from proposal to polished end result.{linebreak}{linebreak}* Integrating 3rd party security tools into GitLab.{linebreak}{linebreak}* Complete our internal Advisories Database.{linebreak}{linebreak}* Manage metadata related to dependencies.{linebreak}{linebreak}* Key aspects of this role are focused on security products and features.{linebreak}{linebreak}* The complexity of this role will increase over time.{linebreak}{linebreak}* If you are willing to stick to working on these features for at least a year, then this role is for you.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Strong Go and/or Ruby developer with security expertise or proven security interest.{linebreak}{linebreak}* Passion and interest toward security (scanning, dependencies, etc.).{linebreak}{linebreak}* Experience in using GitLab and GitLab CI.{linebreak}{linebreak}* This is a fully remote role.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at GitLab

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Stats (beta): 👁 1,782 views,✍️ 0 applied (0%)
Blockstack is a new internet for decentralized apps. With Blockstack, you own your data and maintain your privacy, security and freedom. Blockstack is open source project and a public benefit corporation. [Learn more](https://blockstack.org).{linebreak}{linebreak}Blockstack is looking for a passionate and collaborative DevOps Engineer to help develop rigorous testing suites to guarantee the safety of a soon-to-be launched cryptocurrency and blockchain. This person will work on implementing securely tested solutions, and interface with our dev team and back end engineers on product builds and feature implementation. This role will span testing and security, software development and upgrades, improvements to our Developer API, and community support. {linebreak}{linebreak}Our engineering team builds software using JavaScript/ES6, React, Redux, Swift, and Objective-C on the frontend and Python, bash, and Bitcoin Core on the backend.{linebreak}{linebreak}Things You'll Work On:{linebreak}- Manage distribution of Blockstack software upgrades for developers and everyday users{linebreak}- Keep our users happy by managing Blockstack browser availability, scalability, and performance {linebreak}- Build tools for faster deployment schedules {linebreak}- Instate monitoring protocols and fail-over measures {linebreak}- Implement continuous testing practices to ensure the security and performance goals of Blockstack are met across backend services, blockchain infrastructure, and our frontend user clients{linebreak}- Deliver on rapid implementation schedules (without compromising on smart development goals and principles) to build web functionality that is functional, fast, and scalable{linebreak}{linebreak}Qualifications{linebreak}You are have worked in a large, highly available systems environment before, as well as an agile start-up. You are familiar with strategizing and improving for system security and availability. Your strengths lie in backend development, but can work across the full-stack when needed. {linebreak}{linebreak}KPIs{linebreak}- Increased uptime of Blockstack software {linebreak}- Delivery of long term, securely tested software {linebreak}- Work to improve our failure processes, alerting, and emergency response times {linebreak}- Support our community developers to increase number and usability of Blockstack Apps {linebreak}{linebreak}Skills {linebreak}- Experience developing with python and bash{linebreak}- Comfort across operating systems, with a strong Linux background{linebreak}- Experience across the CI/CD pipeline, with an understanding of best practices for automated testing and deployment{linebreak}- Ability to build and maintain highly available infrastructure{linebreak}- Competency in monitoring and quick response time in the event of an emergency{linebreak}- Security background with strength in automated testing and infrastructure{linebreak}- Experience deploying Bitcoin infrastructure with bitcoin core or utxo providers{linebreak}{linebreak}Qualities + Traits {linebreak}- Passion for building the new internet for decentralized apps {linebreak}- Strong problem solving skills, ability to think fast and thoroughly{linebreak}- Development mindset with strong security background{linebreak}- Experience in a rapidly scaling start-up{linebreak}- Proactive solution provider{linebreak}- Excellent communication

See more jobs at Blockstack

Visit Blockstack's website

# How do you apply? Please send cover letter, resume, and Github or personal website. We look forward to hearing from you!
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


VMRay

Security Engineer Malwareanalyse Macos


VMRay


macos

infosec

engineer

macos

macos

infosec

engineer

macos

1yr

Apply

{linebreak}SECURITY ENGINEER (M/F){linebreak}{linebreak}Malware Analysis macOS{linebreak}{linebreak}Location:{linebreak}{linebreak}Bochum, Germany{linebreak}{linebreak}Remote work:{linebreak}{linebreak}Partial{linebreak}{linebreak}Responsibilities:{linebreak}{linebreak}We are looking for a new Software Engineer focused on macOS. Your main task will be to research, design, and implement effective detection rules based on results from our static and dynamic analysis. You will be responsible for identifying typical malware behavior patterns by analyzing macOS malware and eventually turning your findings into detection rules. You will collaborate with the rest of the development team to provide insights that help improve the efficacy and performance of VMRay Analyzer. The job requires a strong interest in gaining an in-depth understanding of macOS internals, such as official and unofficial APIs, binary file formats, kernel internals, etc. You will have to keep yourself and the team up to date with the current macOS malware landscape.{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Strong interest in macOS internals and malware analysis{linebreak}{linebreak}* Good knowledge of macOS API{linebreak}{linebreak}* Proficient with Python programming or at least one similar high-level programming language{linebreak}{linebreak}* Experience in malware analysis is a plus{linebreak}{linebreak}* Fluent in English{linebreak}{linebreak}* On-site employment at our headquarters in Bochum (partial remote work possible){linebreak}{linebreak}{linebreak}

See more jobs at VMRay

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Carium

Software Engineer Application Security


Carium


infosec

dev

engineer

digital nomad

infosec

dev

engineer

digital nomad

1yr

Apply

{linebreak}Carium is looking for a software engineer to help build and secure the core of our healthcare application including our identity solution.  This position provides the opportunity for you to participate in a variety of disciplines as you help connect individuals to the enterprise systems where the bulk of our healthcare data is stored today.   {linebreak}{linebreak}Qualities we admire:{linebreak}{linebreak}{linebreak}* The motivation to deliver products that improve our population’s quality of life{linebreak}{linebreak}* The ability and drive to work independently and complete projects{linebreak}{linebreak}* Commitment to building high quality software through extensive use of test automation{linebreak}{linebreak}* A proactive, communicative individual who is always excited to learn something new{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Relevant Experience:{linebreak}{linebreak}{linebreak}* Deep understanding of mobile and web application security{linebreak}{linebreak}* Good knowledge of information security best practices{linebreak}{linebreak}* Exposure to distributed systems architectures{linebreak}{linebreak}* Solid coding skills in a language such as Python, Go, or Javascript{linebreak}{linebreak}* Test Automation{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Requirements:{linebreak}{linebreak}{linebreak}* Bachelor's degree in computer science, engineering, math or related field or equivalent experience{linebreak}{linebreak}* Minimum of 2 years of experience in engineering{linebreak}{linebreak}{linebreak}

See more jobs at Carium

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Carbon Black

Product Security Engineer


Carbon Black


infosec

product manager

engineer

exec

infosec

product manager

engineer

exec

1yr

Apply


Stats (beta): 👁 1,255 views,✍️ 0 applied (0%)
{linebreak}Located either in Boulder, CO; Boston, MA; or Remote in USA.{linebreak}{linebreak}{linebreak}{linebreak}Why Carbon Black?{linebreak}{linebreak}At Carbon Black, you’ll have the chance to make an impact in the ever-evolving cybersecurity space. Our advanced technology tackles even the toughest challenges and stays ahead of the latest threats. If you want to join an agile company that’s building bleeding edge technology in the cloud, Carbon Black is the place for you. Driven by passionate people who are dedicated to making the world safer, it’s no wonder we’ve been named a “Top Place to Work” by the Boston Globe for four consecutive years. Join us!{linebreak}{linebreak}Why You Matter:{linebreak}{linebreak}Our Product Security team will coordinate our security efforts across our product, engineering and operations departments. This is an opportunity to join a security team that is supported by a strong internal security community.  You will help to build an even more secure security product by which we build trust with our customers and deliver superior protection of their endpoints.{linebreak}{linebreak}As a Product Security Engineer, you will work with the engineering and operations teams to:{linebreak}{linebreak}{linebreak}* collaborate across the organization to help solve more complex security problems{linebreak}{linebreak}* evolve our Secure Development Lifecycle{linebreak}{linebreak}* evolve standards for securing build processes{linebreak}{linebreak}* evolve third party library management processes{linebreak}{linebreak}* assist with managing our bug bounty program{linebreak}{linebreak}* assist in planning for and participating in incident response as required{linebreak}{linebreak}* collaborate with product teams to address application security questions and issues{linebreak}{linebreak}* research security vulnerabilities in current architecture and communicate mitigation strategies to impacted teams{linebreak}{linebreak}* clearly communicate the security plan – including the risks and controls in place for key stakeholders{linebreak}{linebreak}* communicate with customers on our security posture, both on calls and with the RFP team{linebreak}{linebreak}* support the rest of the Engineering Security team in continuous improvement of the overall Engineering Security program{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}What You’ll Bring:{linebreak}{linebreak}{linebreak}* BS in Computer Science or equivalent work experience{linebreak}{linebreak}* 3+ years providing security support for SaaS/SaaS-like cloud systems required{linebreak}{linebreak}* Experience with platforms used to provide security services in SaaS environments for configuration management, authentication, automation and validation{linebreak}{linebreak}* Understanding of code level scanning tools{linebreak}{linebreak}* Strong communication skills preferred{linebreak}{linebreak}* Nice to haves{linebreak}{linebreak}{linebreak}{linebreak}* Understanding of kernel level applications{linebreak}{linebreak}* Experience building and automating security testing{linebreak}{linebreak}* Understanding of compliance frameworks (SOC, NIST, etc){linebreak}{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at Carbon Black

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Secucloud

Senior Haskell Software Developer Genius For Network Security Solutions


Secucloud


infosec

dev

haskell

senior

infosec

dev

haskell

senior

1yr

Apply

{linebreak}Senior Software Developer for Network Security and Cloud Infrastructures - to start immediately.{linebreak}{linebreak}TL;DR: Develop scalable network security products for the mass markt, worldwide!{linebreak}{linebreak}01 - Your tasks:{linebreak}{linebreak}{linebreak}* Development of our cloud based network security technologies{linebreak}{linebreak}* Optimization of our existing solutions{linebreak}{linebreak}* Documentation and knowledge sharing, e.g. internal code talks{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}02 - Your skills:{linebreak}{linebreak}{linebreak}* Programming in Haskell{linebreak}{linebreak}* Strong experience with/in{linebreak}{linebreak}{linebreak}{linebreak}* Development of scaleable networks{linebreak}{linebreak}* Web technologies and networks, especially network security technologies{linebreak}{linebreak}* Cloud service providers{linebreak}{linebreak}* Very good English skills verbal and written{linebreak}{linebreak}{linebreak}{linebreak}* Beneficial: Erlang, JavaScript, Python or C++{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}03 - Your benefits:{linebreak}{linebreak}{linebreak}* Full-time permanent position with flexible working hours{linebreak}{linebreak}* Room for individual initiative and engagement as part of dynamic and international collaborative teams{linebreak}{linebreak}* Comfortable and enjoyable working environment in city centre{linebreak}{linebreak}* Flat hierarchies and short decision-making channels{linebreak}{linebreak}* Competitive salary and tons of corporate benefits i.e. disability insurance for free, beverages, daily fresh smoothies, regularly company events, personal fitness coach, massages and many other Secucloud benefits.{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}04 - FAQ:{linebreak}{linebreak}* What do you really do daily?{linebreak}{linebreak}{linebreak}{linebreak}* Grab you coffee / Smoothie / Tee, etc.{linebreak}{linebreak}* Update/Synch with Dev team and prioritize tasks{linebreak}{linebreak}* Challenge yourself by developing features with new technologies{linebreak}{linebreak}* Challenge your colleagues by reviewing and optimizing their code{linebreak}{linebreak}* Try to proof your QA mates wrong{linebreak}{linebreak}* Go home when you've left your fingerprint on the product and be happy to have done a real contribution. Not only providing estimations.{linebreak}{linebreak}{linebreak}{linebreak}* How to improve your career?{linebreak}{linebreak}{linebreak}{linebreak}* learn from our network and security expertise{linebreak}{linebreak}* specialize and do brownbag sessions{linebreak}{linebreak}* get market observations, break them down technically and come up with innovative products for the new world{linebreak}{linebreak}* teach and manage younger hackers if you enjoy{linebreak}{linebreak}{linebreak}{linebreak}

See more jobs at Secucloud

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Railroad19

Transmit Security Mobile Integration Engineer


Railroad19


infosec

mobile

engineer

infosec

mobile

engineer

1yr

Apply

{linebreak}Transmit Security Mobile Integration Engineer (remote US){linebreak}{linebreak}At Railroad19, we develop customized software solutions and provide software development services. {linebreak} We are currently seeking a Transmit Security Mobile Integration Engineer.  The successful Engineer will work with the local Transmit field team (Field Engineer and Sales Executive) to execute against various customer implementation projects. This would include potentially POC, production environments and use cases. In addition to contributing deliverables the role is expected to work as an adviser to help identify, educate, and foster best-in-class solutions.{linebreak}{linebreak}At Railroad19, you are part of a company that values your work and gives you the tools you need to succeed. We are headquartered in Saratoga Springs, New York, but we are a distributed team of remote developers/engineers across the US. {linebreak} This is a full-time role with vacation, full benefits, and 401k.  Railroad19 provides competitive compensation with excellent benefits and a great corporate culture.{linebreak} {linebreak} The role is remote - U.S. located, with some travel to client.  Full time employment.{linebreak}{linebreak}(NO- contractors, Corp-to-Corp or 1099).  {linebreak} {linebreak}{linebreak}Core responsibilities:{linebreak}{linebreak}{linebreak}* Strong overall mobile development skills. This includes native objective-c, Swift (iOS) and Java (Android) programming languages.{linebreak}{linebreak}* Strong background in development platforms such as Cordova, Ionic3, Phonegap, MobileFirst/Worklight{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Experience with integrating third party mobile SDKs into both iOS and Android mobile applications{linebreak}{linebreak}* Good fundamental understanding of best practices and security applied to mobile application development{linebreak}{linebreak}* Strong background with all aspects of transport as applied to mobile applications (connection handling, push notifications, client-side certificates/SSL, PKI on mobile){linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Skills & Experience:{linebreak}{linebreak}{linebreak}* 5+ years of mobile development experience recommended{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Experience working in an Agile environment{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Nice to have but not required:{linebreak}{linebreak}{linebreak}* Familiarity with continuous integration practices{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* Available right away{linebreak}{linebreak}* Position based in US/remote{linebreak}{linebreak}* Ability to travel as needed{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}* BS in CS, EE or equivalent experience required{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}No Agencies***

See more jobs at Railroad19

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Doximity is transforming the healthcare industry. Our mission is to help doctors save time so they can provide better care for patients.{linebreak}{linebreak}We value diversity — in backgrounds and in experiences. Healthcare is a universal concern, and we need people from all backgrounds to help build the future of healthcare.{linebreak}{linebreak}This position is for an experienced DevOps engineer to own Security efforts for our entire application stack and join our 8 person DevOps team. We’re looking for someone with a strong track record in building infrastructure, maintaining high level of uptime and optimal security. You will be supporting and building products alongside our 50+ person engineering team used by hundreds of thousands of people.{linebreak}{linebreak}How you’ll make an impact:{linebreak}{linebreak}-Develop, schedule, and execute automated security audits on infrastructure using industry standard security frameworks and tooling.{linebreak}-Write penetration tests for applications and services.{linebreak}-Periodically audit and rotate access credentials.{linebreak}-Document current and future security procedures and policies in the wiki.{linebreak}-Lead security/policy related audits such as SOC2 Type II (annual renewal).{linebreak}-Work with sales and client services teams to answer infrastructure related security questions and concerns that clients inquire about.{linebreak}-Remediate and write post-mortem reports on security-related issues.{linebreak}-Active involvement in design, implementation, and maintenance of the development, staging, and production infrastructure security.{linebreak}-Work on automating tasks using Jenkins.{linebreak}-Troubleshoot system issues (such as high-load, memory, CPU usage, etc.) and come up with temporary/long-term solutions based on the root cause.{linebreak}-Work with developers to deploy applications ready for production (Terraform, Consul, Vault, Upstart, NGINX, Sensu). We believe in infrastructure as code and follow it.{linebreak}-Write Chef cookbooks (using "Berkshelf Way") to automate configuration management.{linebreak}-Participate in a 1-week on 7-week off, 24/7 on-call rotation.{linebreak}-Hands-on maintenance on our Ruby on Rails and Go (Golang) applications.{linebreak}-Troubleshoot issues across the whole stack: hardware, software, and network.{linebreak}{linebreak}What we’re looking for:{linebreak}{linebreak}-Minimum of 5 years of Linux/UNIX systems engineer & administrator experience.{linebreak}-Minimum of 5 years of relevant web application security experience{linebreak}-Extensive AWS experience{linebreak}-Experience writing application security penetration tests with an open source framework.{linebreak}-Automation experience with configuration management tools such as Chef, Ansible, or Puppet.{linebreak}-Intermediate to advanced experience administering and securing an RDB (MySQL or Postgres a plus){linebreak}-Proficient in bash shell scripting (sed + awk) and one of Ruby or Python.{linebreak}-Experience automating application deployments with Capistrano or Jenkins.{linebreak}-Ability to work in a proactive manner and manage your own queue.{linebreak}-Experience with Hashicorp tools, Neo4j, Elasticsearch, Kibana, Grafana is a big plus.{linebreak}{linebreak}About Doximity{linebreak}{linebreak}We’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $2.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunity for you to make an impact—join us!{linebreak}{linebreak}Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.

See more jobs at Doximity

Visit Doximity's website

# How do you apply? Use Apply Button
Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.


Elastic

Cloud Security Engineer


Elastic


infosec

cloud

engineer

infosec

cloud

engineer

1yr

Apply


Stats (beta): 👁 1,309 views,✍️ 0 applied (0%)
{linebreak}At Elastic, we have a simple goal: to solve the world's data problems with products that delight and inspire. As the company behind the popular open source projects — Elasticsearch, Kibana, Logstash, and Beats — we help people around the world do great things with their data. From stock quotes to real time Twitter streams, Apache logs to WordPress blogs, our products are extending what's possible with data, delivering on the promise that good things come from connecting the dots. The Elastic family unites employees across 30+ countries into one team, while the broader community spans across over 100 countries.{linebreak}{linebreak}Thanks to our ongoing expansion we have the opportunity to grow our Cloud Security Operations team. We're part of the Elastic Cloud team with a development, operations and security background who aren’t afraid to get our hands dirty.{linebreak}{linebreak}We’re looking for people who are just as passionate about solving issues with distributed systems as they are to automate, code and collaborate to tackle problems with a proven focus on Security. You will be assisting the development and implementation of security controls to mitigate risks and threats but also participating in daily security operational tasks.{linebreak}{linebreak}Responsibilities{linebreak}{linebreak}{linebreak}* Build and improve security focused tooling for the Elastic Cloud product and infrastructure{linebreak}{linebreak}* Architect and maintain a SIEM infrastructure{linebreak}{linebreak}* Be a part of a Security Incident Response Team{linebreak}{linebreak}* Work closely with the SRE and Development team as well as third party auditors to ensure a smooth road to security compliance and alignment to regulations (SOC2, GDPR etc){linebreak}{linebreak}* Demonstrate and promote Security best practices{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Experience (in 2+ areas){linebreak}{linebreak}{linebreak}* You performed automated and manual testing against a large codebase. You identify and exploit an SQL injection vulnerability without using sqlmap.{linebreak}{linebreak}* Kali Linux for PenTest, Burp or OWASP for security testing.{linebreak}{linebreak}* Ability to exploit XSS in something more meaningful than a PoC alert?{linebreak}{linebreak}* Deploy perimeter scanners against a large network, with knowledge of Snort, Nessus and Bro.{linebreak}{linebreak}* Linux Systems / Containers Security: Hardened a VM with SELinux / AppArmor, tweaked cgroups, created Seccomp profiles.{linebreak}{linebreak}* Profile an application to get the minimum syscall / kernel capabilities gamut required for it to run.{linebreak}{linebreak}* Experience with SOC2, PCI, and HIPAA.{linebreak}{linebreak}* Experience working in a Security Operations Center.{linebreak}{linebreak}* Consistently dealing with security incidents that required quick mitigation and extensive root cause analysis.{linebreak}{linebreak}* Authentication and Authorization protocols such as OIDC, OAuth and SAML. Deployed large scale LDAP / Kerberos?{linebreak}{linebreak}* Familiar with security principles for Software Engineering. Can you help developers build security in throughout the Software Development Process?{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Key Skills{linebreak}{linebreak}{linebreak}* Desire to represent work in git, driven by a GitHub workflow through issues and pull requests and rigorous code reviews{linebreak}{linebreak}* Love open source development, and have contributed to some project somewhere (doesn't have to be ours), whether it's mailing lists, patches, documentation, etc.{linebreak}{linebreak}* Enjoy working remotely and the communication it requires{linebreak}{linebreak}* Love a diverse environment,{linebreak}{linebreak}* Working with men and women all over the world{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Additional Information{linebreak}{linebreak}{linebreak}* Competitive pay and benefits{linebreak}{linebreak}* Stock options{linebreak}{linebreak}* Catered lunches, snacks, and beverages in most offices{linebreak}{linebreak}* An environment in which you can balance great work with a great life{linebreak}{linebreak}* Passionate people building great products{linebreak}{linebreak}* Employees with a wide variety of interests{linebreak}{linebreak}* Your age is only a number. It doesn't matter if you're just out of college or your children are; we need you for what you can do.{linebreak}{linebreak}* Fully remote, with optional coworking from an Elastic office (Mountain View, Amsterdam, Phoenix, etc.) or in your town{linebreak}{linebreak}* Lots of opportunities for conference travel, being in the community is encouraged, not just tolerated{linebreak}{linebreak}{linebreak}{linebreak}{linebreak}Elastic is an Equal Employment employer committed to the principles of equal employment opportunity and affirmative action for all applicants and employees. Qualified individuals will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status or any other basis protected by federal, state or local law, ordinance or regulation. Elastic also makes reasonable accommodations for disabled employees consistent with applicable law.

See more jobs at Elastic

Apply for this Job

👉 Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.