$90k/y-$135k/y Remote InfoSec Jobs in July 2020 Open Startup
RSS
API
Remote HealthPost a job

find a remote job
work from anywhere

Browse 465 Remote InfoSec Jobs in July 2020 at companies like Platform.sh, Defiant and Loadsmart with salaries ranging from $90,000/year to $135,000/year while working as a Security Engineer, Security Analyst Forensics Remediation or Security Engineer. Last post

Test A
Test B
Test C

Browse 465 Remote InfoSec Jobs in July 2020 at companies like Platform.sh, Defiant and Loadsmart with salaries ranging from $90,000/year to $135,000/year while working as a Security Engineer, Security Analyst Forensics Remediation or Security Engineer. Last post

Remote HealthPost a job

Get a  email of all new remote InfoSec jobs

Subscribe
×

  Jobs

  People

πŸ‘‰ Hiring for a remote InfoSec position?

Post a job
on the πŸ† #1 remote jobs board

Last 7 days

The first health insurance for remote startups
A fully equipped health insurance that works for all your global employees

Last 30 days

Defiant


Security Analyst Forensics Remediation

Security Analyst Forensics Remediation


Defiant


infosec

analyst

infosec

analyst


πŸ‘ 972 viewed | ✍️ 41 applied (4%)
\nDefiant is a small, dynamic, fast-growing, and profitable company with loyal customers who love our products and services. We are the global leader in WordPress security, protecting over 3 million websites.\n\nWe're seeking a Security Analyst to work on a contract basis from your home office in Australia or New Zealand from approximately 9-5 AEST Monday through Friday.\n\nCompany Culture\n\nYou'll work with a talented and highly-motivated team that is friendly, fast-moving, self-managing, and highly capable with a sense of humor. Our team's family time is important; we won't typically require long hours when we can avoid it, which is almost always. Our entire team works remotely using Slack for casual interaction, ­so you can live practically anywhere you have a good Internet connection. There's no micro-­management here—we trust that you will see tasks through to completion and communicate with your fellow team members when needed or ask for help when needed.\n\nAt Defiant, ‘trust’ is the attribute we value most highly among our team members. We need to know that you can grab a task, communicate clearly with stakeholders, and see the task to completion with superb attention to detail.\n\nWe use apps like Slack, FogBugz, GitHub, and Google Apps for our workflow.\n\nJob Description\n\nWe are looking for security analysts to join our forensics team. You will assist our customers to investigate how their site was hacked and to repair their site and remove all traces of the intrusion. In addition to this you will also collect evidence from intrusions that will help improve our threat detection. You will need to determine how the intrusion occurred and then collect all IOC’s (indicators of compromise) and share this data with our product team in a structured way.\n\nGeneral requirements:\n\n\n* You must be highly technical and be comfortable with a wide range of open source tools.\n\n* Excellent written and verbal communication skills.\n\n* You must work well in a team.\n\n* You must be nimble, be able to come up with creative solutions to challenging problems and must have a mature approach to problem solving.\n\n* Attention to detail.\n\n\n\n\n\n\n\nRequirements\n\n\nThe specific skills we require for this position are:\n\n\n* A solid understanding of regular expressions. You need to be able to write expressions on the fly to match and remove only malicious code (which is often polymorphic) without affecting any legitimate code.\n\n* At least 5 years of experience administering LAMP systems.\n\n* Ability to program in PHP and JavaScript. Other languages like Python a strong plus.\n\n* Understanding of SQL and ability to use the MySQL client.\n\n* Experience investigating hacked websites, determining how the intrusion occurred and removing the intrusion and restoring the site to a fully functional state.\n\n* An understanding of all major vulnerability types and the ability to explain them to a customer.\n\n* Ability to analyze web log files and determine how an intrusion occurred.\n\n* Must be able to use Linux shell tools like grep, find and any other utility that can assist with investigation and remediation.\n\n* Experience with WordPress required.\n\n* You must be well versed in information security and any certifications you already have in penetration testing or forensics are a strong plus.\n\n\n\n\nAll positions require a trial period of approximately 2-3 weeks with a minimum commitment of 10 hours per week. You will be paid for this short-term contract, and it will be used to evaluate whether both parties want to pursue an ongoing working relationship.\n\nAll offers are contingent on successful completion of a background check. The results of the background check are considered as they relate to the position and do not automatically disqualify someone from a offer of work with the company.\n\n\n\n\nBenefits\nFull-time telecommuting with a company that has been 100% remote for over 5 years. \n\nDiversity at Defiant\n\nWe value diversity and do not discriminate based on race, color, religion or creed, national origin or ancestry, sex, age, physical or mental disability, military or veteran status, gender identity or expression, marital status, sexual orientation, political ideology, economic status, parental status, or any other non-performance-related status.\n\nHIRING PROCESS\n\nWe have a unique process that we use when it comes to hiring our forensic and remediation team. It works as follows:\n\n* The initial step is to fill in the form provided in this application. This is very important because we look at your answers to this form before we look at any other part of your application. The way you answer our form will largely determine if your application moves on to the next step.\n\n* If approved, we will ask you to answer a set of questions to further measure your aptitude in the required skills as well as your written communication.\n\n* If you perform well on the questions, you will move on to a final phone interview via Skype.\n\n* If you are successful, you will join our fast-paced team and start contributing valuable research to Wordfence and the larger online community. All Security Analyst positions start on a paid 3 week trial contract that is available part-time (at least 15 hours per week) with flexible hours.\n\n

See more jobs at Defiant

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Loadsmart

 

Security Engineer

Security Engineer  


Loadsmart


infosec

engineer

infosec

engineer


πŸ‘ 1,388 viewed | ✍️ 249 applied (18%)
\nWho we are: Loadsmart aims to move more with less. We combine great people and innovative technology to more efficiently move freight throughout North America. Our focus is on designing and building the best tools for our team and our customers, using machine learning algorithms to connect cargo with trucks. By better matching supply and demand, we reduce wasted fuel and lost time, cutting out empty miles for motor carriers and providing instant booking for shippers. \n\nWho you are: You believe in game-changing innovations and are excited about reimaging a 700 billion dollar industry.  You take your impact seriously. You are passionate about building solutions that create sustainable, resilient, long-lasting value. You are a first-rate site reliability engineer, with experience and a proven ability to think about deploying software development projects.\n\nThe role: We are looking for a Security Engineer to work remotely based in Brazil or in Florianopolis with Loadsmart. You need to be obsessed about security, both technical and non technical aspects of it. You should have experience and proven ability to analyze, propose and implement safer systems and processes.\n\nKey Responsibilities:\n\n\n* Take a leadership role in driving internal security projects.\n\n* Do regular risk assessment over important assets of the company.\n\n* Build security plans, coordinate among involved people and execute.\n\n* Do regular security tests and code reviews to look for possible threats.\n\n* Assess security aspects of new architectural proposals.\n\n* Analyze non software security threats.\n\n* Document operational procedures and protocols regarding security. \n\n* Maintain disaster recovery plans and train staff on security procedures.\n\n* Generate security reports whenever needed.\n\n\n\n\n Qualifications:\n\n\n* Proved experience as a security engineer or related\n\n* Advanced Linux and networking experience\n\n* Programming experience with Python and at least one more programming language\n\n* Experience with AWS\n\n* Experience with relational databases (PostgreSQL) or columnar databases (Vertica, Redshift, Greenplum) a plus\n\n* Good communication and project management skills\n\n* BS or MS in Computer Science or related field\n\n\n

See more jobs at Loadsmart

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

IOVLABS


Applications Security Engineer

Applications Security Engineer


IOVLABS


infosec

engineer

infosec

engineer


πŸ‘ 876 viewed | ✍️ 60 applied (7%)
\nWe are seeking a Security Engineer !\n\nWe’re looking for a person who is passionate, analytical, and hard-working, with an interest in cryptocurrencies and the blockchain ecosystem. \n\nAs part of our IOV Labs Security Team, you will help to research attacks and defense techniques and develop innovative tools to help automate detection and response tasks. You will also work in close collaboration with internal development teams to develop new capabilities to improve the security of web and decentralized applications, its users, and the company's infrastructure. We’re looking for an offensive security engineer who wants to challenge themselves on the defensive side of the table.\n\nMain Responsibilities:\n\n\n* Develop and deploy security tools, monitoring, and detection infrastructure.\n\n* Investigate security incidents.\n\n* Conduct research on attack techniques to better predict and prevent future attacks.\n\n* Interact with internal teams, contribute to the secure design of new products and features.\n\n* Review source code for security weaknesses.\n\n\n\n\nExperience & Skills Required\n\n\n* Significant experience in application and network security.\n\n* Knowledge of Java, Python, Javascript, Go.\n\n\n\n\nOther Desired Skills\n\n\n* Experience with cryptocurrency networks\n\n* Knowledge of C/C++, Rust.\n\n* Experience with virtual and containerized environments\n\n* Experience conducting vulnerability research\n\n* Experience mitigating network attacks\n\n* Experience in incident detection, incident response, and forensics\n\n\n\n\nType\n\n\n* Full time & remote !!\n\n\n\n\n Join our team to be part of the next technological revolution and help us build the Internet of the Future.

See more jobs at IOVLABS

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

SpotMe

 

Information Security Analyst

Information Security Analyst  


SpotMe


infosec

analyst

infosec

analyst


πŸ‘ 100 viewed | ✍️ 18 applied (18%)
\nSpotMe is the worldwide leader of enterprise engagement platforms with a focus on live events, virtual and hybrid meetings, as well as long-term engagement.\n\nThe Covid19 crisis has created a big shift in the way people work, meet, and interact with one another. As a result, we’re seeing a total reset of the industry, and while this is a big change, it is also a fantastic opportunity to transform the way people engage in meetings and events.\n\nIn the past months, we have fully embraced this opportunity, and have evolved our platform and apps to match these new needs. Our agility has allowed us to adapt with the fastest possible pace, by continually delivering and deploying new features and innovations.\n\nIn parallel, we have also had to adapt the way we work, with a focus on flexibility. Our employees are now free to decide when they want to work from home, and when they come into our offices. In fact, they can work from anywhere they want in Europe or the US.\n\nIn this role, you will be providing support in maturing and optimizing information security and compliance across SpotMe global operations, and reporting directly to the CEO.  Responsibilities:\n\n\n* Responsible for SpotMe’s information security programs and strategic projects to further strengthen SpotMe information security governance\n\n* Responsible for the design, implementation, review and audit of new and existing security controls\n\n* Responsible for the ISO27001 certification\n\n* Manage SpotMe’s existing security compliance and audit programs (including SOC 2 reporting, penetration testing, network & vulnerability scanning) as well as customer-initiated audits\n\n* Respond to information security and data privacy due diligence requests from customers\n\n* Conduct risk assessments with internal parties and with 3rd party vendors; monitor and support reporting on risk reduction activities; drive corrective actions to mitigate vulnerability risks\n\n* Support executive and technology management with organization, process and architecture recommendations; define the organizational security posture, best practices, mailing lists and threat intelligence feeds reviews, as well as input to security governance and policy \n\n* Conduct internal audits to ensure that compliance towards established standards is maintained\n\n* Foster a security culture with the teams and deliver annual internal training programs\n\n* Govern disaster recovery (DR) and business continuity (BC) plans and related procedures \n\n* Maintain documentation of projects, plans and actions taken towards information security \n\n* Report to executive and engineering teams on governance and policy violations \n\n\n\n\nRequired skills and experience:\n\n\n* 3+ years of experience in information security, auditing or consulting with high-growth technology businesses\n\n* Understanding of, and implementation experience with ISO 27001:2013 and AICPA SOC 2 attestation standards\n\n* Understanding of, and compliance experience with the EU General Data Protection Regulation (GDPR)\n\n* Knowledge of common vulnerability frameworks and system, application and database hardening techniques and practices \n\n* Knowledge of networking standards (Ethernet, WLAN, TCP/IP, DNS) and Linux networking tools \n\n* CISSP certification or equivalent is required\n\n* Excellent English in verbal and written communications\n\n\n\n\nYour personality:\n\n\n* Keen to deliver to the highest existing standard with an uncompromised attention to detail\n\n* Deliver on time and to specification levels\n\n* Confident, proactive, self-starter, organized\n\n* Collaborative approach to problem-solving\n\n* This is an independent role that requires a team player for implementation\n\n* Willing and able to take responsibility for his/her actions and for the team delivery\n\n* Curios and open minded\n\n* Excellent listening and communication skills, as well as willingness to help others\n\n* Possesses a solid dose of common sense\n\n\n\n\nDo you want to join us in this exciting adventure? Please do not hesitate to reach out to us.

See more jobs at SpotMe

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

vast limits

 

Security Engineer Windows Endpoints

Security Engineer Windows Endpoints  


vast limits


infosec

engineer

infosec

engineer


πŸ‘ 87 viewed | ✍️ 10 applied (11%)
\nWir sind eine erfolgreiche Softwarefirma, die organisch weiter wachsen möchte. Wir sind inhabergeführt, nicht fremdfinanziert und haben spannende Unternehmenskunden in über 30 Ländern.\n\nWir sind der Überzeugung, dass Micromanagement tödlich ist für Kreativität und Produktivität. Wir bieten eine offene Arbeitskultur, in der die Mitarbeiter ihren Arbeitsort frei wählen können und sich den Tag selbst einteilen.\n\nWir entwickeln Software für die Unternehmens-IT, weil wir den Markt kennen und die Bedürfnisse von Fachabteilungen und Mitarbeitern verstehen. Wir wissen, wie IT-Profis arbeiten und welche Werkzeuge sie verwenden. Wir wissen auch, wie komplex ein großer Teil der Unternehmenssoftware ist. Wir wollen dazu beitragen, dass sich das ändert.\n\nUnser Produkt uberAgent bietet tiefe Einsichten in User Experience und Security von physischen PCs und virtuellen Desktops. Mit Hilfe dieser Informationen optimieren unsere Kunden die Geschwindigkeit, Sicherheit und Stabilität der Endgeräte ihrer Mitarbeiter.\n\nDie Kombination aus einfacher Bedienung und wertvollen Metriken macht uberAgent zu einem Produkt, mit dem sehr gerne gearbeitet wird. Insofern passt es perfekt zu Splunk, einer leistungsfähigen und gleichzeitig benutzerfreundlichen Big Data-Plattform, die von uberAgent für Datenspeicherung und -visualisierung verwendet wird.\n\nDeine Aufgaben\n\nWir leben Qualität. Zusammen mit Deinen Kollegen bietest Du Kunden und Partnern Betreuung auf höchstem Niveau bei allen technischen und vertrieblichen Fragen.\n\nDies umfasst:\n\n\n* Kontakt zu Partnern halten\n\n* Webinare für Interessenten durchführen\n\n* Technische und vertriebliche Anfragen bearbeiten\n\n* Vorträge auf Konferenzen halten\n\n* Blog- und KB-Artikel verfassen\n\n* Unsere Entwickler unterstützen\n\n\n\n\nDas wünschen wir uns\n\nDie einzigen Qualifikationen, die uns wirklich wichtig sind, sind der Drang, das bestmögliche Resultat zu erzielen und der Wunsch, jeden Tag etwas dazuzulernen.\n\nDaneben erwarten wir:\n\n\n* Langjährige Erfahrung mit Security in großen Unternehmen\n\n* Sehr gute Kenntnisse in Windows-Interna\n\n* Eigenständiges Arbeiten\n\n* Hang zur Perfektion\n\n* Sehr gute Deutsch- und Englischkenntnisse\n\n* Hauptwohnsitz in Deutschland\n\n\n\n\nZusätzlich freuen wir uns über:\n\n\n* Gute Kenntnis eines oder mehrerer SIEMs (z.B. Splunk)\n\n* Erfahrung mit Pentesting, Hacking, Threat Hunting\n\n* Erfahrung mit Automatisierung, Skripting, Programmierung\n\n* Community-Engagement, Bloggen (bitte schicke uns Links)\n\n\n

See more jobs at vast limits

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Ascension

 

Security Architect

Security Architect  


Ascension


infosec

architecture

infosec

architecture


πŸ‘ 91 viewed | ✍️ 12 applied (13%)
\nWhat You Will Do\n\nThe Cloud IAM Architect provides technical leadership in the planning, design and implementation phases of Cloud IAM. Associate in this role will work cross-functionally to help implement and operationalize some of the most advanced cloud architectures running in the Cloud.\n\nResponsibilities:\n\n\n* \n\nWork with various cloud providers (AWS, Azure, Google) to create, maintain and enforce policies and procedures that govern the IAM roles in all cloud infrastructures.\n\n\n* \n\nProvide day to day and escalated support for cloud and on-premise identity systems (Active Directory, Azure AD, G Suite/Google Cloud Identity.\n\n\n* \n\nSubject matter expert for cloud identity and access management processes and procedures for GCP and Azure cloud infrastructures\n\n\n* \n\nImplements policies and procedures based on cloud governance and best practices.\n\n\n* \n\nWork alongside engineering teams to implement solutions for infrastructure and POCs, deliver technical expertise and establish best practices to manage Cloud Identities and Access.\n\n\n* \n\nDesigns and supports application authentication methods across Ascension. \n\n\n* \n\nExamples include OAuth, SAML, LDAP (Azure AD, OID, Optimal, G Suite). \n\n\n* \n\nCreate and maintain a new IAM approval process using IdentityIQ (SailPoint) to automate and simplify the approval process for granting access to cloud resources. \n\n\n* \n\nAssists with decisions based on the highest degree of technical complexity and thorough understanding of the implications across the organization.\n\n\n* \n\nTranslates application and end user system requirements into technical requirements.\n\n\n* \n\nAnalyzes and solves complex problems, making recommendations as needed, applying creative, in-depth technical and theoretical knowledge.\n\n\n* \n\nDefines strategies for networking, server platform, desktop services, and security required to support Clinical Foundation Suite environment\n\n\n* \n\nLeads orientation and planning review sessions with the local Information Technology project managers.\n\n\n* \n\nAssists the national technical program manager in the development and maintenance of the standard project plan template.\n\n\n* \n\nThe candidate must have knowledge of multiple technology platforms and architecture.\n\n\n\n\n\nQualifications\nEducation:\n\n\n* \n\nBachelor's degree preferred or equivalent experience\n\n\n\n\n\nWork Experience:\nRequired\n\n\n* \n\n5-7 years of experience in Information Security\n\n\n* \n\nCloud Identity and Access Management to create and manage permissions for Google Cloud (GCP) resources.\n\n\n* \n\nIn-depth understanding of Identity and Access Management (IAM) concepts and processes\n\n\n* \n\nDesigning and developing Cloud-specific security policies, standards and procedures.\n\n\n* \n\nDesigning and enforcing IAM policies to support Data Governance and DLP \n\n\n* \n\nKnowledge and understanding of network and security fundamentals, protocols, and technologies\n\n\n* \n\nAdvanced Information Security technical skills and understanding of information security practices and policies\n\n\n* \n\nHands on design, implementation, configuration, integration and deployment experience in the Cloud technologies\n\n\n\n\n\nPreferred\n\n\n* \n\n3+ years of experience deploying, building, and maintaining applications on Google Cloud Platform (GCP).\n\n\n* \n\nExperience protecting PII information using encryption and data masking/sub-setting technologies.\n\n\n* \n\nKnowledge in requirement gathering, creating SOPs, documentation and reporting\n\n\n* \n\nDemonstrated experience in leading cross functional initiatives along with demonstrated experience interacting with and influencing decision-making by non-analytical business audiences\n\n\n* \n\nExperience in integrating provisioning systems with PeopleSoft ERP\n\n\n* \n\nWorking knowledge of all aspects of the security audit process\n\n\n* \n\nGCP Professional Cloud Architect or Professional Cloud Developer certification\n\n\n\n\n\nWhat You Will Need\n\nEducation:\n\n\n* Diploma \n\n\n* High school diploma/GED with 2 years of experience, or Associate's degree, or Bachelor's degree required\n\n\n\n\n\n\n\n\nWork Experience:\n\n\n* 1 year of experience required. 4 years of experience preferred. 2 years of leadership or management experience preferred.\n\n\n\n\nEqual Employment Opportunity

See more jobs at Ascension

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

OliBank


Security Developer

Security Developer


OliBank


infosec

dev

digital nomad

infosec

dev

digital nomad


πŸ‘ 380 viewed | ✍️ 10 applied (3%)
\nAbout us:\n\nAt OliBank we are working on unique solutions and challenging problems all around financial technology. This position will help us build a brand new product that will revolutionize business banking. Our mission is to create prosperity around the world by breaking down all barriers of trade and commerce. At OliBank, we are looking for more top talent to help us fulfill this vision. \n\nThe experience of working remotely at OliBank is unlike anywhere else. We focus heavily on active team collaboration; hence your team members will never be from far away time zones. No midnight meetings or choppy calls because we recruit only from just a handful of countries to keep everyone connected. We provide high-quality video equipment to make it feel like we are next to each other. Working at OliBank is like working with an office-based high-performance team but without the commute. All developer meetings are held in spoken Spanish, and team collaboration is highly valued.\n\nEngineering at OliBank is not like a soulless outsourced sweatshop. You are valued as a team member from day one with long-term career prospects. If you are looking to be challenged, to grow, and to be able to contribute, this might just be the best place for you.\n\nWe believe that there is work, and then there is work that you were born to do. The kind of work that defines who you are and that you can be proud of. The kind of work you’d sacrifice a night or a weekend for. That is the kind of work we do at OliBank. People don’t come here for safety, they come for the journey. They want to create something big and meaningful that reaches hundreds of millions of people.\n\nWe are looking for an exceptional JavaScript Developer for our Product & Innovation team to join in our accelerated growth.\n\nWhat’s needed from you: \n\n\n* Expert knowledge of JavaScript working with a reputable company\n\n* 100% Self-starter mentality  \n\n* Willingness to put in the work and be part of an elite hard-working team\n\n\n\n\nWhat is the platform built with?\n\nThe Platform is built with node.js, vue.js , storybook and MongoDB, the more you can tick off from this list the better. You will be working with the most current frameworks available.\n\nIf hired then you will be working directly with an innovative team that consists of full-stack, front-end, and backend developers with outstanding programming and problem-solving skills, so you will be picking up new skills in no time. \n\nThe ideal candidate:\n\n- Is flexible and a true self-starter, doesn't take anything for granted and a boss is not necessarily needed to get the job done while being precise and getting the work done right.\n\n- Has a proven track record of delivering high-quality work and showing a high level of responsibility for all tasks.\n\n- If asked, capable of providing references from past co-workers and managers. 

See more jobs at OliBank

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Doximity


Software Engineer, Security

verified
North America

Software Engineer, Security


Doximity

North America

security

devops

health care

hackerone

security

devops

health care

hackerone


πŸ‘ 4,894 viewed | ✍️ 138 applied (3%)
Doximity is transforming the healthcare industry. Our mission is to help doctors be more productive, informed, and connected. As a software engineer, you'll work within cross-functional delivery teams alongside other engineers, designers, and product managers in building software to help improve healthcare.Β Β \n\nOur team brings a diverse set of technical and cultural backgrounds and we like to think pragmatically in choosing the tools most appropriate for the job at hand.\n\n**Here's How You Will Make an Impact**\n\nHelp maintain our private security bug bounty program hosted on [hackerone](https://www.hackerone.com/): this involves engaging security researchers, validating security finds, determining impact/risk, awarding bounties, and fixing or coordinating remediation efforts.\nHelp set good security posture; this includes finding bad security habits in applications and encapsulating good secure defaults into libraries/modules, creating training materials for application developers, etc.\nWork side-by-side with the rest of the infrastructure, application, and data teams to empower all of engineering to move quickly while meeting security requirements.\nDesign and implement secure and easy-to-use tooling and abstractions for other teams to leverage.\nActive involvement in the design, implementation, and maintenance of the development, staging, and production infrastructure.\nParticipate in an on-call rotation for the services owned by your team.\nHelp ensure the stability and uptime of services within the organization.\nCreate concise post-mortems in the event of an outage.\nWrite and maintain run-books for other engineers to leverage.\nEnsure proper security, monitoring, alerting, and reporting.\n\n**What we’re looking for**\n\nYou’re a software engineer with years of experience and a deep understanding of software engineering practices.\nYou either have experience with security or really want to dive in headfirst and learn.\nYou are not afraid of:\nReading, reviewing, and implementing our implementation of the oauth spec.\nGetting dirty with CORS, CSRF, XSS, etc\nYou’re proficient in:\nRuby, Python, or Golang. Not afraid to learn the rest.\nJavascript\nYou have experience working with Terraform and Chef (or similar tooling).\nYou are proficient with Linux/Unix, AWS, and Git.\nYou are self-motivated and able to manage yourself and your own queue.\nYou are a problem solver with a passion for simple, clean, and maintainable solutions.\nYou agree that concise and effective written and verbal communication is a must for a successful team.\nYou are able to maintain a minimum of 5 hours overlap with 9:30 to 5:30 PM Pacific time.\nYou can dedicate about two weeks per year for travel to company events.\n\n**Benefits & Perks**\n\nGenerous time off policy\nComprehensive benefits including medical, vision, dental, Life/ADD, 401k, flex spending accounts, commuter benefits, equipment budget, and continuous education budget\nPre-IPO stock incentives\n.. and much more! For a full list, see our career page\n\n**About Doximity**\n\nHere are some of the ways[ we bring value to doctors](https://drive.google.com/file/d/1qimYh0mG3i1nTJe6jDCDepJt2i4o8MEB/view)\nOur web applications are built primarily using Ruby, Rails, Javascript (Vue.js), and Golang\nOur data engineering stack run on Python, MySQL, Spark, and Airflow\nOur production application stack is hosted on AWS and we deploy to production on average 50 times per day\nWe have over 350 private repositories in Github containing our applications, forks of gems, our own internal gems, and [open-source projects](https://github.com/doximity)\nWe have worked as a distributed team for a long time; we're currently [about 65% distributed](https://blog.brunomiranda.com/building-a-distributed-engineering-team-85d281b9b1c)\nFind out more information on the [Doximity engineering blog](https://technology.doximity.com/)\nOur [company core values](https://work.doximity.com/)\nOur [recruiting process](https://technology.doximity.com/articles/engineering-recruitment-process-doximity)\nOur [product development cycle](https://technology.doximity.com/articles/mofo-driven-product-development)\nOur [on-boarding & mentorship process](https://technology.doximity.com/articles/software-engineering-on-boarding-at-doximity)\n\nWe’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $3.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunities for you to make an impactβ€”join us!\n\n*Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.*\n\nΒ \n\nΒ \n\n#Location\n- North America

See more jobs at Doximity

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

PrintWithMe, Inc.


Software Engineer


πŸ‡ΊπŸ‡Έ US-only

Software Engineer


PrintWithMe, Inc.

πŸ‡ΊπŸ‡Έ US-only

python

aws

rails

tdd

python

aws

rails

tdd


πŸ‘ 6,059 viewed | ✍️ 4 applied (0%)
Are you looking for a flexible work environment where you can take real ownership of a product? Do you approach software development from a test-driven and security-minded point of view? If so, we have an exciting career opportunity for you!\n\n# Responsibilities\n * Develop software using TDD and Agile methodologies.\n* Pair (virtually) with our Lead Engineer regularly to solve interesting problems.\n* Help architect the infrastructure that runs our software using Infrastructure as Code and DevOps best practices.\n* Scale systems to meet increasing demand.\n* Improve the availability and resilience of existing systems.\n* Collaborate with our diverse team to solve problems across all departments in our company.\n* Interact directly with CEO during product road-mapping. Have a real voice and seat at the table. \n\n# Requirements\n*** Minimum of 3 years full-time software engineering experience. Required.**\n* While this position is Remote (U.S.), you must reside in the United States and be authorized to work.\n* You must be passionate about building high-quality software with user security and privacy in mind.\n* You have a learning mentality, constantly reading about and testing out new technologies.\n* You have proficiency in multiple programming languages and you have a pragmatic approach about choosing the correct language for the job.\n* Python is our primary language and experience with it is a plus.\n* You have experience managing AWS services in production environments, including ECS, RDS, EC2, and S3.\n* You are fluent in English.\n* We demonstrate high integrity in everything you do.\n* You must be available for certain meetings and pairing sessions weekly, but other than that, **scheduling your time to code is generally flexible. We are a very trusting environment.** \n\n#Salary\n$90,000\n\n\n#Location\n- πŸ‡ΊπŸ‡Έ US-only

See more jobs at PrintWithMe, Inc.

# How do you apply?\n\n Send your resumΓ© to [email protected] with subject line "Software Engineer (Remote OK)". Bonus points if you communicate your interest in our company in particular.\n\nBenefits include flexible work schedule, subsidized health plans, dental plans and vision plans, 401K matching, a training allowance, and quarterly volunteering time off.\n\nWe have many exciting things to build ahead. Join us and let's get to work!\n\n\nPrintWithMe does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.*\n
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Shogun Labs

 

Security Engineer

Security Engineer  


Shogun Labs


infosec

engineer

infosec

engineer


πŸ‘ 85 viewed | ✍️ 9 applied (11%)
\nWe Are…\n\nShogun, and we're on a mission to help people create the best eCommerce experiences in the world.\n\nWe were in the Winter 2018 batch of Y-Combinator, we just raised a Series A investment, we have over 10,000 active paying clients, and we're preparing to launch a new product in 2020 (you can read more in TechCrunch).\n\nOur teams are fully distributed and global (check out our team page)! We have no office, so we are looking for team members that are comfortable with and motivated by the opportunity to work remotely.\n\n\n\nYou Are…\n\nA self-motivated and passionate Security Engineer (with experience in Ruby on Rails and/or Go) looking to join our engineering team and help secure our applications and cloud infrastructure.\n\nWe're looking for a talented Security professional to investigate threats, triage and resolve vulnerabilities, help to write and implement our information security policy, and build tools that allow engineers to quickly and easily develop secure code.\n\n\n\nIn This Role You Will...\n\n\n* Help other engineers design more secure software via design input and code review\n\n* Contribute to the implementation of secure development practices\n\n* Triage and resolve security vulnerabilities in the application layer, including those reports through our bug bounty program at Federacy\n\n* Deliver well-engineered, scalable solutions that improve our defense-in-depth\n\n* Author and implement an information security policy\n\n* Teach and learn from your teammates\n\n\n\n\n\n\nYou Have...\n\n\n* 5+ years software engineering experience\n\n* 3+ years of Ruby on Rails and/or Go experience, including security responsibilities\n\n* Penetration and vulnerability testing experience\n\n* Proven knowledge of authentication and authorization\n\n\n\n\n\n\nNice-to-Haves...\n\n\n* Experience with Javascript, MongoDB, and/or Redis\n\n* Experience securing a cloud platform (AWS, GCP, Azure, etc)\n\n* Clear and precise written and interpersonal communication skills\n\n* Effective time management and organizational skills\n\n\n\n\n\n\nWe Offer\n\n\n* Competitive salary\n\n* Benefits (vary by location)\n\n* A highly skilled and dedicated team that is fun to work with.\n\n* Remote work – We are a fully distributed team that works from anywhere with good internet. (+13 countries just on the engineering team!)\n\n* Occasionally, we hire on a full time contractor basis to begin with. Team members enjoy the same opportunities for great compensation, full time positions, and consideration, regardless of location.\n\n\n\n\n\n\nTry Out Shogun \n\nIf you want, you can use Shogun to get a feel for the product. We'd love to hear what you think. Here is how:\n\n* Create a Shopify Developer Account: https://developers.shopify.com\n\n* Create a development store: https://help.shopify.com/en/partners/dashboard/development-stores\n\n* Install Shogun on your development store: https://apps.shopify.com/shogun\n\n* Create a couple of pages. We will take a look.\n\n\n\nShogun supports workplace diversity and does not discriminate on the basis of race, color, religion, gender identity/expression, national origin, age, military service eligibility, veteran status, sexual orientation, marital status, physical or mental disability, or any other protected class

See more jobs at Shogun Labs

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Carve Systems


Software Deconstruction Engineer Aka. Infosec Consultant

Software Deconstruction Engineer Aka. Infosec Consultant


Carve Systems


infosec

consulting

dev

engineer

infosec

consulting

dev

engineer


πŸ‘ 360 viewed | ✍️ 8 applied (2%)
\nUpdate April 2020: If you are interested in what you read below, please apply and we'll get you started on the process. The process starts with a technical puzzle that should take around an hour and will give you an idea of exactly what we mean by software deconstruction. Got questions? You'll get a short intro call right after the puzzle. This is the best place to raise any questions you might have. Carve just hired someone and we are anticipating a late-summer, early-fall 2020 opportunity for the next great candidate. If you are a great candidate and have a different schedule we can talk about that right up front. Thanks ...the Carve team.\n\nThis job is only listed on Stack Overflow: https://stackoverflow.com/jobs/268907/software-deconstruction-engineer-aka-infosec-carve-systems\n\nWhat's the job?\n\n\n* Information security consulting: assessing the security of software and hardware systems.\n\n* Understanding how systems are built and learning how to break them.\n\n* Working with our experienced team on short-to-medium term engagements.\n\n\n\n\nWhat would you do?\n\nEvery two to three weeks you'll get a new project to work on. A typical project will involve:\n\n\n* Recon: Digging into the functionality, design, and implementation of the software system or device.\n\n* Probing: Searching for implementation weaknesses which could indicate a security issue. This is a combination of tools that we use, tools that we build, and manual probing. For device projects this can include firmware extraction, analysis, and hardware interfacing.\n\n* Extending: Now that you've found a weakness... how far can you extend your access into the system?\n\n* Writing: Now that you've hacked your way in you'll need to write-up your findings and work with the developers to make sure they understand what the problem is and how to fix it.\n\n\n\n\nIf you enjoy puzzles and technical variety you'll find this job very enjoyable.\n\nWho are we looking for?\n\n\n* You do not need to have information security experience. If you've got the right technical background and problem solving skills we can train you in the dark arts of infosec.\n\n* People who enjoy writing code, solving problems with code, and learning how computers work at a fundamental level.\n\n* This is not a "travel every week" type of consultant. We do sometimes work at a client site but most of the time we do our projects remotely.\n\n\n\n\nWe’re hiring for all experience levels: from zero career experience to information security veterans.\n\nSkills & Requirements\n\n\n* Deep experience in software and computers. You may have earned this experience with a degree, career as a software developer, or perhaps you've invested in a technical hobby that took you deep into the rabbit hole.\n\n* Technical writing skills (English)\n\n* Resident of the USA and able to be employed in the USA.\n\n\n\n\nWe encourage remote candidates to reply *if* they are residents of the USA.

See more jobs at Carve Systems

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Open-Xchange


Platform Security Engineer EU

Platform Security Engineer EU


Open-Xchange


infosec

engineer

infosec

engineer


πŸ‘ 91 viewed | ✍️ 9 applied (10%)
\nThis position will support our SaaS email platform, providing service to large customers for tens of millions of end users.Core competencies required include platform security, automated deployment, virtualization and internet protocols. You will be expected to provide quick resolution of difficult technical problems. This position will also be responsible for major contributions to technical architecture, documentation and systems project management. \n\nWe can only employ people from the following countries: Germany, Austria, Netherlands, Finland, Italy, Spain, and France.\n\n\n Your key responsibilities / Your passion\n\n\n* Review and evaluate current security standards based upon best practices and latest technologies\n\n* Server configuration and management using IaC (Terraform, Ansible, Chef)\n\n* Define and implement platform architecture and binding security concepts/policies at a deeply technical level both internally and externally\n\n* Ensure the security requirements of our customers and that the requirements for our security certifications (ISO 27001) are met and documented correctly\n\n*  Assist with an overall security concept for our container platform approach\n\n* Work closely together with our platform architecture experts, with a particular focus on the security of the platform\n\n* Assit in providing security related feedback for mission-critical software such as Dovecot, LDAP, Galera, Cassandra, OX AppSuite with a particular focus on hardening\n\n* Prepare system security reports by collecting, analyzing, and summarizing data and trends\n\n* Maintain security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs\n\n* Document architecture and essential function methodologies\n\n* Collaboration with global operations teams\n\n\n\n\n\n \n Your background / What you bring to the table\n\n\n* Bachelor or master degree in computer science or comparable +10 years job experience\n\n* 3+ years experience in the area of Operations security\n\n* 8+ years experience working with Linux\n\n* Strong experience with configuring, validating and securing environments utilizing firewalls and iptables\n\n* Experience and understanding of hardening Linux-based environments with heterogenous applications\n\n* Knowledge of Internet, authentication, and authorization protocols (HTTP, LDAP, SAML, OAuth/Openid Connect), Privileged Identity Management, Identity Federation\n\n* Knowledge of symmetric and asymmetric encryption technologies, including concepts such as Forward Secrecy, Padding Modes, Elliptic Curves\n\n* Strong Experience with Linux kernel tuning, TCP/IP, Mcast and strong networking fundamentals\n\n* Experience with configuring and operating a Host-based IDS such as OSSEC across a large platform\n\n* Deep understanding of encryption technologies, including keeping cipher suite configurations up-to-date at the OS and application level\n\n* Experience with security incident response\n\n* Solid understanding of networking concepts: the OSI model, TCP, IP, routing, firewalls, load balancers\n\n* Interest in learning new technologies and working with proof of concepts to promote new technologies\n\n* Excellent written and verbal communication skills; willingness to present technical information to a group\n\n* Understanding of multi-tiered applications\n\n* Experience with logging technologies such as Graylog, ELK stack, or Splunk\n\n* Design operation concepts, implementation of IaC automation and provide documentation \n\n* Lead and assist in areas of technical innovations and security improvements\n\n* Some domestic and international travel will be required\n\n\n\n\n\n Our offer to you\n\n\n* Exciting work on a modern open-source cloud software in an internationally operating company\n\n* Plenty of scope for your own ideas and design decisions\n\n* Flexible working hours and the ability to work from home\n\n* Equipped with the up-to-date hardware\n\n* Trainings and continuous personal development\n\n* Flat hierarchies with an "Open Door" philosophy\n\n\n

See more jobs at Open-Xchange

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Numbrs


Security Engineer

Security Engineer


Numbrs


infosec

engineer

infosec

engineer


πŸ‘ 100 viewed | ✍️ 9 applied (9%)
\nNumbrs is reshaping the future of the workplace. We are a fully remote company, at which every employee is free to live and work wherever they want.\n\nNumbrs was founded with the vision to revolutionise banking. Therefore from day one Numbrs has always been a technology company, which is driven by a strong entrepreneurial spirit and the urge to innovate. We live and embrace technology.\n\nAt Numbrs, our engineers don’t just develop things – we have an impact. We change the way how people are managing their finances by building the best products and services for our users.\n\nNumbrs engineers are innovators, problem-solvers, and hard-workers who are building solutions in big data, mobile technology and much more. We look for professional, highly skilled engineers who evolve, adapt to change and thrive in a fast-paced, value-driven environment.\n\nJoin our dedicated technology team that builds massively scalable systems, designs low latency architecture solutions and leverages machine learning technology to turn financial data into action. Want to push the limit of personal finance management? Join Numbrs.\n\nJob Description\n\nYou are responsible for planning, developing, and monitoring all information security aspects of the organisation and our large scale micro-service based distributed systems. From establishing security policies, implementing active defense-in-depth strategies, to conducting reviews of software and infrastructure, you are leading a security-first organisation without compromise. You enjoy learning new things and keep yourself up to date on the latest security threats and defenses. You are a great teammate who thrives in a dynamic environment with rapidly changing priorities.\n\nAll candidates will have\n\n\n* a Bachelor's or higher degree in a technical field of study or equivalent work experience\n\n* a minimum of 3 years security work experience\n\n* experience in establishing organisation wide security policies and procedures in a regulated environment\n\n* experience in penetration testing web-based apps, mobile apps and back-end infrastructure\n\n* experience implementing modern crypto systems and securing sensitive data in motion and at rest\n\n* experience in security auditing of back-end distributed systems and infrastructure\n\n* good knowledge of at least one modern programming language, such as Go, Java, C++, or Python\n\n* hands-on experience with performing code and design reviews\n\n* excellent troubleshooting and creative problem-solving abilities\n\n* excellent interpersonal skills, English written and oral communication\n\n\n\n\nIdeally, candidates will also have\n\n\n* experience with the management of personal data according to the GDPR\n\n* hands-on experience in securing and monitoring Amazon Web Services infrastructure\n\n* good understanding of modern authorisation protocols like OAuth2 and OpenID Connect\n\n* good German written and oral communication skills\n\n\n\n\nLocation: Remote

See more jobs at Numbrs

Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

DHIS2


Security Software Engineer

Security Software Engineer


DHIS2


infosec

dev

engineer

digital nomad

infosec

dev

engineer

digital nomad


πŸ‘ 345 viewed | ✍️ 9 applied (3%)
\nAt DHIS 2 we are making a positive impact on the world. DHIS 2 software engineers develop a platform used to improve health care at a global scale. We work directly with end-users in order to understand how our system is being used. DHIS 2 developers work in small teams and have great impact on the product. We are seeking a security software engineer who is passionate about creating secure, reliable software systems.\n\nDHIS 2 is a web-based, open source data platform used by governments, international development agencies and NGOs in more than 90 countries worldwide. It is currently recognized as the world's most widely adopted e-health information platform. The system is used to improve access and use of information within health, education, sanitation, nutrition, disaster relief and other domains. The platform has become a global standard within international development and has a huge impact on the way health systems are being managed.\n\nDHIS 2 is changing the way developing countries and NGOs manage their health systems and programs through a world class data platform. We work on projects with global reach and scale, such as:\n\n\n* Disease surveillance and monitoring in collaboration with the Centers for Disease Control and Prevention (CDC). DHIS 2 is used to notify the right people about possible disease outbreaks so that action can be taken in time.\n\n\n\n\n\n* HIV/AIDS control in collaboration with PEPFAR, the largest initiative ever for combating a single disease. DHIS 2 is used to collect data and provide analytics and insights into how funding can be spent most effectively.\n\n\n\n\n\n* Health information management systems with more than 60 ministries of health worldwide, including South Africa, Tanzania, Ghana and Cambodia. DHIS 2 is used to collect and analyze data for areas such as service utilization, family planning and immunization.\n\n\n\n\n\n* Program monitoring and evaluation with more than 70 NGOs such as Medecins Sans Frontieres, Save the Children, and PSI. DHIS 2 is used to analyse the impact of programs, improve planning and guide resource utilization.\n\n\n\n\nAt DHIS 2 you will be specialize in building and maintaining a secure and reliable software platform. You will play a key role in the software design, implementation and testing, where you apply security thinking and best-practices to the process. You will advise, train and encourage fellow engineers to adopt secure software development practices, as well as writing source code on your own. The role encourages you to research and identify security flaws and attack vectors in the source code base, as well as ensuring these will be corrected. You will help defining and implementing an organization-wide security strategy.\n\nAt our team you will be part of the software design process and have great influence on the end product. We give you the vision and the challenge - you have the freedom to choose your own approach to problem solving. And of course, you can pick your hardware, tools and software of choice.\n\nOur platform is built API-first with an extensible app architecture. We do continuous delivery and short iterations. You can find our source code on GitHub. Check out the backend repository and a typical front-end app repository.\n\nTo learn more about how it is to work at DHIS 2, have a look at this video.\n\n\n\nSkills\n\n\n* Experience with secure software engineering practices.\n\n* Knowledge about application security risks including OWASP top 10.\n\n* Experience with Java development (Java 8) and Maven.\n\n* Experience with PostgreSQL, MySQL or other relational databases.\n\n* Working proficiency and communication skills in verbal and written English.\n\n\n\n\n\n\nNice-to-have skills\n\n\n* Relevant security certifications.\n\n* Work experience from similar role.\n\n\n\n\n\nLocation\n\nFor this position we accept both remote, partly remote and on-site work at our Oslo offices.

See more jobs at DHIS2

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Sonatype

 

Senior Security Researcher Applications

Senior Security Researcher Applications  


Sonatype


infosec

senior

infosec

senior


πŸ‘ 74 viewed | ✍️ 8 applied (11%)
\nThe Senior Security Researcher will investigate and analyze vulnerabilities in open-source software. Sonatype is looking for a passionate, driven and talented developer to provide high-quality security data from researching software vulnerabilities.  This is not a development position but relies on development experience to help navigate complex architectures and threat vectors in open-source software. This high-quality security data ensures that our customers are getting maximum value out of our products making them feel like they are part of the Sonatype family.   If you are a positive-thinker and problem-solver and believe that customer success and company success go hand-in-hand, this is a great job for you. This position will provide a valuable learning opportunity with the great potential to grow your newly started career in cyber-security. Enjoy your job as you work in a fast-paced, flexible, and fun environment, with talented, diverse, and forward-thinking individuals. Key Areas of Focus\n\n\n* Review, isolate, analyze, and reverse engineer vulnerabilities in open-source software\n\n* Document attack capabilities\n\n* Provide detection and remediation guidance\n\n* Aid in ideas and prototypes for new tooling\n\n* Collaborate with other team members toward shared product goals\n\n* Improve Sonatype products by providing valuable security data\n\n* Work with technology and business team members to define and refine requirements in an agile development environment\n\n\n\n\nRequired Background\n\n\n* 5+ years of experience in application security or development experience in Java, C#, Python, JavaScript, C/C++ or Ruby\n\n* Excellent oral and written communication skills\n\n* Excellent organizational skills and detail-oriented\n\n* Ability to work independently and as part of a team\n\n\n\n\nDesired Background\n\n\n* Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field\n\n* Knowledge of application security such as the OWASP Top 10 or Sans 25\n\n* Knowledge of different languages such as Python, Ruby, and scripting\n\n* Knowledge of different operating systems such as *NIX, Windows\n\n* Application vulnerability assessment or penetration testing experience\n\n* Knowledge of open-source environments like Github is a plus\n\n\n

See more jobs at Sonatype

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Previously

Aha!


Sr. Security Engineer - Ruby on Rails


North America

Sr. Security Engineer - Ruby on Rails


Aha!

North America

security

ruby on rails

infosec

ruby

security

ruby on rails

infosec

ruby


πŸ‘ 1,319 viewed | ✍️ 92 applied (7%)
Are you a Security Engineer who is passionate about finding and fixing security vulnerabilities in a sophisticated SaaS platform? Do you want to work with cutting-edge visualization, collaboration, and social ideation technologies at the same time?\n\nAs a Senior Security Engineer at Aha!, you will have an excellent opportunity to join a self-funded and profitable company that is growing fast. Aha! was founded by a proven team of experts. More than 300,000 users worldwide trust our roadmap software to build products customers love.\n\n# Responsibilities\n **We are looking for someone who:**\n* Finds joy in breaking (and then fixing) software\n* Has experience with Ruby on Rails and Javascript based applications\n* Has experience with AWS\n* Has worked on compliance projects and security policy development\n* Has driven security initiatives or delivered security training\n* Wants to be great and work in a fast-moving, online environment where the end-user is key \n\n# Requirements\n**We are committed to being great, and we want someone who:**\n* Can work at a fast-paced company where the feedback cycle is measured in hours rather than weeks\n* Has a background of delivering superb work again and again\n* Is seeking a career-defining opportunity and a proven, results-oriented team that has sold multiple software companies\n* Is interested in collaborating with software engineers to grow their skills and career\n\n#Location\n- North America

See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Full Stack Developer

Full Stack Developer


Contrast Security


full stack

dev

infosec

digital nomad

full stack

dev

infosec

digital nomad


πŸ‘ 183 viewed | ✍️ 8 applied (4%)
\nContrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nAbout the Position\n\nContrast is looking for an architect enthusiastic and proficient in front-end technologies such as ReactJS and AngularJS and server-side API development written in Java/Spring interested in pursuing a life changing experience in the field of application security and continuous delivery. We are an exciting, young team that is growing leaps and bounds each month. This person should take a wholistic view of our application architecture with sincere attention to quality, performance, scalability, security and maintainability.\n\nThis team is tasked with the unique opportunity to advance our runtime and pre-compile code analysis capabilities. This includes providing enhanced techniques to improve the accuracy, findings and reporting of code analysis. It will also include driving and leading the next generation of product and offerings to make the Contrast platform the choice for code analysis tools among developers and security professionals.\n\nIdeal candidates have a background building highly scalable and responsive Single Page Applications (SPAs) using ReactJS, CSS/Bootstrap, visualization libraries such as D3, HighCharts or AMCharts, as well as other SVG based visualization plugins. We write a lot of GraphQL to interact with our REST layer to improve performance and data interaction.\n\nOur engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our 6 year history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of.\n\nResponsibilities\n\n\n* Collaborate with UX, Product and Engineering to architect elegant APIs, Data Models and Re-usable JS functions\n\n* Provide overarching design of testability and acceptance.\n\n* Define and direct team in the area of Performance, Scalability and Security.\n\n* Build and maintain highly scalable server-side UI processes for the purpose of data collection, manipulation, data pruning, trending and analytics\n\n* Build web-based interfaces and applications and contribute to our platforms, style guide, APIs and libraries.\n\n* Design and development of a rich user interface for mission critical high-availability analytics application using front end technologies like TypeScript, Javascript, ES6, HTML, CSS, SASS, and D3.\n\n* Experience with at least one of the following frameworks: AngularJS, ReactJS, Ember.js\n\n* Execute performance analysis and optimization of page render, data transfers and page load optimizations.\n\n* Proficient designing highly tuned and efficient automated build pipelines.\n\n* Participate in constant collaboration with teammates in the form of pair programming, group code reviews and pull requests prior to commit.\n\n* Work with design and product teams to build amazing, jaw-dropping features.\n\n* Give back to the Open Source Community whenever humanly possibly.\n\n* Deploys: our engineers deploy multiple times a day to our AWS infrastructure.\n\n* Technical support: Our engineers don't just release code in the wild. When our customer have issues, we have to jump in and give them help.\n\n\n\n\nAbout You\n\n\n* Experience architecting modern, scalable and high-performing full-stack web applications\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You have experience working in Java/Spring to design and implement robust and scalable APIs.\n\n* Stellar visual skills and attention to detail.\n\n* You have extensive HTML5, CSS3 (Less), and JavaScript Framework (ReactJS) experience.\n\n* Experience with TypeScript and GraphQL.\n\n* Data management experience with MySQL and ElasticSearch\n\n* Have an eye for quality and have an interest in using tools/frameworks like Enzyme, Prettier, ReactTestRenderer, Jest, JUnit, StoryBook, etc...\n\n* AWS Services: S3, EC2, CloudFront, Lambda.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* Your code is clean, your designs are elegant and you are constantly refactoring.\n\n* Multiple years experience working in Enterprise or Commercial Software development.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation package (salary + equity)\n\n* A fun and dynamic environment where you work with other like minded people on products which make a real difference to the security of our customers\n\n* In-office lunches\n\n* Medical, dental and vision benefits\n\n* Flexible paid time off\n\n* 401K\n\n\n\n\nIf you're amazing but missing some of these, we'd love for you to apply anyway. Please include a link to your Github or BitBucket account, as well as any links to some of your projects if available. Email: [email protected] We are changing the world of software security. Do it with us.   We believe in what we do and are passionate about helping our customers secure their business. We work hard, and we have fun doing it. Solve the impossible. Easy = boring. If you’re looking for a fun work environment and like a challenge, you’ll love Contrast Security.

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Platform.sh


Security Engineer

Security Engineer


Platform.sh


infosec

engineer

infosec

engineer


πŸ‘ 20 viewed | ✍️ 2 applied (10%)
\nTo reinforce our commitment to customers’ privacy and security, for its PaaS solution, Platform.sh is looking for a Security Engineer with a taste for Python and Go, excellent Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC 2 compliance, and a real hunger for the challenges of building compliant distributed systems. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.\n\nWe are targeting engineers that like writing documentation and can function in a high performing, multithreaded, 100% cloud-based, remote environment.\n\nSecurity, privacy, and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated and where every constraint becomes a feature making the product better.\n\nThis role reports to our Security Operations Manager, and works in close interaction with our CTO, VP of Infrastructure, VP of Engineering, our Data Protection Officer, and our Customer Support teams.\n\n\nIn a given day you might:\n\n\n* Act as a technical liaison between the Security department and our product, engineering, support, and operations staff.\n\n* Create documentation and processes in English to help satisfy compliance requirements and/or internal process questions.\n\n* Evaluate, deploy, and create systems and tools that will enhance our efficiency.\n\n* Support our data protection officer and compliance team with information requests, pen-testing coordinations, internal and external vulnerability scanning, disaster recovery, and related activities.\n\n* Execute our security incident management process.\n\n* Ensure all systems and services in our environment are securely designed, configured, managed, and monitored.\n\n* Work with external auditors to answer questions on PCI and SOC 2.\n\n* Participate in an on-call rotation, the majority of which is during normal working hours.\n\n\n\n\n\nQualifications\n\nMinimum Qualifications:\n\n\n* Experience with Linux (preferably Debian-based)\n\n* Markdown\n\n* Experience implementing PCI, SOC 2, or related\n\n* Operate largely independently (go take that hill) with management support\n\n* Able to juggle several requests at the same time\n\n* Experience securing cloud services (AWS in particular)\n\n* Sysadmin experience\n\n* Experience with git-based workflows\n\n* Proficient in Python or Golang\n\n* Experience with containerization technologies (LXC/LXD, Docker)\n\n* Working knowledge of\n\n\n\n* Patch and Vulnerability Management process\n\n* Principle of Least Privilege\n\n* Incident response\n\n* Identity and Access Management\n\n* IPTABLES\n\n* Encryption: TLS, SSH, Disk, etc.\n\n* Ticketed change control\n\n* Snapshot-based backups\n\n\n\n* CISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP+ Certification or similar\n\n* Excellent written English skills\n\n\n\n\n\nPreferred Qualifications:\n\n\n* AWS, Google, and/or Azure certifications\n\n* Experience with performing vendor security reviews\n\n* Experience with Puppet\n\n* Knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n\n* Relational database skills\n\n* Public speaking experience\n\n* Ability to speak French or German\n\n* Ability to kick ass in Chess or beat Zork without using a map\n\n* Can bravely take on new challenges like a Gryffindor, analyze problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.\n\n\n\n\nSound Like a Good Fit? We’d love to talk to you!  \n\n\n* This is a remote job \n\nWe are a worldwide distributed team and are looking for a candidate who can perform well working remotely. To be an effective performer here at Platform.sh, you’ll need to be able to effectively collaborate across time zones while operating with a high level of independence and autonomy.

See more jobs at Platform.sh

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

OneMain Financial


Infosec IT Project Manager

Infosec IT Project Manager


OneMain Financial


infosec

exec

infosec

exec


πŸ‘ 1,781 viewed | ✍️ 135 applied (8%)
\nOneMain Financial is a successful and fast-growing financial services company. Due to company growth, we are looking for an experienced IT Project Manager to join our team.  The IT Project Manager will be responsible for concurrently managing complex projects, focused on the implementation of technology and information security initiatives. The ideal candidate will be self-motivated, outgoing, and enthusiastic.  They will thrive on learning new things while proactively identifying innovative solutions to problems.\n\nRole may be located at one of the following offices Baltimore, MD or Evansville, IN.  We will consider a remote location for the right candidate. \n\nResponsibilities:\n\n\n* Define project scope, goals and deliverables that support company objectives in collaboration with management and stakeholders.\n\n* Manage technical projects, utilizing established project tools and methodologies, with minimal guidance.\n\n* Develop and manage comprehensive project plans and associated project documents.\n\n* Proactively address changes in project scope, identify potential risks and devise contingency plans.\n\n* Coordinate resources (team members, equipment and consultants) across multiple projects and departments. \n\n* Effectively communicate project expectations to team members and stakeholders in a timely and clear fashion.\n\n* Compile and report project status across the organization.\n\n* Manage vendor selection process and coordinate vendor efforts throughout the project.\n\n* Coach, train, mentor, and direct the work of less experienced team members.\n\n\n\n\nQualifications: \n\n\n* Bachelor’s Degree, or equivalent professional experience\n\n* 5 years of experience including experience managing technology or information security projects.\n\n* Strong knowledge of Information Security in an enterprise environment\n\n* Highly motivated self-starter with proficiency in managing competing priorities.\n\n* Demonstrated understanding of the flexibility required in real world implementations.\n\n* Able to conform to shifting priorities and demands through analytical and problem-solving capabilities.\n\n* Ability to influence others to gain consensus.\n\n* Able to work on cross-functional, inter-department project teams with tight deadlines and heavy workloads.  \n\n* Attention to detail and strong organizational skills, to handle concurrent projects.\n\n* Excellent communication skills and experience interacting with business and technical individuals at all levels.\n\n* Technical background with broad knowledge of computer systems, networking and information security concepts.\n\n* Strong computer skills, and experience with Microsoft Office applications required.\n\n* Strong presentation skills and experience delivering training (a plus).\n\n* Working knowledge of Agile, DevOps, CI/CD and ITIL (a plus).\n\n* Act independently with general supervision.\n\n* May include travel.\n\n\n\n\nNote: Employment-based non-immigrant visa sponsorship and/or assistance is not offered for this specific job opportunity.\n\nBenefits:\n\nAt OneMain, we understand that for our team members to be their best, they need the right opportunities and benefits.  Our comprehensive benefits package for full-time and some part-time employees includes health and well-being options for team members and dependents, up to 4% matching 401(k), tuition reimbursement, continuing education, incentive pay, paid time off, paid volunteer time and more.\n\n Our Company:\n\nOneMain Financial is the country’s largest lending-exclusive financial company.  With nearly 1,600 branches across 44 states, we proudly offer safe, affordable and transparent installment loans to millions of hard-working people. Our customers turn to us to meet important financial needs, including debt consolidation, medical expenses, household bills, home improvements and auto purchases. OneMain is constantly innovating to serve customers when, where and how they want by investing in our technical digital capabilities. Our steadfast commitment to doing the right thing extends to our customers, our employees and the communities where we live and work – a mission that hasn’t changed for more than 100 years.

See more jobs at OneMain Financial

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

HashiCorp

 

Test Infrastructure Engineer Security Products

Test Infrastructure Engineer Security Products  


HashiCorp


golang

infosec

testing

engineer

golang

infosec

testing

engineer


πŸ‘ 1,979 viewed | ✍️ 203 applied (10%)
San Francisco, United States - Test Infrastructure Engineer, Security ProductsREMOTEAbout HashiCorpHashiCorp is a fast-growing startup that solves development, operations, and security challenges in infrastructure so organizations can focus on business-critical tasks.Β  We build tools to ease these de...

See more jobs at HashiCorp

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

SpotMe


Information Security Analyst

Information Security Analyst


SpotMe


infosec

analyst

infosec

analyst


πŸ‘ 287 viewed | ✍️ 17 applied (6%)
\nSpotMe is the worldwide leader of enterprise engagement platforms with a focus on live events, virtual and hybrid meetings, as well as long-term engagement.\n\nThe Covid19 crisis has created a big shift in the way people work, meet, and interact with one another. As a result, we’re seeing a total reset of the industry, and while this is a big change, it is also a fantastic opportunity to transform the way people engage in meetings and events.\n\nIn the past months, we have fully embraced this opportunity, and have evolved our platform and apps to match these new needs. Our agility has allowed us to adapt with the fastest possible pace, by continually delivering and deploying new features and innovations.\n\nIn parallel, we have also had to adapt the way we work, with a focus on flexibility. Our employees are now free to decide when they want to work from home, and when they come into our offices. In fact, they can work from anywhere they want in Europe or the US.\n\nIn this role, you will be providing support in maturing and optimizing information security and compliance across SpotMe global operations, and reporting directly to the CEO.  Responsibilities:\n\n\n* Responsible for SpotMe’s information security programs and strategic projects to further strengthen SpotMe information security governance\n\n* Responsible for the design, implementation, review and audit of new and existing security controls\n\n* Responsible for the ISO27001 certification\n\n* Manage SpotMe’s existing security compliance and audit programs (including SOC 2 reporting, penetration testing, network & vulnerability scanning) as well as customer-initiated audits\n\n* Respond to information security and data privacy due diligence requests from customers\n\n* Conduct risk assessments with internal parties and with 3rd party vendors; monitor and support reporting on risk reduction activities; drive corrective actions to mitigate vulnerability risks\n\n* Support executive and technology management with organization, process and architecture recommendations; define the organizational security posture, best practices, mailing lists and threat intelligence feeds reviews, as well as input to security governance and policy \n\n* Conduct internal audits to ensure that compliance towards established standards is maintained\n\n* Foster a security culture with the teams and deliver annual internal training programs\n\n* Govern disaster recovery (DR) and business continuity (BC) plans and related procedures \n\n* Maintain documentation of projects, plans and actions taken towards information security \n\n* Report to executive and engineering teams on governance and policy violations \n\n\n\n\nRequired skills and experience:\n\n\n* 3+ years of experience in information security, auditing or consulting with high-growth technology businesses\n\n* Understanding of, and implementation experience with ISO 27001:2013 and AICPA SOC 2 attestation standards\n\n* Understanding of, and compliance experience with the EU General Data Protection Regulation (GDPR)\n\n* Knowledge of common vulnerability frameworks and system, application and database hardening techniques and practices \n\n* Knowledge of networking standards (Ethernet, WLAN, TCP/IP, DNS) and Linux networking tools \n\n* CISSP certification or equivalent is required\n\n* Excellent English in verbal and written communications\n\n\n\n\nYour personality:\n\n\n* Keen to deliver to the highest existing standard with an uncompromised attention to detail\n\n* Deliver on time and to specification levels\n\n* Confident, proactive, self-starter, organized\n\n* Collaborative approach to problem-solving\n\n* This is an independent role that requires a team player for implementation\n\n* Willing and able to take responsibility for his/her actions and for the team delivery\n\n* Curios and open minded\n\n* Excellent listening and communication skills, as well as willingness to help others\n\n* Possesses a solid dose of common sense\n\n\n\n\nDo you want to join us in this exciting adventure? Please do not hesitate to reach out to us.

See more jobs at SpotMe

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

vast limits


Security Engineer Windows Endpoints

Security Engineer Windows Endpoints


vast limits


infosec

engineer

infosec

engineer


πŸ‘ 1,368 viewed | ✍️ 109 applied (8%)
\nWir sind eine erfolgreiche Softwarefirma, die organisch weiter wachsen möchte. Wir sind inhabergeführt, nicht fremdfinanziert und haben spannende Unternehmenskunden in über 30 Ländern.\n\nWir sind der Überzeugung, dass Micromanagement tödlich ist für Kreativität und Produktivität. Wir bieten eine offene Arbeitskultur, in der die Mitarbeiter ihren Arbeitsort frei wählen können und sich den Tag selbst einteilen.\n\nWir entwickeln Software für die Unternehmens-IT, weil wir den Markt kennen und die Bedürfnisse von Fachabteilungen und Mitarbeitern verstehen. Wir wissen, wie IT-Profis arbeiten und welche Werkzeuge sie verwenden. Wir wissen auch, wie komplex ein großer Teil der Unternehmenssoftware ist. Wir wollen dazu beitragen, dass sich das ändert.\n\nUnser Produkt uberAgent bietet tiefe Einsichten in User Experience und Security von physischen PCs und virtuellen Desktops. Mit Hilfe dieser Informationen optimieren unsere Kunden die Geschwindigkeit, Sicherheit und Stabilität der Endgeräte ihrer Mitarbeiter.\n\nDie Kombination aus einfacher Bedienung und wertvollen Metriken macht uberAgent zu einem Produkt, mit dem sehr gerne gearbeitet wird. Insofern passt es perfekt zu Splunk, einer leistungsfähigen und gleichzeitig benutzerfreundlichen Big Data-Plattform, die von uberAgent für Datenspeicherung und -visualisierung verwendet wird.\n\nDeine Aufgaben\n\nWir leben Qualität. Zusammen mit Deinen Kollegen bietest Du Kunden und Partnern Betreuung auf höchstem Niveau bei allen technischen und vertrieblichen Fragen.\n\nDies umfasst:\n\n\n* Kontakt zu Partnern halten\n\n* Webinare für Interessenten durchführen\n\n* Technische und vertriebliche Anfragen bearbeiten\n\n* Vorträge auf Konferenzen halten\n\n* Blog- und KB-Artikel verfassen\n\n* Unsere Entwickler unterstützen\n\n\n\n\nDas wünschen wir uns\n\nDie einzigen Qualifikationen, die uns wirklich wichtig sind, sind der Drang, das bestmögliche Resultat zu erzielen und der Wunsch, jeden Tag etwas dazuzulernen.\n\nDaneben erwarten wir:\n\n\n* Langjährige Erfahrung mit Security in großen Unternehmen\n\n* Sehr gute Kenntnisse in Windows-Interna\n\n* Eigenständiges Arbeiten\n\n* Hang zur Perfektion\n\n* Sehr gute Deutsch- und Englischkenntnisse\n\n* Hauptwohnsitz in Deutschland\n\n\n\n\nZusätzlich freuen wir uns über:\n\n\n* Gute Kenntnis eines oder mehrerer SIEMs (z.B. Splunk)\n\n* Erfahrung mit Pentesting, Hacking, Threat Hunting\n\n* Erfahrung mit Automatisierung, Skripting, Programmierung\n\n* Community-Engagement, Bloggen (bitte schicke uns Links)\n\n\n

See more jobs at vast limits

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Ascension


Security Architect

Security Architect


Ascension


infosec

architecture

infosec

architecture


πŸ‘ 1,845 viewed | ✍️ 128 applied (7%)
\nWhat You Will Do\n\nThe Cloud IAM Architect provides technical leadership in the planning, design and implementation phases of Cloud IAM. Associate in this role will work cross-functionally to help implement and operationalize some of the most advanced cloud architectures running in the Cloud.\n\nResponsibilities:\n\n\n* \n\nWork with various cloud providers (AWS, Azure, Google) to create, maintain and enforce policies and procedures that govern the IAM roles in all cloud infrastructures.\n\n\n* \n\nProvide day to day and escalated support for cloud and on-premise identity systems (Active Directory, Azure AD, G Suite/Google Cloud Identity.\n\n\n* \n\nSubject matter expert for cloud identity and access management processes and procedures for GCP and Azure cloud infrastructures\n\n\n* \n\nImplements policies and procedures based on cloud governance and best practices.\n\n\n* \n\nWork alongside engineering teams to implement solutions for infrastructure and POCs, deliver technical expertise and establish best practices to manage Cloud Identities and Access.\n\n\n* \n\nDesigns and supports application authentication methods across Ascension. \n\n\n* \n\nExamples include OAuth, SAML, LDAP (Azure AD, OID, Optimal, G Suite). \n\n\n* \n\nCreate and maintain a new IAM approval process using IdentityIQ (SailPoint) to automate and simplify the approval process for granting access to cloud resources. \n\n\n* \n\nAssists with decisions based on the highest degree of technical complexity and thorough understanding of the implications across the organization.\n\n\n* \n\nTranslates application and end user system requirements into technical requirements.\n\n\n* \n\nAnalyzes and solves complex problems, making recommendations as needed, applying creative, in-depth technical and theoretical knowledge.\n\n\n* \n\nDefines strategies for networking, server platform, desktop services, and security required to support Clinical Foundation Suite environment\n\n\n* \n\nLeads orientation and planning review sessions with the local Information Technology project managers.\n\n\n* \n\nAssists the national technical program manager in the development and maintenance of the standard project plan template.\n\n\n* \n\nThe candidate must have knowledge of multiple technology platforms and architecture.\n\n\n\n\n\nQualifications\nEducation:\n\n\n* \n\nBachelor's degree preferred or equivalent experience\n\n\n\n\n\nWork Experience:\nRequired\n\n\n* \n\n5-7 years of experience in Information Security\n\n\n* \n\nCloud Identity and Access Management to create and manage permissions for Google Cloud (GCP) resources.\n\n\n* \n\nIn-depth understanding of Identity and Access Management (IAM) concepts and processes\n\n\n* \n\nDesigning and developing Cloud-specific security policies, standards and procedures.\n\n\n* \n\nDesigning and enforcing IAM policies to support Data Governance and DLP \n\n\n* \n\nKnowledge and understanding of network and security fundamentals, protocols, and technologies\n\n\n* \n\nAdvanced Information Security technical skills and understanding of information security practices and policies\n\n\n* \n\nHands on design, implementation, configuration, integration and deployment experience in the Cloud technologies\n\n\n\n\n\nPreferred\n\n\n* \n\n3+ years of experience deploying, building, and maintaining applications on Google Cloud Platform (GCP).\n\n\n* \n\nExperience protecting PII information using encryption and data masking/sub-setting technologies.\n\n\n* \n\nKnowledge in requirement gathering, creating SOPs, documentation and reporting\n\n\n* \n\nDemonstrated experience in leading cross functional initiatives along with demonstrated experience interacting with and influencing decision-making by non-analytical business audiences\n\n\n* \n\nExperience in integrating provisioning systems with PeopleSoft ERP\n\n\n* \n\nWorking knowledge of all aspects of the security audit process\n\n\n* \n\nGCP Professional Cloud Architect or Professional Cloud Developer certification\n\n\n\n\n\nWhat You Will Need\n\nEducation:\n\n\n* Diploma \n\n\n* High school diploma/GED with 2 years of experience, or Associate's degree, or Bachelor's degree required\n\n\n\n\n\n\n\n\nWork Experience:\n\n\n* 1 year of experience required. 4 years of experience preferred. 2 years of leadership or management experience preferred.\n\n\n\n\nEqual Employment Opportunity

See more jobs at Ascension

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

OliBank


Security Developer

Security Developer


OliBank


infosec

dev

digital nomad

infosec

dev

digital nomad


πŸ‘ 1,620 viewed | ✍️ 10 applied (1%)
\nAbout us:\n\nAt OliBank we are working on unique solutions and challenging problems all around financial technology. This position will help us build a brand new product that will revolutionize business banking. Our mission is to create prosperity around the world by breaking down all barriers of trade and commerce. At OliBank, we are looking for more top talent to help us fulfill this vision. \n\nThe experience of working remotely at OliBank is unlike anywhere else. We focus heavily on active team collaboration; hence your team members will never be from far away time zones. No midnight meetings or choppy calls because we recruit only from just a handful of countries to keep everyone connected. We provide high-quality video equipment to make it feel like we are next to each other. Working at OliBank is like working with an office-based high-performance team but without the commute. All developer meetings are held in spoken Spanish, and team collaboration is highly valued.\n\nEngineering at OliBank is not like a soulless outsourced sweatshop. You are valued as a team member from day one with long-term career prospects. If you are looking to be challenged, to grow, and to be able to contribute, this might just be the best place for you.\n\nWe believe that there is work, and then there is work that you were born to do. The kind of work that defines who you are and that you can be proud of. The kind of work you’d sacrifice a night or a weekend for. That is the kind of work we do at OliBank. People don’t come here for safety, they come for the journey. They want to create something big and meaningful that reaches hundreds of millions of people.\n\nWe are looking for an exceptional JavaScript Developer for our Product & Innovation team to join in our accelerated growth.\n\nWhat’s needed from you: \n\n\n* Expert knowledge of JavaScript working with a reputable company\n\n* 100% Self-starter mentality  \n\n* Willingness to put in the work and be part of an elite hard-working team\n\n\n\n\nWhat is the platform built with?\n\nThe Platform is built with node.js, vue.js , storybook and MongoDB, the more you can tick off from this list the better. You will be working with the most current frameworks available.\n\nIf hired then you will be working directly with an innovative team that consists of full-stack, front-end, and backend developers with outstanding programming and problem-solving skills, so you will be picking up new skills in no time. \n\nThe ideal candidate:\n\n- Is flexible and a true self-starter, doesn't take anything for granted and a boss is not necessarily needed to get the job done while being precise and getting the work done right.\n\n- Has a proven track record of delivering high-quality work and showing a high level of responsibility for all tasks.\n\n- If asked, capable of providing references from past co-workers and managers. 

See more jobs at OliBank

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

SemanticBits

 

Security Engineer

Security Engineer  


SemanticBits


infosec

engineer

infosec

engineer


πŸ‘ 1,616 viewed | ✍️ 204 applied (13%)
SemanticBits is looking for a Security Engineer to keep our business, users, and data safe by assuring the security of our applications and platforms. This will be a highly collaborative position, in which the right candidate works to secure existing applications and platforms, makes platform and security enhancements, and helps to scale our security program through automation, process improvement, and tool creation.\n\nThe selected candidate will be required to work on multiple products and must be able to develop and present secure solutions and advice to technical teams as well as leadership. The candidate will further be required to assess risks and advise on security standards, best practices, and solutions. All this must be done by maintaining security quality and customer satisfaction.\n\nResponsibilities:\n\n\n\n* Collaborating with various teams to secure new platforms/applications\n\n* Implementing platform security and framework improvements\n\n* Implementing analysis and monitoring tools\n\n* Working with engineering and QA teams to build tools and scale security in a continuous deployment environment\n\n* Assessing the security of applications, APIs, and platforms via penetration testing and code reviews\n\n* Document System Security plan and Contingency Plans for related projects\n\n\n\n\nRequired Qualifications:\n\n\n* A Bachelor's degree or higher in Computer Science, Electrical Engineering, Information Assurance, Network Security Computer Engineering or a related field, or equivalent experience\n\n* At least 5 years of experience in the following: NIST 800-53 security controls, Penetration Testing, System Hardening (blue team), Programming/Scripting (java, node, python, etc), Incident Response\n\n* Strong knowledge to perform the following penetration testing: Static Analysis/Static Application Security Testing, Vulnerability Assessment/Scanning, Dynamic Analysis/Dynamic Application Security Test (DAST), Malicious Software Analysis\n\n* Strong foundation in one or more of the following: Data management security, Authentication, Applied cryptography, Linux security, Network & Cloud security\n\n* Advanced knowledge of Linux platforms\n\n* Advanced knowledge of application mobile security tools\n\n* Strong technical acumen securing software and hardwareUnderstanding of software development and working experience with any one of the higher level programming languages or scripting\n\n* Familiarity and experience with security technologies such as security engineering, security architecture, cryptography, data security, risk management, identity and access management, communication and network security, security assessment and testing, software development security, security operations\n\n* Familiarity and experience with popular open source security projects such as OWASP ZAP and Snort\n\n* Thorough understanding of issues documents in the OWASP Top Ten and CWE Top 25\n\n* Demonstrated ability to exploit and mitigate application-level vulnerabilities\n\n* Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation\n\n* Experience using Linux/Unix at the command line for tasks related to web application development and deployment (DevOps)\n\n\n\n\nOne or more of the following certifications is preferred;OSCP, OSCE, OSWE, CISSP, GPEN, GXPN \n\nNice to Haves:\n\n\n\n* Strong engineering background \n\n* Application architecture experience \n\n* Experience working in the healthcare industry\n\n* Federal Government contracting work experience\n\n* Prior experience working remotely full-time\n\n\n\n\nPhysical and emotional requirements for the job:\n\nThis position is to be performed remotely from an individual’s home office and involves sedentary work. Employees in this role can be expected to exert up to 10 pounds of force on occasion in order to lift, carry, push, pull or otherwise move standard electronic equipment. Employees are expected to make decisions in a timely manner and display emotional intelligence during occasional stressful situations.

See more jobs at SemanticBits

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

User Research International


Paid Research Study For Security Analysts Administrators Engineers

Paid Research Study For Security Analysts Administrators Engineers


User Research International


infosec

infosec


πŸ‘ 72 viewed | ✍️ 1 applied (1%)
\nUser Research International is a research company based out of Redmond, Washington. Working with some of the biggest companies in the industry, we aim to improve your experience via paid research studies. Whether it be the latest video game or productivity tools, we value your feedback and experience. We are currently conducting a research study called IT Security Study. We are looking Security Analyst, Administrators, Engineers and/or Consultants with Proofpoint, Barracuda or Mimecast portal experience. This study is a one-time Remote Study via an online meeting. We’re offering $200 for participation in this study. Session lengths are 90 minutes. These studies provide a platform for our researchers to receive feedback for an existing or upcoming products or software. We have included the survey link for the study below. Taking the survey will help determine if you fit the profile requirements. Completing this survey does not guarantee you will be selected to participate.  If it's a match, we'll reach out with a formal confirmation and any additional details you may need.\n\nI have summarized the study details below. In order to be considered, you must take the survey below. Thank you!\n\nStudy: IT Security Study\n\nLocation: Remote via web meeting\n\nDuration: 90 Minutes\n\nGratuity: $200\n\nDates: May 19th – 27th  \n\nSurvey: IT Security Study

See more jobs at User Research International

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

User Research International


Paid Research Study For Security Developers Engineers

Paid Research Study For Security Developers Engineers


User Research International


infosec

infosec


πŸ‘ 66 viewed | ✍️ 1 applied (2%)
\nUser Research International is a research company based out of Redmond, Washington. Working with some of the biggest companies in the industry, we aim to improve your experience via paid research studies. Whether it be the latest video game or productivity tools, we value your feedback and experience. We are currently conducting a research study called Incident Management Study. We are looking for Security Devs/Engineers with software security experience who use Microsoft Azure, BitBucket, GitLab and/or SourceForge. This study is a one-time Remote Study via an online meeting. We’re offering $100 for participation in this study. Session lengths are 75 minutes. These studies provide a platform for our researchers to receive feedback for an existing or upcoming products or software. We have included the survey link for the study below. Taking the survey will help determine if you fit the profile requirements. Completing this survey does not guarantee you will be selected to participate.  If it's a match, we'll reach out with a formal confirmation and any additional details you may need.\n\nI have summarized the study details below. In order to be considered, you must take the survey below. Thank you!\n\nStudy: Incident Management Study\n\nLocation: Remote via web meeting\n\nDuration: 75 Minutes\n\nGratuity: $100\n\nDates: May 19th – 20th\n\nSurvey:  Incident Management Study

See more jobs at User Research International

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

User Research International

 

Paid Research Study For Information Security Admins And or Data Privacy Officers

Paid Research Study For Information Security Admins And or Data Privacy Officers  


User Research International


infosec

infosec


πŸ‘ 581 viewed | ✍️ 87 applied (15%)
\nUser Research International is a research company based out of Redmond, Washington. Working with some of the biggest companies in the industry, we aim to improve your experience via paid research studies. Whether it be the latest video game or productivity tools, we value your feedback and experience. We are currently conducting a research study called Data and Security Study. We are looking for currently employed Information Security Admins and/or Data Privacy Officers/Specialists. This study is a one-time Remote Study via an online meeting. We’re offering $200 for participation in this study. Session lengths are 90 mins. These studies provide a platform for our researchers to receive feedback for an existing or upcoming products or software. We have included the survey link for the study below. Taking the survey will help determine if you fit the profile requirements. Completing this survey does not guarantee you will be selected to participate.  If it's a match, we'll reach out with a formal confirmation and any additional details you may need.\n\nI have summarized the study details below. In order to be considered, you must take the survey below. Thank you!\n\nStudy: Data and Security Study\n\nGratuity: $200\n\nSession Length: 90 mins\n\nLocation: Remote\n\nDates: Available dates are located within the survey\n\nSurvey: Data and Security Study

See more jobs at User Research International

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

User Research International


Paid Research Study For Security Engineers Lead Developers

Paid Research Study For Security Engineers Lead Developers


User Research International


infosec

exec

infosec

exec


πŸ‘ 806 viewed | ✍️ 58 applied (7%)
\nUser Research International is a research company based out of Redmond, Washington. Working with some of the biggest companies in the industry, we aim to improve your experience via paid research studies. Whether it be the latest video game or productivity tools, we value your feedback and experience. We are currently conducting a research study called the Development Security Study. We are looking for currently employed Full-Time Leads/Engineers/Developers who manage the security of the software development process. This study is a one-time Remote Study via an online meeting. We’re offering $125 for participation in this study. Session lengths are 45 minutes. These studies provide a platform for our researchers to receive feedback for an existing or upcoming products or software. We have included the survey link for the study below. Taking the survey will help determine if you fit the profile requirements. Completing this survey does not guarantee you will be selected to participate.  If it's a match, we'll reach out with a formal confirmation and any additional details you may need.\n\nI have summarized the study details below. In order to be considered, you must take the survey below. Thank you!\n\nStudy: Development Security Study \n\nGratuity: $125\n\nSession Length: 45 minutes \n\nLocation: Remote \n\nDates: Available dates are located within the survey\n\nSurvey: Development Security Study

See more jobs at User Research International

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Shogun Labs


Security Engineer

Security Engineer


Shogun Labs


infosec

engineer

infosec

engineer


πŸ‘ 1,821 viewed | ✍️ 182 applied (10%)
\nWe Are…\n\nShogun, and we're on a mission to help people create the best eCommerce experiences in the world.\n\nWe were in the Winter 2018 batch of Y-Combinator, we just raised a Series A investment, we have over 10,000 active paying clients, and we're preparing to launch a new product in 2020 (you can read more in TechCrunch).\n\nOur teams are fully distributed and global (check out our team page)! We have no office, so we are looking for team members that are comfortable with and motivated by the opportunity to work remotely.\n\n\n\nYou Are…\n\nA self-motivated and passionate Security Engineer (with experience in Ruby on Rails and/or Go) looking to join our engineering team and help secure our applications and cloud infrastructure.\n\nWe're looking for a talented Security professional to investigate threats, triage and resolve vulnerabilities, help to write and implement our information security policy, and build tools that allow engineers to quickly and easily develop secure code.\n\n\n\nIn This Role You Will...\n\n\n* Help other engineers design more secure software via design input and code review\n\n* Contribute to the implementation of secure development practices\n\n* Triage and resolve security vulnerabilities in the application layer, including those reports through our bug bounty program at Federacy\n\n* Deliver well-engineered, scalable solutions that improve our defense-in-depth\n\n* Author and implement an information security policy\n\n* Teach and learn from your teammates\n\n\n\n\n\n\nYou Have...\n\n\n* 5+ years software engineering experience\n\n* 3+ years of Ruby on Rails and/or Go experience, including security responsibilities\n\n* Penetration and vulnerability testing experience\n\n* Proven knowledge of authentication and authorization\n\n\n\n\n\n\nNice-to-Haves...\n\n\n* Experience with Javascript, MongoDB, and/or Redis\n\n* Experience securing a cloud platform (AWS, GCP, Azure, etc)\n\n* Clear and precise written and interpersonal communication skills\n\n* Effective time management and organizational skills\n\n\n\n\n\n\nWe Offer\n\n\n* Competitive salary\n\n* Benefits (vary by location)\n\n* A highly skilled and dedicated team that is fun to work with.\n\n* Remote work – We are a fully distributed team that works from anywhere with good internet. (+13 countries just on the engineering team!)\n\n* Occasionally, we hire on a full time contractor basis to begin with. Team members enjoy the same opportunities for great compensation, full time positions, and consideration, regardless of location.\n\n\n\n\n\n\nTry Out Shogun \n\nIf you want, you can use Shogun to get a feel for the product. We'd love to hear what you think. Here is how:\n\n* Create a Shopify Developer Account: https://developers.shopify.com\n\n* Create a development store: https://help.shopify.com/en/partners/dashboard/development-stores\n\n* Install Shogun on your development store: https://apps.shopify.com/shogun\n\n* Create a couple of pages. We will take a look.\n\n\n\n\nShogun supports workplace diversity and does not discriminate on the basis of race, color, religion, gender identity/expression, national origin, age, military service eligibility, veteran status, sexual orientation, marital status, physical or mental disability, or any other protected class

See more jobs at Shogun Labs

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

SemanticBits

 

Security Analyst

Security Analyst  


SemanticBits


infosec

analyst

infosec

analyst


πŸ‘ 1,849 viewed | ✍️ 333 applied (18%)
\nSemanticBits is looking for a Security Analyst to keep our business, users, and data safe by assuring the security of our applications and platforms. This position requires collaboration within the security team and our delivery teams to ensure compliance with security requirements. This role is heavily focused on compliance, policy, and documentation and will support security engineers with system hardening and penetration testing. The ideal candidate will have experience with either Federal Government Security Control Assessment (SCA) or the Payment Card Industry (PCI) Security Standard.\n\n\nResponsibilities:\n\n\n* Document System Security Plan and Contingency Plans for related projects\n\n* Responsible for documenting and evaluating security policies\n\n* Ensure security systems are up to date and create documentation and planning for all security-related information; including incident response and disaster recovery plans\n\n* Review policies and procedures for compliance with applicable standards and identify areas of improvement for finding remediation\n\n* Interact with senior level management, including the ISSO\n\n\n\n\nRequired Qualifications:\n\n\n* A Bachelor's degree or higher in Computer Science, Electrical Engineering, Information Assurance, Network Security Computer Engineering or a related field, or equivalent experience\n\n* CISSP certification\n\n* At least 5 years of experience in the following;\n\n\n\n\n* NIST 800-53 security controls\n\n* Penetration Testing\n\n* System Hardening (blue team)\n\n* Programming/Scripting (java, node, python, etc)\n\n* Incident Response\n\n\n\n\n* Strong knowledge of and ability to perform the below tests:\n\n\n\n\n* Penetration testing\n\n* Static Analysis/Static Application Security Testing\n\n* Vulnerability Assessment/Scanning\n\n* Dynamic Analysis/Dynamic Application Security Test (DAST)\n\n* Malicious Software Analysis\n\n\n\n\n* Strong foundation in one or more of the following:\n\n\n\n\n* Data management security\n\n* Authentication\n\n* Applied cryptography\n\n* Linux security\n\n* Network & Cloud security\n\n\n\n\n* Advanced knowledge of Linux platforms\n\n* Advanced knowledge of application mobile security tools\n\n* Strong technical acumen securing software and hardware\n\n* Understanding of software development and working experience with any one of the higher level programming languages or scripting\n\n* Familiarity and experience with security technologies such as security engineering, security architecture, cryptography, data security, risk management, identity and access management, communication and network security, security assessment and testing, software development security, security operations\n\n* Familiarity and experience with popular open source security projects such as OWASP ZAP and Snort\n\n* Thorough understanding of issues documents in the OWASP Top Ten and CWE Top 25\n\n* Demonstrated ability to exploit and mitigate application-level vulnerabilities\n\n* Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation\n\n* Experience using Linux/Unix at the command line for tasks related to web application development and deployment (DevOps)\n\n* Flexible and willing to accept a change in priorities as necessary\n\n\n\n\n\nNice To Have:\n\n\n* Strong engineering background \n\n* Application architecture experience\n\n\n\n\n\nPhysical and emotional requirements for the job:\n\n\n* This position is to be performed remotely from an individual’s home office and involves sedentary work. Employees in this role can be expected to exert up to 10 pounds of force on occasion in order to lift, carry, push, pull or otherwise move standard electronic equipment. Employees are expected to make decisions in a timely manner and display emotional intelligence during occasional stressful situations.\n\n\n

See more jobs at SemanticBits

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

HashiCorp

 

Senior Golang Engineer Security

Senior Golang Engineer Security  


HashiCorp


golang

infosec

senior

engineer

golang

infosec

senior

engineer


πŸ‘ 1,851 viewed | ✍️ 240 applied (13%)
San Francisco, United States - About the RoleWe are looking for an experienced engineer to join the Vault team and focus on secure storing, sharing, creating, and handling of privileged systems management within Vault. You will help design, prototype, and implement core features while ensuring the...

See more jobs at HashiCorp

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Olo

 

Senior Security Engineer Blue Team

Senior Security Engineer Blue Team  


Olo


infosec

senior

engineer

infosec

senior

engineer


πŸ‘ 2,017 viewed | ✍️ 256 applied (13%)
\nAt Olo we operate a digital food ordering platform used by many of the country’s largest restaurant chains, reaching millions of consumers. We take great pride in the reliability, security, and performance of our systems and services. We are looking for a talented security engineer with experience in a Blue Team role to help us fortify our defenses and protect the systems that enable hungry people to order their food quickly and securely.\n\nIn the role of Senior Security Engineer, you will design and implement the security defenses that enable our systems to keep running while protecting the data of our clients and their customers. \n\nYou can work at Olo’s headquarters on the 82nd floor of One World Trade Center or remotely from anywhere in the U.S. In fact, more than half of our team is remote!\n\n\nResponsibilities\n\n\n\n\n* Detect and defend against attacks by analyzing security-related events and alerts, and leading incident response, remediation and mitigation activities\n\n* Provide stakeholders with concise, detailed, and well-written incident reports, root causes identification, and remediation recommendations\n\n* Use experience and data gained during incident investigations to improve security posture\n\n* Provide management oversight for the identification, triage and response of events or incidents\n\n* Coordinate and track incident response activities with other teams and third parties. This includes remediations arising from Red Team tests and external penetration tests.\n\n* Perform non-event driven security reviews, including but not limited to patching, firewall rules, system configuration checks and vulnerability reports\n\n* Conduct Blue Team exercises and drills to evaluate and improve processes and technologies related to various controls including but not limited to threat detection, incident response, patching, remediation and user training.\n\n* Mature Blue Team exercises by leveraging recent breach reports, evolving threats and vulnerabilities\n\n* Execute Threat Hunts to proactively detect and mitigate advanced threats\n\n* Mature threat hunting through improved data analysis, additional data augmentation, creating custom toolsets and improving automation \n\n* Maintain and optimize various security technologies. This includes ongoing optimizations and implementing new or replacement security technologies as needed and automating security activities where feasible.\n\n* Deep collaboration with IT, Infrastructure and Development teams where security ownership and responsibilities are shared.\n\n* Ensure security policies and standards are understood and complied with\n\n* Educate and influence employees on security and coach junior team members\n\n* Work with PCI and SOC auditors to provide evidence of compliance\n\n* Assist with third party software and provider due diligence\n\n* Contribute to security policies and standards\n\n* Proactively identify and implement improvements to our tools and processes\n\n* Participate in a 24/7 on call rotation\n\n\n\n\n\n\nRequirements\n\n\n\n\n* Previous Blue Team, Security Operations or Security Engineering experience\n\n* Deep knowledge of information technology, evolving threats, attack patterns, incident response and cyber security standards\n\n* Proven experience developing and leading incident response, remediation and mitigation activities, and providing status updates and reports.\n\n* Adept at analyzing security events to discern events that qualify as a legitimate security incident as opposed to non-incidents. This includes security event triage, incident investigation, implementing countermeasures, and conducting incident response.\n\n* Deep understanding of operating system, networking and application concepts \n\n* Ability to harden Windows, MacOS and Linux and any underlying virtualization\n\n* Familiarity with AWS security best practices and Infrastructure-as-Code (e.g. Terraform, Ansible, CloudFormation or similar.)\n\n* Experience deploying, maintaining and administering security technologies including. (e.g. Anti-Malware, Intrusion Detection System (IDS), Data Leak Prevention (DLP), File Integrity Monitoring (FIM), Firewalls, Security Information and Event Monitoring (SIEM), Static Inspection, Multi Factor Authentication (MFA), Vulnerability Assessment, Web Proxies and Web Application Firewalls (WAF))\n\n* PCI and/or SOC compliance experience preferred\n\n* CISSP, GCIH, CEH, OSCP, or similar certification preferred\n\n* Scripting and/or development familiarity preferred\n\n* 5+ years of Information Technology experience with a focus on Security\n\n* Ability to work on-call, during critical incidents or to support coverage requirements\n\n* Strong English writing and verbal communication skills\n\n* Legally able to work in the U.S.\n\n\n\n\n\n\nCOVID-19 Impact\n\nOlo is committed to the well-being of candidates, employees and our community. The  Olo NYC Headquarters will be closed for the foreseeable future because of the global outbreak of COVID-19. While an in-person interview is typical for many roles at Olo, we will conduct interviews via video conferencing while our HQ is closed. Olo benefits from the fact that over half of our workforce is remote, therefore we are accustomed to conducting interviews via video conferencing and we anticipate no impact on our recruiting timelines. We encourage candidates to share any concerns or questions with Olo’s recruiting team.\n\nAbout Olo\n\nOlo powers digital ordering and delivery programs that connect restaurant brands to the on-demand world, placing orders directly into the restaurant through all order origination points – from a brand’s own website or app, third party marketplaces, social media platforms, smart speakers, and home assistants. Olo serves as the on-demand ordering and delivery platform for over 300 brands, such as Applebee’s, Checkers & Rally’s, Cheesecake Factory, Chili’s, Dairy Queen, Denny’s, Five Guys Burgers & Fries, Jamba Juice, Noodles & Company, Portillo’s Hot Dogs, Shake Shack, sweetgreen, Wingstop, and more. Learn more at www.olo.com. Olo's headquarters is located on the 82nd floor of One World Trade Center.  We offer great benefits, such as 20 days of Paid Time Off, fully paid health, dental and vision care premiums, stock options, a generous parental leave plan, and perks like FitBits, rotating craft beers on tap in our kitchen, and food events featuring our clients' menu items (now you know why we give out FitBits!). Check out our culture map:https://www.olo.com/images/culture.jpg.\n\nWe encourage you to apply! \n\nAt Olo, we know a diverse and inclusive team not only makes our products better, but our workplace better. Many groups are consistently underrepresented across the tech sector and we are fully committed to doing our part to move the needle.  Olo is an equal opportunity employer and diversity is highly valued at our company. All applicants receive consideration for employment. We do not discriminate on the basis of race, religion, color, national origin, gender identity, sexual orientation, pregnancy, age, marital status, veteran status, or disability status. If you like what you read, hear, and/or know about Olo, and want to be a part of our team, please do not hesitate to apply! We are excited to hear from you!

See more jobs at Olo

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

WP White Security


Senior PHP / Wordpress Plugin Developer

verified
🌏 Worldwide

Senior PHP / Wordpress Plugin Developer


WP White Security

🌏 Worldwide

wordpress

dev

php

javascript

wordpress

dev

php

javascript


πŸ‘ 4,770 viewed | ✍️ 21 applied (0%)
WP White Security is a young development company that develops high-quality security and admin WordPress plugins. Our plugins are installed on more than 150,000 websites and are used by world renowned businesses such as Disney, Amazon, and Intel!\n\nJoin our growing distributed team and develop plugins that help thousands of WordPress websites administrators! We are looking for a senior PHP / JavaScript / WordPress developer that can work during European time zone hours. If you love writing code and are fond of the WordPress and open source communities, we want to hear from you.\n\nWe are still a small team, however, we have a large customer base. So there is a lot of room to grow within the company (more about us [here](https://www.wpwhitesecurity.com/about-us/)).\n\n\n\n\n# Responsibilities\n You will be leading the development of our [WordPress plugins portfolio](https://www.wpwhitesecurity.com/wordpress-plugins/). Your tasks will span from designing new features, writing code and bug fixing, expecting that new and changed code is thoroughly tested and well documented.\n\nYou will also help the other developers, conduct code reviews of their code, test your own code and that of others, interact with our support team and helping them solve customer issues, and interact with the rest of the team for knowledge sharing and product work. \n\n# Requirements\n* Excellent verbal and written English\n* Organized, methodological and can work with very little or no supervision\n* 6+ years experience working as a PHP / WordPress plugin developer (mostly back end development)\n* Ability to setup testing environments for testing the plugins and ability to debug technical issues\n* Strong background in scalable database usage with MySQL\n* Good understanding of Linux, Apache, MySQL and PHP (LAMP) environments\n* Hard working and passionate – we are a young start-up\n* [BONUS] Intermediate skills in react.js and jQuery\n* [BONUS] good understanding of application and WordPress security\n\n**Benefits of working for us**\n\n* Work from anywhere (during European time zone hours)\n* Job security and competitive salary\n* Work in a flat, small and friendly organization\n* Paid educational materials (including but not limited to online courses and books)\n* Opportunities for paid travel to attend WordCamps and other industry conferences\n* Long term engagement – we are looking for a committed candidate who within a few years can become a team lead and a source of knowledge \n\n#Salary\nVaries on experience\n\n\n#Location\n- 🌏 Worldwide

See more jobs at WP White Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Jack Henry & Associates .Β


Senior Cloud Security Engineer

Senior Cloud Security Engineer


Jack Henry & Associates .Β


infosec

cloud

senior

engineer

infosec

cloud

senior

engineer


πŸ‘ 2,471 viewed | ✍️ 211 applied (9%)
\nJob Description\n\nJack Henry & Associates, a leading provider of technology solutions and payment processing services primarily for the financial services industry; is hiring a Senior Cloud Security Engineer to join our Security Engineering department. As a Senior Cloud Security Engineer you’ll work in close collaboration with Jack Henry architecture and security teams to design and build security systems that support Jack Henry’s public and private cloud strategies. Areas of particular focus will include cloud security posture management, cloud workload protection, network security, and application security. \n\nThis position can be based to work out of any of the following Jack Henry office locations: Springfield, MO (Primrose), Monett, MO, Allen, TX or Lenexa, KS, or be 100% remote from any US location.\n\nMINIMUM QUALIFICATIONS\n\n\n* Associate’s Degree\n\n* CCSP (Certified Cloud Security Professional)\n\n* Must have a minimum of 6 years of experience in a combination of any of the following areas: information security, systems engineering, application development, or cloud management\n\n* Must be able to travel up to 5% for occasional team meetings or conferences\n\n\n\n\nPREFERRED QUALIFICATIONS\n\n\n* Bachelor’s degree. \n\n* CISSP or GSEC certifications\n\n\n\n\nESSENTIAL FUNCTIONS\n\n\n* Design security solutions that maintain security and compliance within public cloud while ensuring alignment of technology to business strategy.\n\n* Develop and understand JHA’s public cloud strategic roadmap.\n\n* Participate and collaborate in project level architecture reviews and vendor selection recommendations.\n\n* Assist in creating security architecture documentation based on specifications.\n\n* Review security design to discover any errors or confirm the design meets required specifications.\n\n* Maintains an awareness and understanding of industry developments and provides ideas for innovation and improvement in order to maintain current service designs value.\n\n* Provides consultation to engineering and operations staff.\n\n\n\n\n\nEqual Employment Opportunity\n\nApplicants for U.S. based positions with Jack Henry & Associates must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.\n\nJack Henry & Associates, Inc. is an Equal Employment Opportunity/Affirmative Action Employer and maintains a Drug-Free Workplace.\n\nFemales, minorities, veterans, and individuals with disabilities are encouraged to apply.

See more jobs at Jack Henry & Associates .Β

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Open-Xchange

 

Platform Security Engineer EU

Platform Security Engineer EU  


Open-Xchange


infosec

engineer

infosec

engineer


πŸ‘ 1,893 viewed | ✍️ 223 applied (12%)
\nThis position will support our SaaS email platform, providing service to large customers for tens of millions of end users.Core competencies required include platform security, automated deployment, virtualization and internet protocols. You will be expected to provide quick resolution of difficult technical problems. This position will also be responsible for major contributions to technical architecture, documentation and systems project management. \n\n\n\n Your key responsibilities / Your passion\n\n\n\n* Review and evaluate current security standards based upon best practices and latest technologies\n\n* Server configuration and management using IaC (Terraform, Ansible, Chef)\n\n* Define and implement platform architecture and binding security concepts/policies at a deeply technical level both internally and externally\n\n* Ensure the security requirements of our customers and that the requirements for our security certifications (ISO 27001) are met and documented correctly\n\n*  Assist with an overall security concept for our container platform approach\n\n* Work closely together with our platform architecture experts, with a particular focus on the security of the platform\n\n* Assit in providing security related feedback for mission-critical software such as Dovecot, LDAP, Galera, Cassandra, OX AppSuite with a particular focus on hardening\n\n* Prepare system security reports by collecting, analyzing, and summarizing data and trends\n\n* Maintain security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs\n\n* Document architecture and essential function methodologies\n\n* Collaboration with global operations teams\n\n\n\n\n\n\n \n Your background / What you bring to the table\n\n\n\n* Bachelor or master degree in computer science or comparable +10 years job experience\n\n* 3+ years experience in the area of Operations security\n\n* 8+ years experience working with Linux\n\n* Strong experience with configuring, validating and securing environments utilizing firewalls and iptables\n\n* Experience and understanding of hardening Linux-based environments with heterogenous applications\n\n* Knowledge of Internet, authentication, and authorization protocols (HTTP, LDAP, SAML, OAuth/Openid Connect), Privileged Identity Management, Identity Federation\n\n* Knowledge of symmetric and asymmetric encryption technologies, including concepts such as Forward Secrecy, Padding Modes, Elliptic Curves\n\n* Strong Experience with Linux kernel tuning, TCP/IP, Mcast and strong networking fundamentals\n\n* Experience with configuring and operating a Host-based IDS such as OSSEC across a large platform\n\n* Deep understanding of encryption technologies, including keeping cipher suite configurations up-to-date at the OS and application level\n\n* Experience with security incident response\n\n* Solid understanding of networking concepts: the OSI model, TCP, IP, routing, firewalls, load balancers\n\n* Interest in learning new technologies and working with proof of concepts to promote new technologies\n\n* Excellent written and verbal communication skills; willingness to present technical information to a group\n\n* Understanding of multi-tiered applications\n\n* Experience with logging technologies such as Graylog, ELK stack, or Splunk\n\n* Design operation concepts, implementation of IaC automation and provide documentation \n\n* Lead and assist in areas of technical innovations and security improvements\n\n* Some domestic and international travel will be required\n\n\n\n\n\n\n Our offer to you\n\n\n* Exciting work on a modern open-source cloud software in an internationally operating company\n\n* Plenty of scope for your own ideas and design decisions\n\n* Flexible working hours and the ability to work from home\n\n* Equipped with the up-to-date hardware\n\n* Trainings and continuous personal development\n\n* Flat hierarchies with an "Open Door" philosophy\n\n\n

See more jobs at Open-Xchange

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Numbrs Personal Finance AG

 

Security Engineer


🌏 Worldwide

Security Engineer  


Numbrs Personal Finance AG

🌏 Worldwide

aws

securitymgo

infosec

engineer

aws

securitymgo

infosec

engineer


πŸ‘ 2,057 viewed | ✍️ 233 applied (11%)
At Numbrs, our engineers don’t just develop things – we have an impact. We change the way how people are managing their finances by building the best products and services for our users. \n\nNumbrs engineers are innovators, problem-solvers, and hard-workers who are building solutions in big data, mobile technology and much more. We look for professional, highly skilled engineers who evolve, adapt to change and thrive in a fast-paced, value-driven environment.\n\nJoin our dedicated technology team that builds massively scalable systems, designs low latency architecture solutions and leverages machine learning technology to turn financial data into action. Want to push the limit of personal finance management? Join Numbrs.\n\n**Job Description**\n\nYou are responsible for planning, developing, and monitoring all information security aspects of the organisation and our large scale micro-service based distributed systems. From establishing security policies, implementing active defense-in-depth strategies, to conducting reviews of software and infrastructure, you are leading a security-first organisation without compromise. You enjoy learning new things and keep yourself up to date on the latest security threats and defenses. You are a great teammate who thrives in a dynamic environment with rapidly changing priorities.\n\n**All candidates will have**\n\n* a Bachelor's or higher degree in a technical field of study or equivalent work experience\n* experience in establishing organisation wide security policies and procedures in a regulated environment\n* experience in security auditing of back-end distributed systems and infrastructure\n* experience with encryption standards, and securing sensitive data in flight and at rest\n* good knowledge of at least one modern programming language, such as Go, Java, C++, or Python\n* hands-on experience with performing code and design reviews\n* excellent troubleshooting and creative problem-solving abilities\n* excellent interpersonal skills, English written and oral communication\n\n**Ideally, candidates will also have**\n\n* experience with the management of personal data according to the GDPR\n* hands-on experience in securing and monitoring Amazon Web Services infrastructure\n* good understanding of modern authorization protocols like OAuth2 and OpenID Connect\n* good German written and oral communication skills\n\n#Location\n- 🌏 Worldwide

See more jobs at Numbrs Personal Finance AG

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security

 

Staff Engineer

Staff Engineer  


Contrast Security


engineer

infosec

engineer

infosec


πŸ‘ 2,036 viewed | ✍️ 210 applied (10%)
Contrast is looking for an architect enthusiastic and proficient in front-end technologies such as ReactJS and AngularJS and server-side API development written in Java/Spring interested in pursuing a life changing experience in the field of application security and continuous delivery. We are an exciting, young team that is growing leaps and bounds each month. This person should take a wholistic view of our application architecture with sincere attention to quality, performance, scalability, security and maintainability.\n\nThis team is tasked with the unique opportunity to advance our runtime and pre-compile code analysis capabilities. This includes providing enhanced techniques to improve the accuracy, findings and reporting of code analysis. It will also include driving and leading the next generation of product and offerings to make the Contrast platform the choice for code analysis tools among developers and security professionals.\n\nIdeal candidates have a background building highly scalable and responsive Single Page Applications (SPAs) using ReactJS, CSS/Bootstrap, visualization libraries such as D3, HighCharts or AMCharts, as well as other SVG based visualization plugins. We write a lot of GraphQL to interact with our REST layer to improve performance and data interaction.\n\nOur engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our 5 year history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of.\n\n\nAbout You\n\n\n\n* Experience architecting modern, scalable and high-performing full-stack web applications\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You have experience working in Java/Spring or Python/Flask to design and implement robust and scalable APIs.\n\n* Stellar visual skills and attention to detail.\n\n* You have extensive HTML5, CSS3 (Less), and JavaScript Framework (ReactJS) experience.\n\n* Experience with TypeScript and GraphQL.\n\n* Have an eye for quality and have an interest in using tools/frameworks like Enzyme, Prettier, ReactTestRenderer, Jest, JUnit, StoryBook, etc...\n\n* AWS Services: S3, EC2, CloudFront, Lambda.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* Your code is clean, your designs are elegant and you are constantly refactoring.\n\n* Multiple years experience working in Enterprise or Commercial Software development.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation package (salary + equity)\n\n* A fun and dynamic environment where you work with other like minded people on products which make a real difference to the security of our customers\n\n* In-office lunches\n\n* Medical, dental and vision benefits\n\n* Flexible paid time off\n\n* 401K with match\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Wikimedia Foundation


Senior Application Security Engineer

Senior Application Security Engineer


Wikimedia Foundation


infosec

senior

engineer

infosec

senior

engineer


πŸ‘ 269 viewed | ✍️ 1 applied (0%)
\nSummary\n\nThe Wikimedia Foundation is looking for an Application Security Engineer to join the Security team working to help protect Wikipedia and our other projects. You'll be working with other developers and security engineers to create new security features, review the security of other people's code, and help find and fix security bugs before they're exploited.\n\nYOU ARE ...a smart security practitioner with experience building and auditing security features in large scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly, and volunteers can add arbitrary JavaScript to our site.\n\nYou will be joining a team responsible for ensuring the security and integrity of applications written in PHP, Python, Ruby, Lua, Perl, JavaScript (Node.js) among others, using both relational and key-value data storage mechanisms. (Don't worry, you don't need to have had experience with all of those technologies.)\n\nWe’d like you to do these things:\n\n\n* Triage and remediate reported security issues\n\n* Review and deploy features developed by the Foundation and community members\n\n* Work with other development teams to ensure that they make safe architectural and implementation choices\n\n* Constantly poke and abuse our software to find bugs before attackers do\n\n* Provide application security concept reviews and help socialize application security best practice\n\n* Provide support for application security operations\n\n\n\n\nWe’d like you to have these skills:\n\nThe right person is better than the right set of experiences, these are the traits we’ve identified make great additions to our team so far.\n\n\n* Two or more years of application security experience, including thorough understanding of issues documented in the OWASP Top Ten and CWE Top 25\n\n* Strong understanding of modern, object-oriented PHP development\n\n* In-depth experience developing or auditing client-side JavaScript\n\n* Demonstrated ability to exploit and mitigate application-level vulnerabilities\n\n* Experience conducting software security reviews using a combination of source code inspection, manual testing, and automated scanning\n\n* Patience in explaining security issues and their implications on privacy to non-technical audiences\n\n* Sensitivity to the security challenges faced by participants in a large, international project\n\n* Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation\n\n* Experience using Linux at the command line for tasks related to web application development and deployment\n\n* Ability to maintain focus when working remotely\n\n\n\n\nAnd it would be even more awesome if you have this:\n\nIn addition to the basic skills needed for being successful these skills could set you apart from the pack!\n\n\n* Experience as a contributor in the Wikipedia or Wikimedia project communities\n\n* Experience contributing to a consensus-based open source project\n\n* Experience developing, maintaining, or administering authentication systems\n\n\n\n\nAbout the Wikimedia Foundation\n\nThe Wikimedia Foundation is the non-profit organization that supports and hosts Wikipedia and its sister free knowledge sites. Wikipedia consists of nearly 40 million articles across hundreds of languages. Every month, more than 80,000 volunteer editors contribute to Wikipedia. Based in San Francisco, California, the Wikimedia Foundation is an audited, 501(c)(3) non-profit that is funded primarily through donations and grants. It currently employs over 240 staff members.\n\nAt the Foundation, we build technology to help people everywhere access Wikipedia, across devices and in nearly 300 languages. We engineer privacy for our readers and editors so they can safely and securely explore Wikipedia. We create programs and initiatives to make Wikipedia freely available to more people in more parts of the world. We build new tools for the community of editors so they can continue to improve and grow Wikipedia. Roughly a quarter of our budget goes to supporting the community that make the site possible, including through grantmaking programs that enable volunteers and enrich the information on the sites.\n\nBenefits & Perks\n\n\n* Fully paid medical, dental and vision coverage for employees and their eligible families (yes, fully paid premiums!)\n\n* The Wellness Program provides reimbursement for mind, body and soul activities such as fitness memberships, massages, cooking classes and much more\n\n* The 401(k) retirement plan offers matched contributions at 4% of annual salary\n\n* Flexible and generous time off - vacation, sick and volunteer days\n\n* Pre-tax savings plans for health care, child care, elder care, public transportation and parking expenses\n\n* For those emergency moments - long and short term disability, life insurance (2x salary) and an employee assistance program\n\n* Telecommuting and flexible work schedules available\n\n* Appropriate fuel for thinking and coding (aka, a pantry full of treats) and monthly massages to help staff relax\n\n* Great colleagues - diverse staff and contractors speaking dozens of languages from around the world, fantastic intellectual discourse, mission-driven and intensely passionate people\n\n\n

See more jobs at Wikimedia Foundation

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Sonatype


Senior Security Researcher Applications

Senior Security Researcher Applications


Sonatype


infosec

senior

infosec

senior


πŸ‘ 1,097 viewed | ✍️ 108 applied (10%)
\nThe Senior Security Researcher will investigate and analyze vulnerabilities in open-source software. Sonatype is looking for a passionate, driven and talented developer to provide high-quality security data from researching software vulnerabilities.  This is not a development position but relies on development experience to help navigate complex architectures and threat vectors in open-source software. This high-quality security data ensures that our customers are getting maximum value out of our products making them feel like they are part of the Sonatype family.   If you are a positive-thinker and problem-solver and believe that customer success and company success go hand-in-hand, this is a great job for you. This position will provide a valuable learning opportunity with the great potential to grow your newly started career in cyber-security. Enjoy your job as you work in a fast-paced, flexible, and fun environment, with talented, diverse, and forward-thinking individuals. Key Areas of Focus\n\n\n* Review, isolate, analyze, and reverse engineer vulnerabilities in open-source software\n\n* Document attack capabilities\n\n* Provide detection and remediation guidance\n\n* Aid in ideas and prototypes for new tooling\n\n* Collaborate with other team members toward shared product goals\n\n* Improve Sonatype products by providing valuable security data\n\n* Work with technology and business team members to define and refine requirements in an agile development environment\n\n\n\n\nRequired Background\n\n\n* 5+ years of experience in application security or development experience in Java, C#, Python, JavaScript, C/C++ or Ruby\n\n* Excellent oral and written communication skills\n\n* Excellent organizational skills and detail-oriented\n\n* Ability to work independently and as part of a team\n\n\n\n\nDesired Background\n\n\n* Bachelor of Science Degree in Computer Science, Cybersecurity, Engineering, or related field\n\n* Knowledge of application security such as the OWASP Top 10 or Sans 25\n\n* Knowledge of different languages such as Python, Ruby, and scripting\n\n* Knowledge of different operating systems such as *NIX, Windows\n\n* Application vulnerability assessment or penetration testing experience\n\n* Knowledge of open-source environments like Github is a plus\n\n\n

See more jobs at Sonatype

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security

 

Technical Product Manager

Technical Product Manager  


Contrast Security


product manager

exec

infosec

product manager

exec

infosec


πŸ‘ 2,994 viewed | ✍️ 322 applied (11%)
\nContrast Security, Inc. is the world’s leading provider of security technology that enables software applications to protect themselves against cyberattacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nABOUT THE POSITION\n\nWe are currently searching for a Technical Product Manager to lead the future of our Emerging Languages agents. If you are passionate about creating great customer experiences and driving immediate business impact, this role might be just what you have been looking for.   The ideal candidate will have a good understanding of the modern software development lifecycle, the developer persona, and the security space. This role requires a broad understanding of the market trends around Node, Ruby, Python and their corresponding frameworks. He/She should be obsessed about scoping and prioritization, have a strong software engineering foundation, and a track record of driving Agile development as a Product Owner. \n\nResponsibilities:\n\n\n* Product owner for the Node, Ruby and Python agents across the agile development process, including sprint planning, grooming and retrospectives.\n\n* Own and drive the business case for new agents and the strategy and roadmap for the Node, Ruby and Python agents with focus on usability, versatility, adoption and competitiveness. \n\n* Collaborate with the broader product management team to align on the agents priorities across our various product and GTM initiatives. \n\n* Develop a deep understanding of the market landscape and identify key areas of competitive differentiation and market disruption.\n\n* Continuously monitor the pulse of the market through frequent interactions with customers, sales and customer success.\n\n* Work with cross-functional teams to execute successful software releases covering support, operations, communication, documentation & sales enablement.\n\n* Establish clear metrics and KPIs to continuously evaluate business performance and usability with a direct feedback loop into the product strategy.\n\n\n\n\nQualifications:\n\n\n* 1-3 years of technical product management / product owner experience in relevant markets. Experience on targeting the developer persona is a plus.\n\n* Software development experience, especially in Ruby, Python and the corresponding frameworks.\n\n* Customer Experience and KPI-driven mindset that focuses on delivering delightul solutions with measurable success.\n\n* Talent for handling input from various stakeholders and distilling it down to prioritized actionable plans that engineering can execute and deliver.\n\n* Demonstrated experience with Agile and Lean development practices while working closely with engineering.\n\n* Ability to thrive in a startup environment\n\n* Bachelor's degree in engineering; MBA a plus.\n\n\n\n\nWhat We Offer:\n\n\n* Competitive Compensation\n\n* In-office Lunches\n\n* Medical, dental, and vision benefits\n\n* 401(k) + matching\n\n* Flexible paid time off\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Baeldung

 

Java Developer With Spring Security Experience

Java Developer With Spring Security Experience  


Baeldung


infosec

dev

java

digital nomad

infosec

dev

java

digital nomad


πŸ‘ 4,222 viewed | ✍️ 525 applied (12%)
\nWho?\nWe're looking for a Java developer with extensive Spring and Spring Security experience.\n\nExperience with OAuth is a strong plus.\n\nOn the non-technical side – a good level of command over the English language is also a plus.\n\nThe Work\nYou're going to be working with the dev team on developing projects for teaching purposes – naturally with a strong focus on Spring, Security, and OAuth.\n\nThe Admin Details\nTime: ~10 Hours / Week\n\nSystems we use: JIRA, Slack, GitHub, Email\n\nBudget: 20$ – 23$ / hour\n\n\nBest of luck, \n\nEugen. 

See more jobs at Baeldung

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Certica Solutions


Development Security Operations Engineer

Development Security Operations Engineer


Certica Solutions


infosec

ops

engineer

infosec

ops

engineer


πŸ‘ 1,056 viewed | ✍️ 72 applied (7%)
\nCertica seeks an experienced and energetic engineering professional to take Certica’s DevSecOps practices to the next level by driving the secure provisioning, automation and monitoring of Certica’s infrastructure and applications. The DevSecOps Engineer will work collaboratively with other members of the product team to deliver world-class analytic, assessment and data management solutions.  This role will provide important expertise and knowledge by researching new and upcoming technologies while partnering with other teams to achieve our business goals. This role will blend the considerations of best practices of DevOps with SecOps considerations while working in an agile software environment.   \n\nThis is a very exciting full-time position with generous benefits and flexible work arrangements and a great time to join a market leading company that is expanding its operations. This position will be located at either our Austin, TX or Cincinnati, OH locations.\n\nEssential Tasks & Responsibilities:\n\n\n* Implement and maintain the secure infrastructure needed for Continuous Integration and Continuous Delivery practices in our products and manage the environments involved;\n\n* Create a highly robust and secure infrastructure for the automation of the build, deployment, test, monitoring and reporting of operations of our software products;\n\n* Ensure our environments are secure, cost-effective, scalable, responsive, and limit single points of failure;\n\n* Work in an agile software development environment with distributed teams using Scrum;\n\n* Drive and implement security reviews, vulnerability assessments and the resolution of identified vulnerabilities;\n\n* Participate in defining and implementing incident management processes and technologies;\n\n* Research new and upcoming technologies/tools that help us achieve our business goals; and\n\n* Successfully collaborate with other teams, such as development, product management, and quality assurance.\n\n\n\n\nSkills & Professional Experience:\n\n\n* 3+ years extensive professional experience with multiple scripting technologies (PowerShell, Bash, Python, etc.);\n\n* 3+ years of daily hands on production level management using cloud technologies (AWS, Azure) to deploy infrastructure, databases and software in a secure and scalable fashion;\n\n* 3+ years strong experience of any industry leading build, deployment, and configuration system(s); Team City and Octopus preferred but not required;\n\n* Experience leading and implementing security best practices across infrastructure and DevSecOps pipelines;\n\n* Demonstrated ability to design and implement the DevSecOps pipeline as we scale;\n\n* 3+ years of database experience (SQL Server, MySQL, etc.), including configuration, deployment, and query writing and execution;\n\n* Comfortable with Windows and Linux and working with servers from the command line;\n\n* Experience configuring and managing Active Directory;\n\n* Ability to quickly become a contributor working independently and as part of a local or remote team;\n\n* Strong communication, analytical, entrepreneur skills with pride in personal contributions and passion to learn and grow their professional skills/experience;\n\n* BA/BS Degree in Computer Science or related software engineering experience; and\n\n* Appropriate certifications are a plus (CISSP, etc.)\n\n\n\n\nAbout Certica Solutions    www.CerticaSolutions.com\n\nCertica is dedicated to advancing academic progress and equity in education through measurable improvements in student achievement. Certica’s analytic, assessment and data management solutions provide a foundation for standards-based learning and assessment, as well as teacher data literacy. Certica serves more than 1,500 K-12 school districts and numerous charter school organizations, and educational service agencies. Certica is based in Wakefield, Massachusetts, with offices in Harvard, North Carolina, Ohio, South Carolina and Texas. Follow Certica on Twitter @Certica_K12.

See more jobs at Certica Solutions

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Skillshare


Senior Security Engineer

Senior Security Engineer


Skillshare


infosec

senior

engineer

infosec

senior

engineer


πŸ‘ 1,998 viewed | ✍️ 162 applied (8%)
As a Senior Security Engineer on the SRE Team at Skillshare, you’ll play a key role in helping us continuously improve our security programs to ensure the best experience for our users through the safety of our technology and data. \n\nThis role spans strategic work of putting in place forward-looking initiatives as well as responding to external threats on an ongoing basis, which means the opportunity for impact across the board.  We’re scaling quickly and are excited to bring someone onboard who can help us proactively tackle challenges – both in the day-to-day operations and anticipated future ones. \n\nYou’ll collaborate with the other members of the SRE team as well as the product development teams to plan and implement various security initiatives. We’ll look to your strategic expertise, reliable execution, and sound judgment to improve and maintain our security infrastructure, along with creating and improving processes for maintaining a secure product and environment.\n\nYou’ll be joining a team that’s passionate about technology, and helping pave the way for building products together that we’re proud of. We’re excited to meet you.\n\n\n\n\nWhat you'll do:\n\n\n\n\n* Improve, monitor and maintain our information security.\n\n* Execute security initiatives related to infrastructure, product, and data.\n\n* Make strategic recommendations and improvements to our security.\n\n* Work with application developers to improve the security of various product features.\n\n* Proactively prep and train developers and raise the security awareness of everyone in the organization.\n\n* Quickly and proactively respond to incoming security threats.\n\n* Continually assess, address and report on the levels of threat and preparedness.\n\n\n\n\n\n\n\n\n\n\nWhy we're excited about you:\n\n\n\n\n* 7+ years of experience building, supporting and securing cloud-based web infrastructure with AWS.\n\n* Knowledge of best security practices for building web applications.\n\n* Experience with security monitoring tools.\n\n* Experience in compliance with industry standards such as PCI, OWASP, NIST, GDPR etc.\n\n* Experience with Single Sign-on (SSO) for internal systems.\n\n* Understanding of and ability to deal with and prevent typical security threats and risks.\n\n* Deep understanding of web application infrastructure.\n\n* Working knowledge of software engineering.\n\n* Strong communication skills – you’re a natural collaborator and can report out to stakeholders of all levels.\n\n* Tech stack knowledge: Docker (Kubernetes experience is a plus), Linux, DataDog, AWS security products, MySQL.\n\n\n\n\n\n\n\n\n\n\nWhy you're excited about us:\n\n\n\n\n* Impact: you’ll play a key role in shaping the direction of a comprehensive security approach long-term.\n\n* Growth: Our team is small, so you’ll have room to wear a lot of hats and take on more responsibility over time. \n\n* Our mission: We are building a learning ecosystem for the new economy and changing millions of lives for the better.\n\n* Our team: We have a passionate, smart team that is a lot of fun to work with.\n\n* Your life: We take pride in our flexibility. Working remotely is part of how we need to work these days. You’re a professional, and we trust you to do what you need to do.\n\n\n\n\n

See more jobs at Skillshare

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

DHIS2


Security Software Engineer

Security Software Engineer


DHIS2


infosec

dev

engineer

digital nomad

infosec

dev

engineer

digital nomad


πŸ‘ 578 viewed | ✍️ 7 applied (1%)
\nAt DHIS 2 we are making a positive impact on the world. DHIS 2 software engineers develop a platform used to improve health care at a global scale. We work directly with end-users in order to understand how our system is being used. DHIS 2 developers work in small teams and have great impact on the product. We are seeking a security software engineer who is passionate about creating secure, reliable software systems.\n\nDHIS 2 is a web-based, open source data platform used by governments, international development agencies and NGOs in more than 90 countries worldwide. It is currently recognized as the world's most widely adopted e-health information platform. The system is used to improve access and use of information within health, education, sanitation, nutrition, disaster relief and other domains. The platform has become a global standard within international development and has a huge impact on the way health systems are being managed.\n\nDHIS 2 is changing the way developing countries and NGOs manage their health systems and programs through a world class data platform. We work on projects with global reach and scale, such as:\n\n\n* Disease surveillance and monitoring in collaboration with the Centers for Disease Control and Prevention (CDC). DHIS 2 is used to notify the right people about possible disease outbreaks so that action can be taken in time.\n\n\n\n\n\n* HIV/AIDS control in collaboration with PEPFAR, the largest initiative ever for combating a single disease. DHIS 2 is used to collect data and provide analytics and insights into how funding can be spent most effectively.\n\n\n\n\n\n* Health information management systems with more than 60 ministries of health worldwide, including South Africa, Tanzania, Ghana and Cambodia. DHIS 2 is used to collect and analyze data for areas such as service utilization, family planning and immunization.\n\n\n\n\n\n* Program monitoring and evaluation with more than 70 NGOs such as Medecins Sans Frontieres, Save the Children, and PSI. DHIS 2 is used to analyse the impact of programs, improve planning and guide resource utilization.\n\n\n\n\nAt DHIS 2 you will be specialize in building and maintaining a secure and reliable software platform. You will play a key role in the software design, implementation and testing, where you apply security thinking and best-practices to the process. You will advise, train and encourage fellow engineers to adopt secure software development practices, as well as writing source code on your own. The role encourages you to research and identify security flaws and attack vectors in the source code base, as well as ensuring these will be corrected. You will help defining and implementing an organization-wide security strategy.\n\nAt our team you will be part of the software design process and have great influence on the end product. We give you the vision and the challenge - you have the freedom to choose your own approach to problem solving. And of course, you can pick your hardware, tools and software of choice.\n\nOur platform is built API-first with an extensible app architecture. We do continuous delivery and short iterations. You can find our source code on GitHub. Check out the backend repository and a typical front-end app repository.\n\nTo learn more about how it is to work at DHIS 2, have a look at this video.\n\n\n\nSkills\n\n\n* Experience with secure software engineering practices.\n\n* Knowledge about application security risks including OWASP top 10.\n\n* Experience with Java development (Java 8) and Maven.\n\n* Experience with PostgreSQL, MySQL or other relational databases.\n\n* Working proficiency and communication skills in verbal and written English.\n\n\n\n\n\n\nNice-to-have skills\n\n\n* Relevant security certifications.\n\n* Work experience from similar role.\n\n\n\n\n\nLocation\n\nFor this position we accept both remote, partly remote and on-site work at our Oslo offices.

See more jobs at DHIS2

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Syncro


Security Architect

Security Architect


Syncro


infosec

architecture

infosec

architecture


πŸ‘ 3,568 viewed | ✍️ 239 applied (7%)
\nSecurity Architect Job Responsibilities and Duties\n\nSyncro is a small team crafting applications helping small business be more successful. Our software does job tracking, marketing, invoicing, integrates tons of online tools -- and is awesome.\n\nWe're building a company that has fun inventing. We go fast, and our customers love us. Thousands of repair shops and IT Professionals all over the world rely on our platform for their entire business operations.\n\nWe are different - we really do care, the founders are writing this ad and holding interviews.\n\nWe are building a powerful Remote Machine Management (RMM) platform and this space demands the utmost in security. This is where you come in! As a lead in the security team you’d be relied upon to coordinate vulnerability assessments, field incoming reports from bug bounty programs, assist real-time in active attack scenarios, help marry business requirements with state of the art security systems, and more.\n\n\nWHAT YOU'LL BE DOING:\n\n\n\n* Perform penetration testing on new and existing application architecture\n\n* Gather requirements and current standards to overview technology and make recommendations\n\n* Plan architecture changes and help guide new innovative security programs\n\n* Keep up-to-date on the latest security standards\n\n* Document security procedures for hosted environments, remote workers, internal tools, and the production platform.\n\n* Estimate cost and budget for security updates\n\n* Oversee technical implementations during security or other IT updates\n\n* Mitigate damages during a cyber attack and respond to threats quickly\n\n* Coordinate outside security vendors for vulnerability assessments, audits etc\n\n\n\n\n\nHIGHLIGHTS:\n\n\n\n* A salaried position designed to grow with the company (seriously, try us).\n\n* We want this to be your dream job - but we need your help (tell us how).\n\n* We will advance your career like nobody else -- stay with us for the long haul and we'll keep you challenged, learning, passionate, and growing.\n\n* We are currently a dispersed team working from home.\n\n* We offer comprehensive health, vision, and dental coverage and a 401(k).\n\n\n\n\n\nWHAT WE'RE LOOKING FOR:\n\n\n\n* A few years of professional experience working on application security and network security.\n\n* Ruby on Rails or web development experience is a major plus.\n\n* No specific education necessary. (really.)\n\n* Excellent communication skills - verbal, written and electronic.\n\n* You care -- which means sometimes putting yourself out there for a customer experiencing pain.\n\n* Ability to multi-task in a fast paced environment.\n\n* You're kind and wily (in a good way).\n\n* Bonus: Experience with HIPAA compliance or other similar experience.\n\n\n\n\n\nHOW TO GET HIRED BY US:\n\nJust demonstrate that you are an individual, you have a personality, you enjoy life, and you enjoy good work. And please include a resume. If you have a cover letter that can highlight something you know about our product, the space, and security trends in this space, that would be fun to read!\n\nSyncro is an equal opportunity employer. We value diversity and are committed to creating an inclusive environment where all employees can thrive and do their best work, free from discrimination and harassment.\n\n\nPay: DOE. Let's Talk.

See more jobs at Syncro

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Security Roots Ltd


Support Specialist [100% Team]


🌏 Worldwide

Support Specialist [100% Team]


Security Roots Ltd

🌏 Worldwide

infosec

saas

infosec

saas


πŸ‘ 10,153 viewed | ✍️ 503 applied (5%)
# Our Story\nIn short, Security Roots helps make the Internet safer. We work with IT security professionals and ethical hackers to help them find security holes and vulnerabilities in systems before the bad guys do.\n\nThere is a lot of creativity and innovation involved in findings those holes. Unfortunately, it’s not all fun and games, in order for their β€œfindings” to be useful, they need to document their results, track progress, notify stakeholders, review mitigations implemented, verify, re-test, etc. There is a lot of overhead involved in the process.\n\nSurprising no one, IT Security experts like the fun and games but don’t like the overhead/ back-office stuff. That’s where we come in, we exist to make the life of IT Security professionals easier, better, more enjoyable by making all of these overhead tasks easier and more painless.\n\nWe've been in business for 10 years, completely self-funded and profitable. Today, we serve over 440 InfoSecurity teams across 37 different countries.\n\n\n# What’s the opportunity?\nWe’re looking to hire our 8th full-time employee, a well-rounded Support professional.\nIn this role, you will learn a ton and be part of a small, global, and user-centered company. You’ll even report directly to Daniel Martin, the founder.\n\nYou’ll have the opportunity to make a difference to the lives of 100s of ethical hackers. Plus, as a small team, you will will have a lot of choice about what to work on, and there are still a lot of untapped opportunities for you to grow as the company does.\n\n![Daniel at the BlackHat conference](https://lh5.googleusercontent.com/-F7nk_6rb8B2qCVyuyU1kASsJyz83C4CmQsgl4MzaCZcY6qyPBkK9i7Qgp_W-UHklRlO0-kOUP269JImrK5zoPvRS1dh6zoAp-wWaLgdJTW3VfTH0DGMLVqT04q1xi6kn6SWPybt)\n_That’s our founder, Daniel, presenting on the conference floor._\n\n\n# What's in it for you?\n- **Work anywhere** β€“ We're 100% remote.\n- **Flexible work hours** - Provided you have reasonable overlap with the team (roughly within EU/US Eastern business hours).\n- **Great salary** β€“ You will be making more than others in your region.\n- **Flexible vacation** β€“ Take time off when you need it, we trust you (no less than 4 weeks each year).\n- **No external pressures** - Our users are king, we do what's best for them. We're self-funded, and don't have any investors, so we can make the right decisions for our customers without worrying about artificial deadlines or financial targets.\n- **Autonomy** β€“ You will be given a lot of freedom to do what you think is right, without needing to explain every decision.\n- **Meaningful work** β€“ You will take initiative and ownership to see things through to completion. We won't micro-manage you. And your work will be measured by your results.\n- You will have great hardware and tools to work with.\n- Company retreats.\n\n# What we offer and what we are looking for\n We're looking to bring a new person onboard our Help & Support team. You'll become an expert in all areas of our flagship product Dradis Professional. If you know where the name Dradis comes from, this **may** just be the perfect job for you!\n\nThe bread and butter of the position involves:\n\n- Troubleshooting technical issues in Dradis and helping our developers diagnose bugs.\n- Acting as the bridge between our users and the product team. As someone on the front line, your understanding of the product and our users is incredibly valuable. You'll regularly chat with the both to make sure we're getting things right.\n- Enhancing and growing our online documentation tools.\n\n\nCustomer success is a big part of the role. You'll work one-on-one with customers, helping them to get the most out of Dradis. You won't be shy to jump on a live screen-sharing session, or to schedule meetings to talk about unique use cases. \n\n# Other areas you'll be dealing with:\n\n- **Techie stuff**: when people report bugs or are having trouble using Dradis, you'll help them troubleshoot and re-create bugs for our development team.\n- **Taking care of people stuff**: when people just want to chat or have a social media question, you'll respond.\n- **Screen-share stuff**: you may (occasionally) do a product tour or demo for a team that is thinking about starting using Dradis.\n\nThis is a full-time position with an immediate start date to work 100% remotely. You'll be taking care of our customers and community for about 40 hours per week – Monday through Friday having a flexible schedule with reasonable overlap with normal EU business hours. \n\n\n# This position might be for you if:\n- You speak technology as a first language, and are great at teaching yourself new software and web applications. Your are not afraid of the source code, and have some rudimentary knowledge of Ruby (or some other programming language) and are not afraid to use it!\n- You've held a remote position before, or you've held a similar position of responsibility in a traditional organisation but now are looking to **improve your work-life balance**.\n- You are a well-rounded individual, work is not everything in life, you may have a family and social life. You work hard when it's work time and are **able to switch off** when it isn't.\n- You're comfortable communicating with others verbally and in writing. **Our team is spread across the world**, and so are our clients.\n- You are organised, like to be on top of your responsibilities and don't let things slip through the cracks. You will be sure to include the name of your favourite tv series as part of your application.\n- **You believe in giving back to the community**. We started with an open-source project and to this day we remain firm believers of open-source and giving back. Part of what you will be creating with the team will be released as open-source. \n\n#Location\n- 🌏 Worldwide

See more jobs at Security Roots Ltd

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Olo


Security Engineer Blue Team

Security Engineer Blue Team


Olo


infosec

engineer

infosec

engineer


πŸ‘ 2,375 viewed | ✍️ 212 applied (9%)
\nAt Olo we develop an online food ordering platform used by many of the country’s largest restaurant chains, reaching millions of consumers. Chances are if you’ve ordered directly from a restaurant brand’s app or website, we’ve made that happen. Mobile ordering and payments is an exciting and active industry full of interesting players and yet still a relatively untapped market ripe for disruption. We’re quite up-front about the technical challenges our business faces. Running a platform with multiple white-labeled front-ends, that maintains real-time connections into thousands of restaurants’ POS systems, and coordinates complex transactions between these and other third parties (such as payment gateways and gift card providers) is not for the faint of heart!\n\nWe take great pride in the reliability, security, and performance of our systems and services. We are looking for a talented Security Engineer with experience in a Blue Team role to help us fortify our defenses and protect the systems that enable hungry people to order their food quickly and securely.\n\nIn the role of Senior Security Engineer, you will design and implement the security defenses that enable our systems to keep running while protecting the data of our clients and their customers. \n\nResponsibilities\n\n\n* Detect and defend against attacks.\n\n* Review patching, firewall rules, and server configurations together with the Infrastructure team.\n\n* Respond to alerts, events, and incidents per our specified procedures and processes. \n\n* Proactively examine logs and system activity for unusual activity, adding and tweaking monitors and alerts.\n\n* Lead remediation efforts from Red Team findings.\n\n* Work with PCI and SOC auditors to provide evidence of compliance.\n\n* Support and lead AV and Endpoint technology and deployments. Automate patching and task automation of servers and desktops.\n\n* Interact with IT operational and development teams to advise on, coordinate and track mitigation and remediation activities.\n\n* Conduct Blue Team exercises and Computer Network Defense drills in order to evaluate and improve processes and technologies related to threat detection, incident response, patching, remediation and user training.\n\n* Maintain vulnerability management solutions to ensure endpoints are compliant with security guidelines.\n\n* Daily operational work includes security monitoring, patch verification, IDS alerts, FIM alerts, log analysis, forensic analysis, host configuration audits, firewall rule reviews, assisting with fraud attacks, and other security tasks.\n\n* Help diligence third party software and SaaS tools for our approved vendor list.\n\n* Proactively identify and implement improvements to our tools and processes.\n\n\n\n\nRequirements\n\n\n* Previous Blue Team experience \n\n* Proficient in current security technologies, including advanced anti-malware solutions, network forensics, and detection solutions.\n\n* Proven experience developing and leading remediation / mitigation activities, and providing status updates and reports.\n\n* Experience with Windows Desktop, Windows Server, macOS, and Linux operating systems and system administration – specifically with regard to hardening, detection, patching and compliance.\n\n* Solid experience with AWS security best practices and Infrastructure-as-Code (e.g. Terraform, Ansible, CloudFormation or similar.)\n\n* Experience with both hardware and AWS networking configuration (switches, firewalls, security groups, etc) – specifically with regard to patching and compliance.\n\n* Deep understanding of networking concepts such as DMZs, subnets, VLANs, proxies, private IP addressing and NAT; protocols, ports and common services, such as TCP/IP network protocols and application layer protocols (e.g. HTTP/S, DNS, SSH, SMTP, Active Directory etc.)\n\n* Up-to-date knowledge of information technology and cyber security standards, trends, and issues. \n\n* Experience deploying, maintaining and administering security technologies including DLP systems, IDSs, WAFs, FIM, etc. \n\n* Experience with PCI and/or SOC compliance highly beneficial.\n\n* CISSP certification preferred.\n\n\n\n\nAbout Olo\n\nOlo powers digital ordering and delivery programs that connect restaurant brands to the on-demand world, placing orders directly into the restaurant through all order origination points – from a brand’s own website or app, third party marketplaces, social media platforms, smart speakers, and home assistants. Olo serves as the on-demand ordering and delivery platform across 70,000 locations for over 300 brands, such as Applebee’s, Checkers & Rally’s, Cheesecake Factory, Chili’s, Dairy Queen, Denny’s, Five Guys Burgers & Fries, Jamba Juice, Noodles & Company, Portillo’s Hot Dogs, Shake Shack, sweetgreen, Wingstop, and more. Learn more at www.olo.com.  \n\nOlo is located on the 82nd floor of One World Trade Center.  We offer great benefits, such as 20 days of Paid Time Off, fully paid health, dental and vision care premiums, stock options, a generous parental leave plan, and perks like FitBits, rotating craft beers on tap in our kitchen, and food events featuring our clients' menu items (now you know why we give out FitBits!). Check out our culture map: https://www.olo.com/images/culture.jpg.\n\nWe encourage you to apply! \n\nAt Olo, we know a diverse and inclusive team not only makes our products better, but our workplace better. Many groups are consistently underrepresented across the tech sector and we are fully committed to doing our part to move the needle. \n\nOlo is an equal opportunity employer and diversity is highly valued at our company. All applicants receive consideration for employment. We do not discriminate on the basis of race, religion, color, national origin, gender identity, sexual orientation, pregnancy, age, marital status, veteran status, or disability status.\n\nIf you like what you read, hear, and/or know about Olo, and want to be a part of our team, please do not hesitate to apply! We are excited to hear from you

See more jobs at Olo

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Development Manager Front End Technologies

Development Manager Front End Technologies


Contrast Security


front end

exec

infosec

front end

exec

infosec


πŸ‘ 1,928 viewed | ✍️ 143 applied (7%)
\nAs a member of the Contrast Security Engineering Team, you will join a group responsible for industry leading Application Security products. Our team includes engineers, designers, and product managers, all focused on making the Internet safer for everyone.  We believe in agile practices to build our software, as well as continuously delivering features and improvements to our users. You are a person who is always pushing your teammates to do their best work and intolerant of anything else. Our team believes that a successful product is built by working with designers, product managers, and operators to understand the full cycle of software development.\n\nThe role of the Development Manager involves a balance of day-to-day personnel management, as well managing development projects in a cross-functional manner. Development managers are not just managers, as they are expected to commit code, but at a different pace than contributing engineers. We believe that to be an effective manager, you have to be engaged in the development of the product as well.\n\nAs Development Manager of our Front-End Engineering Team you have a number of responsibilities, but the primary one is to foster a culture of innovation and quality within your team. You are going to want to do this in an expeditious manner. Your want deliver results to the customer and market through iterative designs and implementations. To do this you need to make sure the development team is able to work as efficiently as possible and this means making sure they have clear goals, both short term and long term, and that nothing prevents them from doing their work. From the initial project scope to deploying the product out to customer sites, each step is your responsibility. You can, and should, delegate as much as you can but be ready to check that things are being done as you want and be ready to jump in if it is not.\n\nIdeal candidates have a background building highly scalable and responsive Single Page Applications (SPAs) using ReactJS, AngularJS, CSS/Bootstrap, visualization libraries such as D3.js or AMCharts, as well as other SVG based visualization plugins.\n\nLeadership Expectations\n\n\n* Own your product and software code base, including the feature road map, customer issues/defects and the technology road map.\n\n* Lead up cross-functional development project initiatives owning project management, issue tracking, scoping and planning.\n\n* Collaborate with the Product Owner, Scrum Master and Development team to deliver a high-value, first class security product.\n\n* Drive the daily standup meeting with the team to ensure the project is on-track and that issues are resolved timely.\n\n* Support all hiring and recruiting initiatives for your team.\n\n* Work on technical designs and architectural initiatives on a project by project basis.\n\n* Manage individuals supporting their personal/career growth and development.\n\n* Develop team and individual goals/objectives that align to the department and company goal\n\n* Perform consistent and regular individual one on one meetings with team members.\n\n* Be a team player. You love to work with others to find the right solutions.\n\n\n\n\nTechnical Expectations\n\n\n* Build web-based interfaces and applications and contribute to our platforms, style guide, APIs and libraries.\n\n* Design and development of a rich user interface for mission critical high-availability analytics application using front end technologies like TypeScript, Javascript, ES6, HTML, CSS, SASS, and D3.\n\n* Experience with at least one of the following frameworks: AngularJS, Backbone.js, ReactJS, Ember.js\n\n* Execute performance analysis and optimization of page render, data transfers and page load optimizations.\n\n* Define our strategy for front-end development, hand-picking our future JavaScript frameworks, libraries and plugins.\n\n* Demonstrable examples personal or work projects built in React web/native.\n\n* Strong ability to recognize and predict use cases and user interaction so we can deliver experiences that bring delight to our customers \n\n* Stellar visual skills and attention to detail\n\n* Work with design and product teams to build amazing, jaw-dropping features.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n* Can work in a small, fast paced environment with great communication skills.\n\n* Give back to the Open Source Community whenever humanly possibly.\n\n\n\n\nAbout You\n\n\n* You love to manage others and make them better developers.\n\n* You love to code and deploy at scale.\n\n* Desire to make the Internet a safer place.\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation\n\n* Daily team lunches\n\n* Meaningful stock plans\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off\n\n* 401k\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Development Manager Java Agent

Development Manager Java Agent


Contrast Security


exec

java

infosec

exec

java

infosec


πŸ‘ 1,597 viewed | ✍️ 92 applied (6%)
\nAs a member of the Contrast Security team, you will join a group responsible for industry leading Application Security products. Our team includes engineers, designers, and product managers, all focused on making the Internet safer for everyone.  We believe in agile practices to build our software, as well as continuously delivering features and improvements to our users. You are a person who is always pushing your teammates to do their best work and intolerant of anything else. Our team believes that a successful product is built by working with designers, product managers, and operators to understand the full cycle of software development.\n\nThe role of the Development Manager involves a balance of day-to-day personnel management, as well managing development projects in a cross-functional manner. Development managers are not just managers, as they are expected to commit code, but at a different pace than contributing engineers. This is our flagship development team and the opportunity to lead a group of very talented and motivated software engineers.\n\nAs Development Manager of the Java Agent team you have a number of responsibilities, but the primary one is to ship product out the door. Your goal is deliver results to the customer and market. To do this you need to make sure the development team is able to work as efficiently as possible and this means making sure they have clear goals, both short term and long term, and that nothing prevents them from doing their work. From the initial project scope to deploying the product out to customer sites, each step is your responsibility. You can, and should, delegate as much as you can but be ready to check that things are being done as you want and be ready to jump in if it is not.\n\nRoles and Responsibilities\n\n\n* Own your product and software code base, including the feature road map, customer issues/defects and the technology road map.\n\n* Lead up cross-functional development project initiatives owning project management, issue tracking, scoping and planning.\n\n* Collaborate with the Product Owner, Scrum Master and Development team to deliver a high-value, first class security product.\n\n* Drive the daily standup meeting with the team to ensure the project is on-track and that issues are resolved timely.\n\n* Support all hiring and recruiting initiatives for your team.\n\n* Work on technical designs and architectural initiatives on a project by project basis.\n\n* Manage individuals supporting their personal/career growth and development.\n\n* Develop team and individual goals/objectives that align to the department and company goal\n\n* Perform consistent and regular individual one on one meetings with team members.\n\n* Be a team player. You love to work with others to find the right solutions.\n\n\n\n\nAbout You\n\n\n* You love to manage others and make them better developers.\n\n* You love to code and deploy at scale.\n\n* Desire to make the Internet a safer place.\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation\n\n* Daily team lunches\n\n* Meaningful stock plans\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Redox


Director Of Security Engineering

Director Of Security Engineering


Redox


infosec

exec

engineer

infosec

exec

engineer


πŸ‘ 2,993 viewed | ✍️ 154 applied (5%)
\nAre you a technical leader who is passionate about security and enabling a team of highly talented security engineers in their mission to make Redox the most trusted name in healthcare technology?\n\nThe Redox Security Team\n\nThe Redox Security Team is building the foundation for our company to safely and efficiently eliminate the barriers to the adoption of technology in healthcare. We support teams throughout the company to enable them to build components that can securely store and transmit health data, thus enabling our customers to rapidly build and deploy products to change the face of the healthcare industry.\n\nYour Impact in this Role\n\nAs a Director of Security Engineering, you will oversee critical security programs that directly support building our secure healthcare platform. These programs include Application Security, Cloud Security, Identity & Access Management and Corporate Security. You will be responsible for coaching engineers in these functions and managing our strategic relationships across the technical and operational teams they work with.  We are all patients, and your role will be to ensure the safety of the data of yourself, your loved ones, and everyone else’s flowing through our platform. Our mission at Redox is to make health data useful, and you would focus on how to ensure that this mission isn’t undermined by interference from bad actors or flaws in the design of the environment. \n\nAbout You:\n\n\n* You prioritize building and supporting a diverse and inclusive team of engineers.\n\n* You are a leader who is able to elicit support without direct authority across the company.\n\n* You maintain relationships with key stakeholders and allies. \n\n* You are an exceptional coach, supporting your direct reports in achieving their goals and progressing their careers. \n\n* You hold yourself and your team accountable to goals and deliverables.\n\n* You maintain strong technical capabilities and use these to influence your overall security engineering strategy.\n\n* Rather than find solutions you help your teams find them themselves.\n\n* Be a sponsor and vigorous champion for your teams’ initiatives, including removing roadblocks for them when needed.\n\n* You draw from your experience to anticipate risks, and solve for future problems before they jeopardize your team. \n\n* Coordinate roadmaps across security, engineering and operation functions to ensure our plans are in sync, we have dependencies identified and are working towards common goals. \n\n* You have strongly honed communication and organizational skills.\n\n\n\n\nWork Experience and Expertise Should Include:\n\n\n* Experience leading technical engineering teams.\n\n* Knowledge of cloud-native and modern technologies (AWS, NodeJS, *nix, OSX, etc).\n\n* Familiarity of security practices, processes, and systems.\n\n* Affinity for an engineering culture that emphasizes Agile, DevOps, and continuous delivery.\n\n* Deep understanding of threat models for large, high-scale production platforms.\n\n* Strong communication and organizational skills.\n\n* Technical Security certification is nice to have.\n\n\n\n\nBonus Points\n\n\n* A history of building high performing technical security teams. \n\n\n

See more jobs at Redox

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

King & Union


Cyber Security Sales Engineer

Cyber Security Sales Engineer


King & Union


infosec

sales

engineer

infosec

sales

engineer


πŸ‘ 2,197 viewed | ✍️ 113 applied (5%)
\nPosition Description\n\nKing & Union is seeking to hire an experienced and talented Senior Cyber Security Sales Engineer in our fast-paced well-funded start-up. Our flagship product, Avalon, is a threat analytics platform built with collaboration at its core helping build an interactive community of cyber analysts. Avalon provides a dynamic workspace where security operators and analysts can lean in, cut through the noise and reduce the time to address threats from hours to minutes. The platform enables organizations’ users to rapidly collaborate with trusted peers on investigations and findings, providing unique insights, and setting up fast action events for remediation. The Senior Sales Engineer is responsible for providing exceptional pre-sales support to the sales team focusing on public and private sector accounts.\n\nOverview of Position\n\n\n* Assist in driving new business from prospective and existing customer accounts as well as assisting the sales team in meeting and/or exceeding all sales quotas\n\n* Organize, plan, direct, and coordinate all aspects of the technical pre-sales engagement for the prospect\n\n* Serve as business resource to the customer/prospect and provide subject matter expert service and consulting throughout sales cycle\n\n* Proactively drive sales opportunities within identified accounts\n\n* Work with Sales, Marketing, and Product Managers to bridge the gap between the customer and the product contributing to messaging and product enhancements\n\n* Ownership of technical relationships with our pre-sales customers\n\n* Support sales team to accelerate sales cycle as appropriate\n\n\n\n\nRequirements:\n\n\n* Bachelor’s Degree in Computer Science or equivalent experience\n\n* +5 years of experience as a sales engineering or similar consulting role\n\n* Strong understanding of general networking concepts\n\n* Strong understanding of security and information event management (SIEM), SOAR's, TIP's, threat intelligence \n\n* Knowledge of scripting languages like Python/Perl\n\n* Ability to handle Proof of Concept and solution demonstrations\n\n* Self-motivated and strong work ethic\n\n* Clear, concise, confident, and effective communicator\n\n* Exceptional presentation skills and commitment to customer satisfaction\n\n* Background in cybersecurity and relevant industry experience preferred\n\n* Prefer knowledge of threat intelligence landscape including key players in the industry \n\n* Broad contacts in cyber threat intelligence community are a plus \n\n\n\n\nCompensation\n\n\n* Early round shares\n\n* Competitive salary\n\n* 401(k), healthcare, and full benefits\n\n* Ability to work from home and our offices in Old Town, Alexandria\n\n\n

See more jobs at King & Union

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Perch Security


Senior Full Stack Developer

Senior Full Stack Developer


Perch Security


full stack

dev

senior

infosec

full stack

dev

senior

infosec


πŸ‘ 1,929 viewed | ✍️ 127 applied (7%)
\nDevelopers at Perch write clean and maintainable Python3 and modern Javascript.\n\nOn the backend; we mainly use the battle-tested Django Rest Framework to create scalable, robust, queryable REST APIs. We architect performant database tables and queries in Postgresql, query our multi-terabyte Elasticsearch, connect to microservices, as well as 3rd party APIs to compose the data returned by our endpoints. We use Redis to cache expensive calls where necessary. We use Docker and AWS to support our infrastructure. On the frontend; we have a single page application written in React that connects to our Django API for data.\n\n Our growing development team follows an agile workflow; planning projects that can be broken down into tasks that can be completed in two-week sprints. If you’re a strong technology generalist who loves learning new things and isn’t afraid to dive in and figure things out, Perch might be the place for you.\n\nA day in the life\n\n\n* Work with a team of developers, designers, and stakeholders to plan, build, and deliver updates to our core products and services every sprint.\n\n* Write, test, and ship code for our production Django API.\n\n* Debug errors that might crop up and write patches to fix them.\n\n* Design database tables for new features.\n\n* Refactor and improve existing code for greater simplicity or performance.\n\n* Write code to integrate with 3rd party partners and data sources.\n\n* Write, test, and ship code for our production React app that consumes REST APIs (and possibly GraphQL in the future)\n\n* Write, test, and ship code for multiple Node.js services that consume and produce REST APIs (and possibly GraphQL in the future)\n\n* Work independently to identify bottlenecks and sources of potential failure and improve them.\n\n* Create, maintain, and monitor backend services deployed with AWS for things like email processing, data visualization, and data transformation ( at a pretty large scale )\n\n* Participate in code review and collaborate with other developers to ensure we’re shipping high-quality code and products.\n\n\n\n\n\n\nA perfect match\n\n\n* You have extensive experience writing modern, testable Python code with a team of developers.\n\n* You have experience with a web framework such as Django (Django Rest Framework) or Flask.\n\n* You are comfortable creating relational database models, and preferably have some experience with Postgresql.\n\n* You have experience writing code for web APIs and know what HTTP status codes to use when. You know when to use POST vs PUT requests and some REST API concepts.\n\n* You know some Linux and aren’t afraid to SSH into a server to check out what’s going at the operating system level. Checking disk usage, running processes, or tailing logs.\n\n* You have experience with a modern Javascript framework (NodeJs, Express, React).\n\n* You can follow patterns established by Javascript developers and make changes to React code.\n\n* You have experience querying Elasticsearch.\n\n\n\n\n\n\nAbove and beyond\n\n\n* Experience testing code with PyTest\n\n* Experience with Elasticsearch and other Elastic products\n\n* Amazon Web Services ( RDS, EC2, S3, Beanstalk, and seemingly a million others )\n\n* CI/CD ( Docker, Jenkins, GitHub, or similar )\n\n* Some networking experience, you know what a subnet is\n\n* Cybersecurity interest or background\n\n\n

See more jobs at Perch Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

SpiderOak


Security Architect

Security Architect


SpiderOak


infosec

architecture

infosec

architecture


πŸ‘ 2,260 viewed | ✍️ 132 applied (6%)
\nAbout SpiderOak\n\nWe want to change the world, and we’ve already done it once. SpiderOak has been building encrypted software since before the first iPhone was released.\n\nSpiderOak is committed to building secure and reliable software that protects our customers’ data. Our approach is fundamentally different from most mainstream security companies. Instead of adding layers of security on top of an insecure system, we build software that is inherently secure.\n\nHow are we different?\n\nSpiderOak builds need-to-know technology that supports customers working in hostile environments. Traditional systems trust IT infrastructure to maintain the whole security system, even though the news is rife with evidence that this model does not work. Our software combines end to end encryption with a distributed ledger (aka Blockchain) technology to offer best-in-class security with no backdoors.\n\nThe Distributed Ledger, SpiderOak Model\n\nA distributed ledger approach can provide compartmentalization of data that does not suffer from a single point of failure and is both fast and cost-effective. Compartments are defined using an irrefutable distributed ledger, enabling complete confidence in who is allowed to participate. Once the list of allowed users is defined, it becomes easy for those parties to negotiate shared encryption keys to secure the data being collaborated on.\n\nOur approach allows for the instant provisioning of cryptographically secure collaboration spaces for use in scenarios where certainty about who has access to that space is a mission requirement.\n\nAbout SpiderOak Engineering\n\nOur Engineering team is comprised of passionate and creative people who are committed to the premise that complexity is the enemy of security. The problem of security will not be solved by layering on more band-aids, e.g. firewalls, packet inspection, two-factor authentication, etc… these actually add complexity by increasing the attack surface. We take a fundamentally different approach by removing the need to trust your infrastructure or your admins through the combination of\n\n\n* Zero-trust systems and applied cryptography\n\n* Distributed ledger\n\n\n\n\nOur platform and applications – built on Go – enable our customers to collaborate and communicate securely, and we’re looking for growing the team to help us turn this ambitious vision into reality. Our culture is focused on productivity and creativity, and we’re committed to collaboration with our colleagues across the organization.\n\nJob Description\n\nRather than bore you with a long description, let’s cut to chase: your job is to specify and review designs for our core Platform: a cryptographic protocol for zero-trust collaboration in a distributed environment. You will be responsible for ensuring the security of our platform – which is core to everything we do – by reviewing the work of the Engineering teams as well as designing improvements.\n\nExperience & Skills\n\nSimply put: you need prior experience in developing application security (AppSec) architectures, distributed systems architecture, and applied cryptography. You also should have a desire to work with remote, distributed teams.

See more jobs at SpiderOak

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Phreesia


Senior Information Security Anaalyst

Senior Information Security Anaalyst


Phreesia


infosec

senior

infosec

senior


πŸ‘ 2,338 viewed | ✍️ 162 applied (7%)
\nPhreesia is look for a Senior Information Security Analyst, Incident Detection and Response to join our growing team!\n\nThe Senior Information Security Analyst, Incident Detection and Response serves as the first line of defense in identifying attacks against Phreesia’s people, critical business processes, and information assets. This position will manage and expand robust incident detection, analysis, and response capabilities to defend Phreesia’s assets. \n\nOur Central Information Security Team are highly hands-on and you will have many opportunities to gain intimate knowledge of Phreesia’s users, customers and architecture. Your solutions will impact the health of millions of people. You will get to work withDevOps, Development and IT teams at Phreesia.\n\nWho we want: \n\nAre you up-to-date in the world of incident detection and response?   \n\nAre you excellent in designing technical solutions from idea to execution?   \n\nDoes the idea of collaborating with passionate and curious team members, while working with modern technologies and tools excite you?   \n\nRead further!   \n\nWhat you will do: \n\nWorking as a key member of Phreesia’s Information Security team, the Sr. Information Security Analyst wears multiple hats: Product Manager, Security Engineer, and Security Analyst. \n\n\n* Identify top security threats to Phreesia’s assets and reduce security monitoring and incident prevention blind-spots \n\n* Identify, automate collection of, and analyze threat information from security monitoring tools, distribution lists, and intelligence feeds \n\n* First responder and lead to investigate information security events, incidents, and breaches \n\n* Develop log sources, alerts, searches, and dashboards to identify security incidents  \n\n* Provide coverage as part of 24x7 incident response rotation and respond to emergencies \n\n* Manage Security Product roadmaps to elevate Phreesia’s defenses \n\n* Conduct Incident Response table-top exercises and tests, incorporating lessons learned from incidents \n\n* Collect and publish weekly and monthly qualitative and quantitative key risk indicators (KRIs) and related key performance indicators (KPIs) \n\n* Develop and maintain response procedures and processes for security incidents that occur (ex. malware remediation)  \n\n* In partnership with operational teams, configure and administer security systems and tools \n\n\n\n\nWhat you will need: \n\n\n* 7+ years progressive experience leading incident detection and response or security operations \n\n* Experience building and maintaining SIEM queries, SQL, alerts, and dashboards \n\n* Experience with server and network configuration and management \n\n* Knowledge and experience with scripting languages (Python, PowerShell, JavaScript) \n\n* Highly developed prioritization, triage, and communication skills \n\n* Excellent knowledge of Information Security principles, frameworks, and technologies \n\n* Engineering, computer science, or other technical undergraduate degree \n\n* In-depth experience with SumoLogic tools a plus \n\n\n\n\nWho we are: \n\nAt Phreesia, we’re committed to helping healthcare organizations succeed in a fast-changing landscape—and we need smart, passionate people to help us do it. Our innovative SaaS platform offers our clients a suite of applications to manage the intake process, giving them the tools to engage patients, improve efficiency, optimize staffing and enhance clinical care. Our solutions are in all 50 states, and we check in 70 million patients a year! \n\n Basically, what you are doing here matters and hard work does not go unnoticed. Not only does Phreesia care about our clients - we also care about our employees. We are proud to say that we have grown 40% each year and consistently continue to do so. If you crave working with driven and engaged colleagues, a structured sales process, consistent recognition, a defined career path, and working in revamped new areas, this may be the right opportunity for you. \n\nBenefits and Perks: \n\n\n* Variety of health plan options, dental/ vision coverage, and short/long-term and life insurance plans \n\n* 401k (USA) or RRSP (Canada) plan\n\n* Flexible working hours \n\n* Unlimited vacation \n\n* Unlimited snacks and drinks in our offices \n\n* Mobile phone stipends, monthly subway pass reimbursement and Internet reimbursement \n\n* 100% paid maternity leave to our U.S. employees, as well as a generous maternity benefit to our employees in Canada. \n\n* Tuition and certification reimbursement, as well as other professional development opportunities \n\n\n\n\nWe strive to provide a diverse and inclusive environment and are an equal opportunity employer. 

See more jobs at Phreesia

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Software Engineer Serverless Platform

Software Engineer Serverless Platform


Contrast Security


dev

serverless

engineer

infosec

dev

serverless

engineer

infosec


πŸ‘ 3,510 viewed | ✍️ 243 applied (7%)
\nContrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber-attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nAbout the Position\n\nA revolution is underway in how software is built and deployed. Serverless computing represents that next generation approach to both. At Contrast our goal is to help our customers build and deploy the most robust and secure software imaginable. We believe that not enough is being done in the Serverless space to make Serverless applications secure.\n\nWriting instrumentation agents is a responsibility we take very seriously at Contrast. Our customers trust us enough to run our agents directly in their applications. We're looking for an engineer to exercise that power carefully, to help us build a quality, thoroughly tested agent that our customers run with complete confidence. Serverless presents a very unique problem for our customers, as now our IAST, RASP and OSS capabilities will extend into the compile and deploy process.\n\nAn ideal candidate has a passion and excitement around the Serverless Framework, as well as the AWS Lambda and Azure Functions communities. They have professional experience building Serverless applications and have a deep understanding of observability and secure programming.\n\nResponsibilities and About You\n\n\n* History of building Serverless web applications in Node, Python, Go or Java.\n\n* Extensive experience with AWS Lambda and/or Azure functions.\n\n* Collaborates enthusiastically as we are serious users of Slack, Github/Bitbucket, HighFive/Zoom (video/voice calls) to leverage chat (Slack), asynchronous communication and tracking (JIRA).\n\n* Desire to document and automates everything. You believe knowledge should be shared. You document systems and share knowledge with the rest of the team clearly and precisely.\n\n* Contribute to the development of our instrumentation agent written in Python, Node and Java, but from the perspective of distributed systems and function based architectures.\n\n* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented Serverless applications.\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally. \n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation and Stock\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off\n\n* Daily in-office lunches\n\n* 401K\n\n* Professional Development Budget\n\n\n\n\nWe are changing the world of software security. Do it with us.  We believe in what we do and are passionate about helping our customers secure their business. We work hard, and we have fun doing it. Solve the impossible. Easy = boring. If you’re looking for a fun work environment and like a challenge, you’ll love Contrast Security.

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

WP White Security


Junior PHP & Wordpress Developer

verified
πŸ‡ͺπŸ‡Ί EU-only

Junior PHP & Wordpress Developer


WP White Security

πŸ‡ͺπŸ‡Ί EU-only

wordpress

plugins development

software testing

dev

wordpress

plugins development

software testing

dev


πŸ‘ 6,323 viewed | ✍️ 375 applied (6%)
WP White Security is a young WordPress development company that develops high-quality security and admin plugins. Our plugins are installed on more than 100,000 websites and are used by world renowned businesses such as Disney, Amazon and Intel!\n\nJoin our growing distributed team if you already have some WordPress experience and you want to become an expert! We are looking for a junior PHP / WordPress developer that can work during European time zone hours.\n\nWe are still a small team, however, we have a large customer base. So there is a lot of room to grow within the company.\n# Benefits of working for us\n* Work from anywhere as long as you have your computer and internet connection (remote)\n* Work in a flat, small and young organization\n* Long term engagement – we are looking for a committed candidate who within a few years can become a source of knowledge\n# What will your job be\nYou will be helping with development and testing of our WordPress plugins portfolio, and also with implementing theme changes on our own WordPress websites. Your tasks will span from writing code and scripts, testing the plugins and fixing bugs, expecting that new and changed code is thoroughly tested and well documented.\n\nYou will also be interacting with our support team to help troubleshoot and resolve customer issues, and interact with the rest of the team for knowledge sharing and product work.\n# Requirements\n* Excellent verbal and written English\n* Good understanding of web development best practices\n* 1+ years experience working as a PHP / WordPress plugins developer\n* Foundation knowledge of JavaScript\n* Good understanding of Linux, Apache, MySQL and PHP (LAMP) environments\n* Hard working and passionate – we are a young start-up\n# How to apply\nSend us your CV to [email protected] If you have a Github, BitBucket or other repository with example of code you have written, please include them in the email so we can take a look at them. In the email also include the answers to the following questions:\n* What are your payment expectations?\n* What are you looking for in your next job?\n# Application process\nOnce you submit your application, in which you should mention any work you’ve done and reference any Github accounts, WordPress plugins and themes you have built, we will send you a test. If successful, we will schedule an interview. \n\n\n#Location\n- πŸ‡ͺπŸ‡Ί EU-only

See more jobs at WP White Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Wikimedia Foundation


Application Security Engineer

Application Security Engineer


Wikimedia Foundation


infosec

engineer

infosec

engineer


πŸ‘ 681 viewed | ✍️ 1 applied (0%)
\nLocation: Remote/SF\n\nHours: 40 hours\n\nContract Length: Until end of June (6+ months)\n\n\nSummary\n\nThe Wikimedia Foundation is looking for an Application Security Engineer to join the Security team working to help protect Wikipedia and our other projects. You'll be working with other developers and security engineers to create new security features, review the security of other people's code, and help find and fix security bugs before they're exploited.\n\nYOU ARE ...a smart security practitioner with experience building and auditing security features in large scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly, and volunteers can add arbitrary JavaScript to our site.\n\nYou will be joining a team responsible for ensuring the security and integrity of applications written in PHP, Python, Ruby, Lua, Perl, JavaScript (Node.js) among others, using both relational and key-value data storage mechanisms. (Don't worry, you don't need to have had experience with all of those technologies.)\n\nYou are responsible for:\n\n\n* Triaging and remediating reported security issues\n\n* Reviewing and deploying features developed by the Foundation and community members\n\n* Working with other development teams to ensure that they make safe architectural and implementation choices\n\n* Constantly poking and abusing our software to find bugs before attackers do\n\n* Providing application security concept reviews and help socialize application security best practice\n\n* Providing support for application security operations\n\n\n\n\nSkills and Experience:\n\nThe right person is better than the right set of experiences, these are the traits we’ve identified make great additions to our team so far.\n\n\n* Two or more years of application security experience, including thorough understanding of issues documented in the OWASP Top Ten and CWE Top 25\n\n* Strong understanding of modern, object-oriented PHP development\n\n* Demonstrated ability to exploit and mitigate application-level vulnerabilities\n\n* Experience conducting software security reviews using a combination of source code inspection, manual testing, and automated scanning\n\n* Patience in explaining security issues and their implications on privacy to non-technical audiences\n\n* Sensitivity to the security challenges faced by participants in a large, international project\n\n* Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation\n\n* Experience using Linux/Unix at the command line for tasks related to web application development and deployment\n\n* Ability to maintain focus when working remotely\n\n\n\n\nAdditionally, we’d love it if you have:\n\nIn addition to the basic skills needed for being successful these skills could set you apart from the pack!\n\n\n* Experience as a contributor in the Wikipedia or Wikimedia project communities\n\n* Experience contributing to a consensus-based open source project\n\n* Experience developing, maintaining, or administering authentication systems\n\n* In-depth experience developing or auditing client-side JavaScript\n\n\n\n\nThe Wikimedia Foundation is... \n\n...the nonprofit organization that hosts and operates Wikipedia and the other Wikimedia free knowledge projects. Our vision is a world in which every single human can freely share in the sum of all knowledge. We believe that everyone has the potential to contribute something to our shared knowledge, and that everyone should be able to access that knowledge, free of interference. We host the Wikimedia projects, build software experiences for reading, contributing, and sharing Wikimedia content, support the volunteer communities and partners who make Wikimedia possible, and advocate for policies that enable Wikimedia and free knowledge to thrive. The Wikimedia Foundation is a charitable, not-for-profit organization that relies on donations. We receive financial support from millions of individuals around the world, with an average donation of about $15. We also receive donations through institutional grants and gifts. The Wikimedia Foundation is a United States 501(c)(3) tax-exempt organization with offices in San Francisco, California, USA.\n\nThe Wikimedia Foundation is an equal opportunity employer, and we encourage people with a diverse range of backgrounds to apply.\n\nMore information\n\nWMF\nBlog\nWikimedia 2030\nWikimedia Medium Term Plan\nDiversity and inclusion information for Wikimedia workers, by the numbers\nWikimania 2019\nAnnual Report - 2017 \nThis is Wikimedia Foundation \nFacts Matter\nOur Projects\nFundraising Report

See more jobs at Wikimedia Foundation

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Aha!


Senior Application Security Engineer

Senior Application Security Engineer


Aha!


infosec

senior

engineer

infosec

senior

engineer


πŸ‘ 1,991 viewed | ✍️ 104 applied (5%)
**About Us:**\n\nWe are Aha! - a fully remote, profitable, and self-funded SaaS company. We build the world's #1 product roadmap and marketing planning software, and more than 250,000 users trust our software to build amazing products. \n\n[It started in 2013](https://www.aha.io/company/history) with a simple idea β€” to build a company that customers and employees would love. And to do it with no venture funding, offices, or salespeople.\n\n**The Role:**\n\nAha! is looking for a Security Engineer who is passionate about finding and fixing security vulnerabilities in our sophisticated SaaS platform. Over 250,000 users trust us with their product roadmaps, including many of the world's largest brands. As the second hire in the security group, you will be a key part of the engineering team, helping with both code reviews and general appsec as well as other security projects to help grow and secure the company.\n\nAs a Senior Security Engineer at Aha!, you will have an excellent opportunity to join a self-funded and profitable company that is growing fast. Aha! was founded by a proven team of product and marketing experts. \n\n**We are looking for someone who:**\n\n- Finds joy in breaking (and then fixing) software\n- Has experience with Ruby on Rails and Javascript based applications\n- Has experience with AWS\n- Has worked on compliance projects and security policy development\n- Has driven security initiatives or delivered security training\n- Wants to be great and work in a fast-moving, online environment where the end-user is key\n\n**We are committed to being great, and we want someone who:**\n\n- Can work at a fast-paced company where the feedback cycle is measured in hours rather than weeks\n- Has a background of delivering superb work again and again\n- Is seeking a career-defining opportunity and a proven, results-oriented team that has sold multiple software companies\n- Is interested in collaborating with software engineers to grow their skills and career\n- We are building a distributed team, and you can work from anywhere in North America for this role. \n\n*We offer generous salary, equity, benefits, and a profit-sharing program.*

See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

BlueModus


Director Of Infrastructure Security

Director Of Infrastructure Security


BlueModus


infosec

exec

infosec

exec


πŸ‘ 1,955 viewed | ✍️ 103 applied (5%)
\nWe're looking for a Director of Infrastructure & Security, with strong tactical experience in Microsoft Azure and/or Amazon Web Services (AWS), who is looking to grow their technical skills, can think on his/her feet, play well with others, and do great work in a fast-paced, agency environment.\n\nBy bringing together like-minded people, who share common passions, who enjoy each other's company and respect each other's skills, BlueModus has created a culture where people work hard, have each other’s backs, and love what they do. Come join a team with a clear mandate to deliver high value to their clients. If you’re up for a challenge, then we’d love to hear from you.\n\nWhat You Will Be Doing:\n\n\n* Work alongside web development team to support transition and operation of its client web sites / applications in Microsoft Azure Cloud and Amazon Web Services (AWS)\n\n* Deploying, managing, and operating scalable, highly available, and fault tolerant systems on Azure or AWS\n\n* Selecting the appropriate Azure or AWS service based on compute, data, or security requirements\n\n* Identifying appropriate use of Azure and AWS operational best practices\n\n* Estimating Azure and AWS usage costs and identifying operational cost control mechanisms\n\n* Responsible for system updates, monitoring, troubleshooting, and providing end user support\n\n* Provide production support and management for client cloud servers and environments\n\n* Develop scripts to automate build, software release, application deployment, and system and application management\n\n* Liaise with 3rd party software and hardware vendors to manage and resolve incidents and technical issues\n\n\n\n\nWhat You Need:\n\n\n* A genuine passion for technology\n\n* Ability to multitask and excellent time management skills\n\n* A desire to learn and grow technical knowledge\n\n* 7+ years’ experience in a Cloud Administration, System Admin, Network Engineer and/or similar role\n\n* Experience working closely with internal team and clients to understand the process of designing and implementing enterprise-class solutions based on the principles of redundancy, data integrity, security, and recoverability\n\n* Experience with Microsoft Azure or Amazon Web Services (AWS)\n\n* Experience with DNS\n\n* Understanding of SQL / MySQL / NoSQL\n\n\n\n\nWhat We’d Like To Find:\n\n\n* Experience working in an agency environment\n\n* Bachelor’s degree in computer science, computer or electronics engineering, information technology or related\n\n\n

See more jobs at BlueModus

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Golang Instrumentation Engineer

Golang Instrumentation Engineer


Contrast Security


golang

engineer

infosec

golang

engineer

infosec


πŸ‘ 2,790 viewed | ✍️ 182 applied (7%)
Contrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber-attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nAbout the Position\nWe've been working with GoLang for a little over two years now. Most of our work thus far has been building our communication layer for dynamic agents to talk with our TeamServer. In the last year, we've spent a lot of time prototyping instrumentation within Go. Now's the time to build our first IAST and RASP agent, dedicated to the GoLang community.\n\nWriting instrumentation agents is a responsibility we take very seriously at Contrast. Our customers trust us enough to run our agents directly in their applications. We're looking for an engineer to exercise that power carefully, to help us build a quality, thoroughly tested agent that our customers run with complete confidence. Go presents a more unique situation in which our customers will have to include our agent within their compile process.\n\nAn ideal candidate has a passion and excitement around the GoLang community. They likely have professional C experience, including some experience contributing to open source frameworks and/or libraries, this could be a great opportunity for you to deepen your understanding of GoLang's unique characteristics. You like to reverse engineer code, making it better with each iteration.\n\n\n\nResponsibilities and About You\n\n\n* Love all things String related...\n\n* Build, ship, curate, and iterate on Contrast Security agent features.\n\n* Work with design, product, and support teams to build features.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n* Be a team player. You love to work with others to find the right solutions.\n\n* Experience developing in Go and C.\n\n* Have a deep understanding of Go dependencies (Modules).\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally. \n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Agile Project Manager

Agile Project Manager


Contrast Security


exec

infosec

exec

infosec


πŸ‘ 2,535 viewed | ✍️ 151 applied (6%)
We are looking for a special individual to join our project management team within Product Development. If you like leading up successful development teams and want to work at one of Baltimore's and Silicon Valley's most exciting software companies, now is your chance to create your own identity with our team!\n\nAt Contrast, the Agile Project Manager is like an accomplished conductor of an orchestra, where the orchestra is a cross-functional team including a product manager, product designer and multiple software engineers. Our Agile Project Manager does not pick up instruments, because his or her primary function is coordinating the team and the project work from start to finish.\n\nA lot of the work mirrors what a traditional Agile/Scrum team would call a Scrum Master. Similarly to a Scrum Master, this person would work with one or more fairly independent and self-organized teams. They lead our agile ceremonies (planning, backlog grooming, close-out, daily standup sessions and retrospectives). They would also support capturing analytics for various stakeholders within Development, Customer Success and Product Management. They also have the support of a development manager who oversees the engineering efforts.\n\nThe project manager ensures our cross-function efforts are organized, planned and scoped in a controlled manner. They work with constituents in engineering to launch projects off to a good start with clearly stated goals and well-understood requirements (or an agreed-upon plan for the iterative development of requirements). They help teams navigate roadblocks. He or she is the hub of communications within the project team, as well as to all the project stakeholders: sponsor(s), the executive team,  internal customers, other teams working on related projects, and any other interested parties.\n\nWe run multiple teams and parallel projects during our agile sprints. Anyone stepping into this role has to be ready to roll-up their sleeves and work on multiple projects at the same time. \n\n\n\nResponsibilities\n\n\n* Promote a culture of Agile/Scrum across the company by leading our core agile ceremonies practiced at Contrast.\n\n* Manage streams of work leveraging agile processes by partner with product owners and cross-functional project teams to ensure on-time and on-budget in a quality fashion.\n\n* Optimizing the performance of the cross-function team throughout the project\n\n* Leading the team to various milestones and final deliverables of the project\n\n* Do what they can to ensure satisfaction and delight of the audience; the end users, internal customers, stakeholders, and the project team itself.\n\n* Coach individuals in Agile processes and tools.\n\n* Track progress through backlog tracking, burn down metrics and velocity..\n\n* Drive continual improvement and innovation in the platform and application development process.\n\n* Be responsible as coordinator and fixer of all issues and ensure that the team can deliver with minimal blockers.\n\n\n\n\n\n\nAbout You\n\n\n* 4+ years of experience as Scrum Master in a multi-project environment.\n\n* Experience working within large scaled Agile environments (9+ teams), and Scrum and/or Kanban.\n\n* Experience supporting all communication through tools such as Jira, Rally, Trello and/or Confluence.\n\n* Experience implementing best Agile practices and standards, and mentoring/teaching junior practitioners\n\n* The capability of communicating effectively inside and outside the team;\n\n* Bachelor’s Degree in Computer Science, Information Systems, related discipline or equivalent experience.\n\n* Scrum Master certification (e.g. CSM, PSM, and SSM)\n\n\n\n\n\nAt Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas.\n\nAre you looking to make a difference? Are you a problem solver, but want to be challenged with complex and interesting problems. Do you believe the best work is the result of finding the simplest solution to complex challenges? Do you long to be an early contributor to a product and a company culture? Do you ever wish you were there in the early days of these startups everyone is talking about? Here's a little about what we offer:\n\n\n\n\n* Competitive compensation\n\n* Daily team lunches\n\n* Meaningful stock plans\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off\n\n* Choice of a MacBook Pro or Microsoft Surface Pro\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

User Research International


Paid Research Study For Cloud Platform Security

Paid Research Study For Cloud Platform Security


User Research International


infosec

cloud

infosec

cloud


πŸ‘ 2,324 viewed | ✍️ 150 applied (6%)
\nUser Research International is a research company based out of Redmond, Washington. Working with some of the biggest companies in the industry, we aim to improve your experience via paid research studies. Whether it be the latest video game or productivity tools, we value your feedback and experience. We are currently conducting a research study called The Cloud Security Study. We are looking for currently employed Full-Time Developers or IT Pros who are familiar with cloud platforms such as Azure, AWS, or GCP. This study is a one time remote study via an online meeting. We’re offering $200 for participation in this study. Session lengths are 2 hours. These studies provide a platform for our researchers to receive feedback for an existing or upcoming products or software. We have included the survey link for the study below. Taking the survey will help determine if you fit the profile requirements. If you complete the survey, and you are actually a fit to the study's requirements, URI will follow up with you. I have summarized the study details below. In order to be considered, you must take the survey below. Thank you!\n\nStudy: Cloud Security Study\n\nGratuity: $200\n\nSession Length: 2 hours\n\nLocation: Remote via an online meeting\n\nDates: October. Available dates are located within the survey\n\nSurvey: Cloud Security Study Survey

See more jobs at User Research International

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Defiant


Site Security Team Pre Service Intern

Site Security Team Pre Service Intern


Defiant


infosec

infosec


πŸ‘ 2,130 viewed | ✍️ 106 applied (5%)
\nDefiant is a cybersecurity company that delivers the best threat protection for WordPress sites. We are a 100% remote team, fast moving, nimble, and self managed.\n\nWe are looking for an intern to join our Site Security Team, working flexible hours up to 20 hours per week. You will work with our security analysts and communicate directly with customers to carry out checks on our site cleaning orders and ensure they are ready for servicing. This is an exciting opportunity to work with security analysts across the world to help customers recover their sites after being hacked. It will give the successful candidate the opportunity to be part of a team that is at the forefront of WordPress security, discovering zero-day vulnerabilities and contributing to the latest Threat Intelligence research. If you have a passion for technology and are looking for an opportunity to gain experience in the field of Information Security, then you are the person we are looking for.\n\nRequirements\n\n\n* Ideally studying towards a computer science related qualification or already holding a recent qualification in computer science.\n\n* A good knowledge of the following network protocols:\n\n\n* (S)FTP\n\n* SSH\n\n* HTTP\n\n\n\n\n\n* Knowledge of and experience working in Linux environments.\n\n* Knowledge of PKI - generating and using keys.\n\n* Experience with WordPress.\n\n* Capable and comfortable working in a command line environment.\n\n* Some experience dealing with web hosting companies.\n\n* Excellent communication skills.\n\n* Creative and critical thinker.\n\n* Highly motivated, deeply passionate, and able to work effectively with little oversight.\n\n* Any prior experience working in a support role is beneficial.\n\n\n\n\nBenefits\n\n\n* Pay rate is $20 per hour.\n\n* Work remotely from wherever you have a secure internet connection.\n\n* Work whatever hours are best for you, around 20 per week. (Some coordination around hours may be required during training with the team.)\n\n* Opportunity to learn and grow into a more complex Security Analyst role.\n\n* Training and support will be provided.\n\n\n

See more jobs at Defiant

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

AKTEK


Full-stack Developer - React.js, Node.js, Mongodb

verified
Ideal timezones: Europe / Middle East

Full-stack Developer - React.js, Node.js, Mongodb


AKTEK

Ideal timezones: Europe / Middle East

mern stack

international development

security

counter-terrorism

mern stack

international development

security

counter-terrorism


πŸ‘ 5,667 viewed | ✍️ 547 applied (10%)
![](https://media.licdn.com/dms/image/C5622AQFBOnkQA9IG1w/feedshare-shrink_800/0?e=1571270400&v=beta&t=BlBsikOV_8B4rNhrs2Fr6HvATHXJZJywAnRUf6xStU8)\n**MAKE A DIFFERENCE ON DEVELOPMENT AND SECURITY ISSUES AROUND THE GLOBE**\n\n* Full-stack Developer\n* Location: Remote (anywhere), ideal European/Middle Eastern timezones\n* Travel opportunities in emerging markets, real social impact, truly purposeful work\n\n**DESIRED PROFILE**\n\nThe ideal candidate is a young, self-driven problem solver with a desire to contribute to building user-friendly software in an exciting, fast-growing startup environment focused on real-world social problems that really matter:\n* conflict prevention / management\n* security sector reform\n* counter violent extremism / counter-terrorism\n* international development\n* social impact monitoring & evaluation\n* corporate social responsibility, and more.\n\nWe are looking for a builder! A self-driven, pragmatic, resourceful individual with empathy towards our clients' realities in fragile contexts and a desire to make a positive difference in the world. **Is that you?**\n\n**ABOUT AKTEK**\n![](https://images.squarespace-cdn.com/content/5988633f6a4963b1c4fff7ff/1552661806823-Z2AL39NHZBQPT2E0QU1Z/logo2.png?content-type=image%2Fpng)\nAKTEK helps our clients make sense of fragile environments so they can better understand and mitigate their operational risks and achieve greater impact. β€œWarning” and β€œAlert” countries on the Fragile States Index make up 38% of the world’s economy and 83% of the population (World Bank, Fragile States Index). \n\nPublic and private organizations working in challenging environments need easy-to-use, collaborative tools to keep track of their operating context, holistically and in real-time. With the proper tools, they can take better decisions, maximize positive impact and reduce risk, and unlock economic, social and human capital for a better world.\n\nAKTEK is a London-based company that operates as a globally distributed team, serving clients in more than 20 countries around the world, helping (among other things): \n* Delegations of international organisations like the UN and others in North Africa to better understand the political economy of their operating environments via dynamic stakeholder mapping; \n* Coastguard forces in Somalia to combat piracy and land border armed forces in Lebanon to protect territory via bespoke information management and communication systems; \n* Governments and embassies in the Middle East to analyze public perceptions and fight extremism. \n* Fortune 500 companies and NGOs in Latin America navigate their changing operational contexts with big data fusion, both in enviornmental and socio-political terms.\n\nLearn more about our impact on our website: [https://www.aktek.io/impact](https://www.aktek.io/impact)\n\n# Responsibilities\n You will be working closely with the Chief Technology Officer and the rest of the development team following agile methodologies. This will involve directly contributing to FUSION's development, AKTEK's flagship software product, built on MERN stack using MongoDB, Docker and other technologies. Learn more about FUSION here: [https://www.aktek.io/software](https://www.aktek.io/software)\n\nFrom time to time, you will be asked to travel to client locations (Eastern Europe, East Africa, Middle East/North Africa, Latin America and more) to help install our product on client premises and support implementation (on-boarding, training, server management and more), a great way to vary the day-to-day and offer personal and professional growth opportunities! \n\n# Requirements\n* Academic background in Computer Science, Engineering or equivalent.\n* More than 1 year of experience as Full stack developer on the MERN Stack (MongoDB, ExpressJS, ReactJS, NodeJS).\n* More than 1 year of experience of administrating Linux (Ubuntu) servers.\n* Solid understand of basic Git principles.\n* Solid understanding of SQL and No-SQL Databases (MongoDB).\n* Comfortable working with back-end API and data integration such as GIS (ArcGIS), Salesforce, Google API, etc.\n* Strong command of English language, ability to work effectively and efficiently with remote teams.\n* Autonomous and interested in self-growth.\n* Willingness to travel from time to time for short-term assignments on client sites around the world.\n\nAdditional points for:\n* Native Arabic and/or French language skills.\n* Knowledge or willingness to learn and work with Python and Ruby on Rails (legacy instruments).\n* Communications skills with experience leading workshops or training sessions. \n\n#Salary\nCompetitive in developing markets with European-grade benefits\n\n\n#Location\n- Ideal timezones: Europe / Middle East

See more jobs at AKTEK

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

New Context Services


Application Security Engineer

Application Security Engineer


New Context Services


infosec

engineer

infosec

engineer


πŸ‘ 2,463 viewed | ✍️ 109 applied (4%)
\nApplication Security Engineer\n\nNew Context is a rapidly growing consulting company in the heart of downtown San Francisco. We specialize in Lean Security: an approach that leads organizations to build better, safer software through hands-on technical and management consulting. We are a group of engineers who live and breathe Agile Infrastructure, Systems Automation, Cloud Orchestration, and Information & Application Security.\n\nAs a New Context Application Security Engineer, you will provide technical leadership with a hands-on approach. Our clients look to us to guide them to a solution that makes sense for them, and you should expect to provide thought leadership, design, and implement that solution. \n\nExpect to be involved in application security and vulnerability management using Open Source technologies as well as all aspects of security architecture, directives, and standards for application security. You will utilize our core methodologies - DevOps, Agile, Lean, TDD and Pair Programming - along with your expertise in application security - to provide advice and assistance to application teams. You will work with our clients and other New Context team members while working from the New Context office, at client sites, or from your home.\n\nWe foster a tight-knit, highly-supportive environment where you will receive respect and be included. Even if you may not know the answer to a question immediately, you'll have the entire company supporting you via Slack, Zoom, or in-person. We also host a daily, all-company stand-up via Zoom, and a weekly company Retro, so you won't just be a name on an email. \n\nAt New Context, our core values are Humility, Integrity, Quality & Passion! Our employees live these values every single day.\n\nWho you are:\n\n\n* A seasoned technologist with 5+ years work experience in cybersecurity, secure app development, or application security roles;\n\n* Happy and effective as a consultant in client-facing situations;\n\n* Knowledgeable about Lean Security or DevSecOps techniques and environments;\n\n* Experienced in Open Source web technologies, especially in the areas of highly-available, secure systems;\n\n* Experienced with cloud-native (AWS, Google Cloud, Azure) application implementations and the relevant security risks and mitigations. \n\n* Have worked in a team to create production-quality applications in an Agile environment;\n\n* Possess working knowledge of Unix-based operating systems and networking concepts, Windows and Microsoft Active Directory..\n\n* Comfortable with authentication and authorization functionalities and systems - identity federation (SAML, Oauth, OpenId), directory services (LDAP, AD), authenticating proxies;\n\n* Experienced as a technical lead;\n\n* An excellent communicator, experienced with external clients and customers and able to communicate productively with customers to explain technical aspects and project status;\n\n* Able to think on your feet and learn quickly on-the-job in order to meet the expectations of our clients;\n\n* A great teammate and a creative and independent thinker.\n\n\n\n\nBonus points if you are:\n\n\n* CISSP, CEH, CASE, GWEB, GWAPT, GSSP (or equivalent) certified.  \n\n* Experienced with Windows operating systems and Windows-based networking, e.g. Active Directory.\n\n* Familiar with network security fundamentals,, social engineering, and/or forensic analysis;\n\n* A believer in automated tests and their role in software engineering;\n\n* Familiar with Infrastructure as Code (IaC) and automated server provisioning technologies;\n\n* Able to translate complex concepts to business customers;\n\n* A member of national and/or local security groups.\n\n\n\n\nTechnology we use: We tailor solutions to our customers. You might work on projects using any of the following technologies (or other similar technologies):\n\n\n* Security: BurpSuite, ZAP Proxy, SAST/DAST Scanning Tools, Threat Modeling, Kali Linux, Standards & Compliance, Compliance standards, Application Security, Layer 7 Firewalls, OSSEC, Hashicorp Vault, STIX, TAXII;\n\n* Automation: Chef, Puppet, Docker, Ansible, Salt, Terraform, Automated Testing\n\n* Containerization Ecosystem: Docker, Mesosphere, Rancher, CoreOS, Kubernetes\n\n* Cloud & Virtualization: AWS, Google Compute Engine, OpenStack, Cloudstack, kvm, libvirt\n\n* Tools: Jenkins, Atlassian Suite, Pivotal Tracker, Vagrant, Git, Packer\n\n* Monitoring: SysDig, DataDog, AppDynamics, New Relic, Sentry, Nagios, Prometheus\n\n* Databases/Datastores: Cassandra, Hadoop, Redis, Postgres, MySQL\n\n* Languages: Ruby, Python, Go, Java, JavaScript\n\n\n\n\nWe are committed to equal-employment principles, and we recognize the value of committed employees who feel they are being treated in an equitable and professional manner. We are passionate about finding ways to attract, develop and retain the talent and unique viewpoints needed to meet business objectives, and to recruit and employ highly qualified individuals representing the diverse communities in which we live, because we believe that this diversity results in conversations which stimulate new and innovative ideas.\n\nEmployment policies and decisions on employment and promotion are based on merit, qualifications, performance, and business needs. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

See more jobs at New Context Services

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Security Scorecard - We are revolutionizing the cybersecurity industry


Senior Devops Engineer

Senior Devops Engineer


Security Scorecard - We are revolutionizing the cybersecurity industry


devops

senior

engineer

infosec

devops

senior

engineer

infosec


πŸ‘ 1,873 viewed | ✍️ 109 applied (6%)
\nOpportunity\n\nSecurityScorecard is hiring a DevOps Engineer to bridge the gap between our global development and operational teams who is motivated to help continue automating and scaling our infrastructure. The DevOps Engineer will be responsible for setting up and managing the operation of project development and test environments as well as the software configuration management processes for the entire application development lifecycle. Your role would be to ensure the optimal availability, latency, scalability, and performance of our product platforms. You would also be responsible for automating production operations, promptly notifying backend engineers of platform issues, and checking long term quality metrics.\n\nOur infrastructure is based on AWS with a mix of managed services like RDS, ElastiCache, and SQS, as well as hundreds of EC2 instances managed with Ansible and Terraform. We are actively using three AWS regions, and have equipment in several data centers across the world.\n\nRegions: North America (GMT-7.00) Mountain time - (GMT-4.00) Atlantic time\n\nResponsibilities\n\n\n* Training, mentoring, and lending expertise to coworkers with regards to operational and security best practises. \n\n* Reviewing and providing feedback on GitHub Pull Requests to team members AND development teams- a significant percentage of our Software Engineers have written Terraform.\n\n* Identifying opportunities for technical and process improvement and owning the implementation. \n\n* Championing the concepts of immutable containers, Infrastructure as Code, stateless applications, and software observability throughout the organization.\n\n* Systems performance tuning with a focus on high availability and scalability.\n\n* Building tools to ease the usability and automation of processes\n\n* Keeping products up and operating at full capacity\n\n* Assisting with migration processes as well as backup and replication mechanisms\n\n* Working on a large-scale distributed environment where you were focused on scalability/reliability/performance\n\n* Ensuring proper monitoring / alerting are configured\n\n* Investigating incidents and performance lapses\n\n\n\n\nCome help us with projects such as…\n\n\n* Extending our compute clusters to support low latency, on-demand job execution\n\n* Turning pets into cattle\n\n* Cross region replication of systems and corresponding data to support low latency access\n\n* Rolling out application performance monitoring to existing services, extending integrations where required\n\n* Migration from self hosted ELK to a SaaS stack\n\n* Continuous improvement of CI/CD processes making builds & deployments faster, safer, and more consistent\n\n* Extending a Global VPN WAN to a datacenter with IPSec+BGP\n\n\n\n\nRequirements\n\n\n* 3+ years of DevOps and/or Operations experience in a Linux based environment\n\n* 1+ years of production environment experience with Amazon Web Services (AWS)\n\n* 1+ years using SQL databases (MySQL, Oracle, Postgres)\n\n* Strong scripting abilities (bash/python)\n\n* Strong Experience with CI/CD processes (Jenkins, Ansible) and automated configuration tools (Puppet/Chef/Ansible)\n\n* Experience with container orchestration (AWS ECS, Kubernetes, Marathon/Mesos)\n\n* Ability to work as part of a highly collaborative team\n\n* Understanding of monitoring tools like DataDog\n\n* Strong written and verbal communication skills\n\n\n\n\nNice to Have\n\n\n* You knew exactly what was meant by "Turning pets into cattle"\n\n* Experience working with Kubernetes on bare-metal and/or the AWS Elastic Kubernetes Service.\n\n* Experience with RabbitMQ, MongoDB, or Apache Kafka.\n\n* Experience with Presto or Apache Spark.\n\n* Familiarity with computation orchestration tools such as HTCondor, Apache Airflow, or Argo.\n\n* Understanding of network concepts- OSI layers, firewalls, DNS, split horizon DNS, VPN, routing, BGP, etc.\n\n* A deep understanding of AWS IAM, and how it interacts with S3 buckets.\n\n* Experience with SAFe.\n\n* Strong programming skills in 2+ languages.\n\n\n\n\nTooling We Use\n\n\n* Data definition, format and interfaces\n\n\n\n* Definitions - Protobuf V3\n\n* Normalize from - JSON / XML / CSV\n\n* Normalize to - Protobuf / ORC\n\n* Interfaces - REST API(s) and object store buckets\n\n\n\n* Cloud Services - Amazon Web Services\n\n* Databases: Postgresql, PrestoDB\n\n* Cache: Redis, Varnish\n\n* Languages: Python / C++14 / Scala / Golang / Javascript / Ruby / Java\n\n* Job Orchestration - HTCondor / Apache Airflow / Rundeck\n\n* Analytics - Spark \n\n* Storage: NFS/EFS, AWS S3, HDFS\n\n* Computation - Docker Containers / VMs / Metal / EMR\n\n\n

See more jobs at Security Scorecard - We are revolutionizing the cybersecurity industry

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Security Scorecard - We are revolutionizing the cybersecurity industry


Data Engineer Attribution

Data Engineer Attribution


Security Scorecard - We are revolutionizing the cybersecurity industry


engineer

infosec

engineer

infosec


πŸ‘ 1,806 viewed | ✍️ 85 applied (5%)
\nAbout The Role\n\nThe Attribution team develops software to collect and infer ownership information of Internet assets, such as IP addresses and domain names. Our team is looking for a data engineer to productionize prototype statistical models for attribution, and integrate new data sources into the attribution pipeline. We value experience in the networking and anti Internet-abuse communities.\n\n Requirements:\n\n\n* 3+ years of experience with:\n\n\n* Scala or Python, both preferred\n\n* Distributed systems (e.g. Spark, Hadoop)\n\n\n\n\n\n* Database systems (e.g. Postgres, MySQL)\n\n* Experience with the following is preferred:\n\n\n* IP (v4/v6) allocation and addressing conventions\n\n* DNS conventions and best practices\n\n* Anti-abuse investigations\n\n\n\n\n\n* Bachelor’s degree (CS, CE/EE, Math, or Statistics preferred)\n\n\n\n\nTraits\n\n\n* Comfortable working as part of a distributed team\n\n* Excellent communication and teamwork skills\n\n* Ability to make data driven decisions\n\n* Ability to do independent research\n\n\n\n\nInterview Process\n\n\n* Phone conversation with a Talent Acquisition team member to learn more about your experience and career objectives. 30 minutes.\n\n* Technical interview with hiring manager via video (preferred). Will include some coding. 30-45 minutes.\n\n* 1-2 technical interviews with data engineer and data science team members via video or in person. 1-1.5 hours for both.\n\n* Final meeting with engineering leadership via video or in person. 1 hour.\n\n\n

See more jobs at Security Scorecard - We are revolutionizing the cybersecurity industry

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Java Web Application Developer

verified

Java Web Application Developer


Contrast Security


dev

web dev

java

infosec

dev

web dev

java

infosec


πŸ‘ 4,783 viewed | ✍️ 397 applied (8%)
\nContrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nAbout the Position\n\nContrast is looking for a web application developer proficient in Java/Spring interested in pursuing a life changing experience in the field of application security and continuous delivery. We are an exciting, young team that is growing leaps and bounds each month. We write a lot of GraphQL to interact with our REST layer to improve performance and data interaction. You would get the opportunity to work on tough problems such as optimizing the JVM, configuring distributed queues and building robust caching architectures.\n\nOur engineering team has a strong spirit of entrepreneurship. Every member of the team has joined us over our 5 year history because he/she wants to be part of a high-performing team and go through the startup experience. We look for candidates that share similar goals and beliefs about the work and the team they want to be a part of.\n\nResponsibilities\n\n\n* Build, ship, curate, and iterate on Contrast Security features.\n\n* Work with design, product, and support teams to build features.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n* Experience building and managing large, cloud-based platforms.\n\n* Solid analytical ability to deal with ambiguity and to solve problems independently.\n\n* High level of personal accountability and “self-starter” attitude in order to make progress in ambiguous situations on schedule\n\n* Demonstrated ability to communicate effectively with both technical and non-technical individuals. \n\n* Execute performance analysis and optimization of page render, data transfers and page load optimizations.\n\n* Participate in constant collaboration with teammates in the form of group code reviews and pull requests prior to commit.\n\n* Work with design and product teams to build amazing, jaw-dropping features.\n\n* Give back to the Open Source Community whenever humanly possibly.\n\n* Work hand-in-hand with our Product Managers, UX/Designers and Customers on each feature and improvement.\n\n* Deploys: our engineers deploy multiple times a day to our AWS infrastructure.\n\n\n\n\nAbout You\n\n\n* You love to make web applications faster and efficient.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You have experience working in Java/Spring to design and implement robust and scalable APIs.\n\n* AWS Services: S3, EC2, CloudFront, Lambda.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* Your code is clean, your designs are elegant and you are constantly refactoring.\n\n* Multiple years experience working in Enterprise or Commercial Software development.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n* Interest in building Distributed Queues, Service Discovery and Caching Design\n\n* Advanced Knowledge of AWS Features and Services\n\n* Spring and Hibernate Excellence\n\n* Knowledge of database fundamentals: SQL, schema, internals (MySQL)\n\n* JVM and garbage collector tuning, heap dump analysis experience\n\n* Experience with the following performance tools: JMeter, YourKit, New Relic, SumoLogic\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation package (salary + equity)\n\n* A fun and dynamic environment where you work with other like minded people on products which make a real difference to the security of our customers\n\n* In-office lunches\n\n* Medical, dental and vision benefits\n\n* Flexible paid time off\n\n* 401K\n\n\n\n\nIf you're amazing but missing some of these, email us your résumé and cover letter anyway. Please include a link to your Github or BitBucket account, as well as any links to some of your projects if available. Email: [email protected]

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Software Performance Engineer

Software Performance Engineer


Contrast Security


dev

engineer

infosec

digital nomad

dev

engineer

infosec

digital nomad


πŸ‘ 2,663 viewed | ✍️ 180 applied (7%)
\nContrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nMembers of our Performance Engineering team believe in continuous measurement to drive product improvements and code optimizations. You would rather spend your time enabling engineering teams to more effectively understand the performance impact of their code. You thrive in an environment where there is something new to learn with each major effort. \n\nResponsibilities\n\n\n* Focus on constant improvement of uptime and page speed\n\n* Perform automated and ad-hoc analysis on usage patterns, data growth, and application change to prevent performance bottlenecks\n\n* Design, build, and configure environments and services at AWS\n\n* Partner to improve operational efficiency through automation, visibility, and transparency of performance and reliability metrics.\n\n\n\n\nAbout You\n\n\n* You love to make web applications faster and efficient.\n\n* History of working with Performance testing and monitoring tools\n\n* You love to break things, and you like to share how you did it.\n\n* You’re a storyteller with compelling stories about that time you learned something new in order to solve a problem for your company, and stories about the times you helped your team mates skill up.\n\n* You have powerful stories about the failures and mistakes you’ve made and the lessons learned. You share them as cautionary tales with your team mates.\n\n* You can demonstrate familiarity with common language frameworks. Java is preferred to start, but .NET, Ruby, Go, Python and Javascript are also key to our product offering.\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need. You write things down so someone else on your team can do them.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges. We see simplicity as the greatest expression of intelligence and responsibility.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.\n\n* Bachelor’s Degree or equivalent\n\n* Background developing applications using Java, Tomcat, and MySQL\n\n* Understanding of data modeling for relation and non-relational persistence \n\n\n\n\nBonus Points\n\n\n* Distributed Queues\n\n* Service Discovery\n\n* Caching Design\n\n* Advanced Knowledge of AWS Features and Services\n\n* Spring and Hibernate Excellence\n\n* Knowledge of database fundamentals: SQL, schema, internals (MySQL)\n\n* JVM and garbage collector tuning, heap dump analysis experience\n\n* Experience with the following performance tools: JMeter, YourKit, New Relic, SumoLogic\n\n* Experience in using UI profilers and deep understanding of Chrome developer tools\n\n* Understanding of how a browser works (Chrome Devtools, UI Automator)\n\n\n\n\nWhat We Offer\n\n\n* The opportunity to work with some of the highest performing individuals in the world with the goal of establishing memories of the best part of your career ever.\n\n* Competitive compensation\n\n* Daily in-office team lunches\n\n* Meaningful stock plans\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off \n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Software Development Engineer Test

Software Development Engineer Test


Contrast Security


dev

testing

engineer

infosec

dev

testing

engineer

infosec


πŸ‘ 2,630 viewed | ✍️ 182 applied (7%)
\nContrast Security is the world’s leading provider of security technology that enables software applications to protect themselves against cyber attacks. Contrast's patented deep security instrumentation is the breakthrough technology that enables highly accurate analysis and always-on protection of an entire application portfolio, without disruptive scanning or expensive security experts. Only Contrast has intelligent agents that work actively inside applications to prevent data breaches, defeat hackers and secure the entire enterprise from development, to operations, to production.\n\nThe Software Development Engineer in Test (SDET) believes the reward for a job well done is another job. You would rather spend your time enabling engineering teams to more effectively write their own tests than write tests for them. You thrive in an environment where there is something new to learn with each major effort. \n\nImagine landing with an engineering team with a goal of improving their unit testing coverage.  Maybe they need help mocking services? Maybe they need help just refactoring a large group of tests during a system upgrade? Maybe they need help starting a load testing practice? Our teams will ask. You will research, implement and train.  When you are done with that job, a new one will await you with another of our teams.  \n\nResponsibilities\n\n\n* Work with multiple agile teams to establish automated test metric goals and achieve them. \n\n* Work with teams to set up processes, patterns and standards to increase unit test coverage\n\n* Work with teams to set up processes, patterns and standards to automate high value performance testing (benchmark, load and stress)\n\n* Work with teams to set up high value automated API tests\n\n* Working with the Ops teams to test infrastructure as code gets you a gold star\n\n* Contribute to our synthetic test infrastructure run against our production SaaS systems for real-time awareness of product uptime and functional stability.\n\n* Build and maintain expertise in several languages and their testing tool sets over time.\n\n* A passion for automation – a key team goal is to reduce daily toil through automation\n\n* Work cross-functionally within a service team and be a core contributor in every significant engineering solution that is delivered\n\n* Debug production issues across services and levels of the stack\n\n* Participate in on-call rotations, along with every member of the engineering team\n\n* Solid understanding of system design, including the operational trade-offs of various designs\n\n* Solid programming and troubleshooting skills. You may be called upon to help with systems written in Java, .NET, Ruby, Go, Python and Javascript. You won’t be expected to know everything, but we are looking for people who can dig through a codebase for debugging and commit tactical fixes opportunities.\n\n\n\n\nAbout You\n\n\n* You don't love writing code, you love writing code that test's the code.\n\n* You have 5+ years in technology with at least three in a QA Automation Role or SDET\n\n* You love to break things, and you like to share how you did it.\n\n* You’re a storyteller with compelling stories about that time you learned something new in order to solve a problem for your company, and stories about the times you helped your team mates skill up.\n\n* You have powerful stories about the failures and mistakes you’ve made and the lessons learned. You share them as cautionary tales with your team mates.\n\n* You can find your way around a database, but you are better at mocking them.\n\n* You can demonstrate familiarity with common language frameworks. Java is preferred to start, but .NET, Ruby, Go, Python and Javascript are also key to our product offering.\n\n* You have a desire to make the Internet a safer place.\n\n* You have a passion for tools, testing frameworks, methodologies and implementations. You choose them based on the the best fit for the problem at hand. \n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need. You write things down so someone else on your team can do them.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges. We see simplicity as the greatest expression of intelligence and responsibility.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.\n\n\n\n\nWhat We Offer\n\n\n* The opportunity to work with some of the highest performing individuals in the world with the goal of establishing memories of the best part of your career ever.\n\n* Competitive compensation\n\n* Daily in-office team lunches\n\n* Meaningful stock plans\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off \n\n\n\n\nBy submitting your application, you are providing Personally Identifiable Information about yourself (cover letter, resume, references, or other employment-related information) and hereby give your consent for Contrast Security, and/ or our HR-related Service Providers, to use this information for the purpose of processing, evaluating and responding to your application for current and future career opportunities. Contrast Security is an equal opportunity employer and our team is comprised of individuals from many diverse backgrounds, lifestyles and locations.

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


.net Engineer

.net Engineer


Contrast Security


engineer

infosec

engineer

infosec


πŸ‘ 2,279 viewed | ✍️ 208 applied (9%)
\nAt Contrast, our goal is the make the Internet safer day by day. We are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Contrast is looking for a talented .NET application developer to join our team, engineering a world-class instrumentation agent for analyzing the security of Microsoft web applications. An ideal candidate is proficient in ASP.NET, C#, and C++. Ideally, we would love for you to have an interest or experience in Azure, as well as experience or curiosity with .NET Core.\n\nKey Responsibilities\n\n\n* Build many variations of simple to complex web applications using ASP.NET and .NET Core for our instrumentation agent to analyze to detect security vulnerabilities at run-time.\n\n* Contribute to the development of our instrumentation agent written in C# and C++.\n\n* Support traditional ASP.NET apps and more modern .NET Core apps on Windows/Linux.\n\n* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented web applications.\n\n* Own your work. Whether a nasty bug or an awesome feature, you put your name on every line of code.\n\n* Be a team player. You love to work with others to find the right solutions.\n\n\n\n\nAbout You\n\n\n* You love to code.\n\n* Experience with at least one ASP.NET Framework (WebForms, MVC, WCF, Web API) or .NET Core web applications.\n\n* Experience with C# and C++.\n\n* Comfortable working with Visual Studio Team Services for continuous integration.\n\n* Strong understanding of Microsoft IIS for configuration and deployment purposes.\n\n* Knowledge of the .NET development ecosystem.  Experience with popular .NET libraries such as Entity Framework, Dapper and Unity.\n\n* Experience deploying web applications to Azure services such as Azure VMs, Azure Web Apps, Service Fabric, Azure Table Storage (NoSQL), SQL Server and Azure Networking Services.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Zapier


Cloud Security Engineer

Cloud Security Engineer


Zapier


infosec

cloud

engineer

infosec

cloud

engineer


πŸ‘ 2,725 viewed | ✍️ 166 applied (6%)
\nHi there!\n\nWe're looking for someone to join our Engineering team at Zapier as a Cloud Security Engineer. Are you interested in helping build and secure cloud infrastructure to support a powerful automation tool? Then read on…\n\nWe know applying for and taking on a new job at any company requires a leap of faith. We want you to feel comfortable and excited to apply at Zapier. To help share a bit more about life at Zapier, here are a few resources in addition to the job description that can give you an inside look at what life is like at Zapier. We hope you'll take the leap of faith and apply.\n\n\n* Our Commitment to Applicants\n\n* Culture and Values at Zapier\n\n* Zapier Guide to Remote Work\n\n* Zapier Code of Conduct\n\n* Diversity and Inclusivity at Zapier\n\n\n\n\nZapier is proud to be an equal opportunity workplace dedicated to pursuing and hiring a diverse workforce.\n\nEven though our job description may seem like we're looking for a specific candidate, the role inevitably ends up tailored to the person who applies and joins. Regardless of how well you feel you fit our description, we encourage you to apply if you meet these criteria:\n\nYou care deeply about building secure products in secure ways that simplify the lives of millions of people through automation.\n\nAbout You\n\nYou have deep infrastructure security experience. Keeping the cloud resources that support our core Zapier application secure is at the heart of this role. Zapier is a SaaS product, so experience building software and managing cloud infrastructure under a similar model is a big plus.\n\nYou know what makes browsers and sites secure.  The web browser is practically the operating system of the internet; these days nearly everything that happens online, happens in a browser.  You’ll help us continue to keep customer data safe by ensuring the “first mile” is trouble-free.\n\nYou love writing software and building infrastructure. Most of what you’ll do each day is guiding, building and maintaining Zapier's infrastructure and product. You'll focus on high value, high risk portions of Zapier. You'll use code to automate and improve the more mundane parts of auditing and monitoring of internal processes, as well as in the product.\n\nYou have worked with teams before on large Python, AWS, & Kubernetes projects. You’re also familiar with some common frameworks for languages like Django, Flask, or Rails. You've also worked extensively in cloud providers like AWS, GCE, or Azure and have strong experience with threat detection tooling on linux. \n\nYou love doing things efficiently. At Zapier, the work you do will have a disproportionate impact on the business. We believe in systems and processes that let us scale our impact to be larger than ourselves. You'll be in a unique position to find and eliminate "insecure and painful" experiences and replace them with "secure and joyful" experiences.\n\nYou love learning. Engineering is an ever-evolving world. You enjoy playing with new tech and exploring areas that you might not have experience with yet.\n\nYou love to set your own direction. At Zapier, we have one team meeting each week and one-on-one meetings every month. Between those we chat in Slack and then go make things happen.\n\nYou are friendly and patient, welcoming, considerate, and respectful. Learn more about these attributes in our code of conduct.\n\nThings You Might Do\n\nZapier is a small, fast-growing, and remote-first company, so you'll likely get experience on many different projects across the organization. That said, here are some things you'll probably do:\n\n\n* Write some python and work within ansible, terraform, AWS and more.\n\n* Identify where we can add more layers of defense in depth and implement them.\n\n* Regularly play a role in red team / blue team type of activities and see what threats you can expose in our cloud and server stack. \n\n* Build internal tooling to ensure safe data access patterns for Zapier employees.\n\n* Review code across Zapier's product and infrastructure.\n\n* Locating weak points across Zapier and strengthening them.\n\n* Ship code to millions of users every week.\n\n* Experiment: this is a startup so everything can change\n\n\n\n\nAs part of our All Hands Support initiative, help customers have the best experience with Zapier as possible. \n\nThe Whole Package\n\nLocation: Planet Earth.\n\nIf you want to work remote, that's great. If you want to work near others, that's cool too. Our team of 100+ is distributed because it lets us work with the best people. You don't have to be located in the USA either. Some team members live in the United Kingdom, Thailand, India, Nigeria, Taiwan, Guatemala, New Zealand, Australia, and more! You just need the skills and drive to succeed in this role and the ability to work from anywhere.\n\nCompensation:\n\n\n* Competitive salary (we don't use remote as an excuse to pay less)\n\n* Great healthcare + dental + vision coverage*\n\n* Retirement plan with 4% company match*\n\n* Profit sharing\n\n* 2 annual company retreats to awesome places\n\n* 14 weeks paid leave for new parents of biological or adopted children\n\n* Pick your own equipment. We'll set you up with whatever Apple laptop + monitor combo you want plus any software you need.\n\n* Unlimited vacation policy. Plus we require you to take at least 2 weeks off each year. We see most employees take 4-5 weeks off per year. This isn't a vague policy where unlimited vacation means no vacation.\n\n* Work with awesome companies around the world. We partner with great software companies all over the world and you'll constantly get to interact with people from these great companies\n\n\n\n\n*While we take care of our international folks as best we can, currently, healthcare and retirement plans are only available to US-based employees.

See more jobs at Zapier

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Zapier


Application Security Engineer

Application Security Engineer


Zapier


infosec

engineer

infosec

engineer


πŸ‘ 2,211 viewed | ✍️ 94 applied (4%)
\nHi there!\n\nWe're looking for someone to join our Engineering team at Zapier as an Application Security Engineer Are you interested in helping build and secure a powerful automation tool? Then read on…\n\nWe know applying for and taking on a new job at any company requires a leap of faith. We want you to feel comfortable and excited to apply at Zapier. To help share a bit more about life at Zapier, here are a few resources in addition to the job description that can give you an inside look at what life is like at Zapier. We hope you'll take the leap of faith and apply.\n\n\n* Our Commitment to Applicants\n\n* Culture and Values at Zapier\n\n* Zapier Guide to Remote Work\n\n* Zapier Code of Conduct\n\n* Diversity and Inclusivity at Zapier\n\n\n\n\nZapier is proud to be an equal opportunity workplace dedicated to pursuing and hiring a diverse workforce.\n\nEven though our job description may seem like we're looking for a specific candidate, the role inevitably ends up tailored to the person who applies and joins. Regardless of how well you feel you fit our description, we encourage you to apply if you meet these criteria:\n\nYou care deeply about building secure products in secure ways that simplify the lives of millions of people through automation.\n\nAbout You\n\nYou have web application and infrastructure security experience. Keeping the core Zapier web application secure is at the heart of this role. Zapier is a SaaS product, so experience building software and managing infrastructure under a similar model is a big plus.\n\nYou know what makes browsers and sites secure.  The web browser is practically the operating system of the internet; these days nearly everything that happens online, happens in a browser.  You’ll help us continue to keep customer data safe by ensuring the “first mile” is trouble-free.\n\nYou love writing software and building infrastructure. Most of what you’ll do each day is guiding, building and maintaining Zapier's infrastructure and product. You'll focus on high value, high risk portions of Zapier. You'll use code to automate and improve the more mundane parts of auditing and monitoring of internal processes, as well as in the product.\n\nYou have worked with teams before on large Python, AWS, & Kubernetes projects. You’re also familiar with some common frameworks for languages like Django, Flask, or Rails as well as React/Backbone.js. You've also worked extensively in cloud providers like AWS, GCE, or Azure\n\nYou love doing things efficiently. At Zapier, the work you do will have a disproportionate impact on the business. We believe in systems and processes that let us scale our impact to be larger than ourselves. You'll be in a unique position to find and eliminate "insecure and painful" experiences and replace them with "secure and joyful" experiences.\n\nYou love learning. Engineering is an ever-evolving world. You enjoy playing with new tech and exploring areas that you might not have experience with yet.\n\nYou love to set your own direction. At Zapier, we have one team meeting each week and one-on-one meetings every month. Between those we chat in Slack and then go make things happen.\n\nYou are friendly and patient, welcoming, considerate, and respectful. Learn more about these attributes in our code of conduct.\n\nThings You Might Do\n\nZapier is a small, fast-growing, and remote-first company, so you'll likely get experience on many different projects across the organization. That said, here are some things you'll probably do:\n\n\n* Write some Python!\n\n* Identify where we can add more layers of defense in depth and implement them.\n\n* Periodically embed with product teams with to help with security sensitive projects.\n\n* Build internal tooling to ensure safe data access patterns for Zapier employees.\n\n* Review code across Zapier's product and infrastructure.\n\n* Locating weak points across Zapier and strengthening them.\n\n* Ship code to millions of users every week.\n\n* Experiment: this is a startup so everything can change\n\n\n\n\nAs part of our All Hands Support initiative, help customers have the best experience with Zapier as possible.\n\nThe Whole Package\n\nLocation: Planet Earth.\n\nIf you want to work remote, that's great. If you want to work near others, that's cool too. Our team of 100+ is distributed because it lets us work with the best people. You don't have to be located in the USA either. Some team members live in the United Kingdom, Thailand, India, Nigeria, Taiwan, Guatemala, New Zealand, Australia, and more! You just need the skills and drive to succeed in this role and the ability to work from anywhere.\n\nCompensation:\n\n\n* Competitive salary (we don't use remote as an excuse to pay less)\n\n* Great healthcare + dental + vision coverage*\n\n* Retirement plan with 4% company match*\n\n* Profit sharing\n\n* 2 annual company retreats to awesome places\n\n* 14 weeks paid leave for new parents of biological or adopted children\n\n* Pick your own equipment. We'll set you up with whatever Apple laptop + monitor combo you want plus any software you need.\n\n* Unlimited vacation policy. Plus we require you to take at least 2 weeks off each year. We see most employees take 4-5 weeks off per year. This isn't a vague policy where unlimited vacation means no vacation.\n\n* Work with awesome companies around the world. We partner with great software companies all over the world and you'll constantly get to interact with people from these great companies\n\n\n\n\n*While we take care of our international folks as best we can, currently, healthcare and retirement plans are only available to US-based employees.

See more jobs at Zapier

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Security Scorecard - We are revolutionizing the cybersecurity industry


Senior Data Analytics Engineer

Senior Data Analytics Engineer


Security Scorecard - We are revolutionizing the cybersecurity industry


senior

stats

engineer

infosec

senior

stats

engineer

infosec


πŸ‘ 1,688 viewed | ✍️ 63 applied (4%)
\nWhy SecurityScorecard\n\nSecurityScorecard is revolutionizing the cybersecurity industry with our platform, data, and insights. We’ve built a new category of enterprise software, which enables companies to rate and understand the security risk of any company. Our customers span a variety of sectors and use cases, including compliance, cyber insurance, and vendor risk management. We are proud to be backed by Sequoia, Google Ventures, and Moody's.\n\nSecurityScorecard is growing tremendously and targeting talent who can contribute to the next phase in our company's development. A successful Scorecarder exemplifies our S(CORE) values: Solutions Focused, Customer Centric, operate as One Team, Resilience and Embody #SecurityDNA. Your interest in making an impact in our organization and alignment with these values are as important as your skills.\n\nOpportunity\n\nThe Senior Data Analytics Engineer will build meaningful analytics that inform companies of security risk. You will be working closely with our Data Science team, implementing algorithms and managing the analytic pipeline. We have over 1 PB of data, so the ideal candidate will have experience processing and querying large amounts of data.\n\nWe prefer this person to work from our NYC headquarters, but will consider remote applicants in other geographic areas.\n\nResponsibilities:\n\n\n* Manage the analytic pipeline using Spark, Hadoop, etc.\n\n* Leverage cutting-edge technologies to support new and existing and services and processes.\n\n* Quickly and efficiently design and implement in an agile environment\n\n* Work with other team members to implement consistent architecture\n\n* Drive projects through all stages of development\n\n* Actively share knowledge and responsibility with other team members and teams\n\n* Improve the effective output of the engineering team by managing quality, and identifying inconsistencies.\n\n\n\n\nRequirements:\n\n\n* Bachelor's degree (CS, EE or Math preferred) or equivalent work experience as well as interest in a fast paced, complex environment.\n\n* 5+ years of experience Scala or another functional language experience in a commercial environment (highly preferred)\n\n* 3+ Experience with Spark, and the Hadoop ecosystem and similar frameworks\n\n* Familiarity with various tools such as AWS and Docker and an instinct for automation\n\n* Expert in SQL\n\n* Strong understanding of Software Architecture principles and patterns.\n\n* Experience working with 3rd party software and libraries, including open source\n\n* Experience with Postgres\n\n\n

See more jobs at Security Scorecard - We are revolutionizing the cybersecurity industry

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Perch Security


Experienced Sales Engineer

Experienced Sales Engineer


Perch Security


sales

engineer

infosec

sales

engineer

infosec


πŸ‘ 2,407 viewed | ✍️ 105 applied (4%)
\nAt Perch Security, Sales Engineers provide technical pre-sales and post-sales engineering support to the Sales Operations Center and Perch’s prospective and current clients. Sales Engineers are the primary technical resource for the Sales Operations Center. As a Sales Engineer you are expected to develop and build relationships with our clients and be well versed in all things Perch.\n\nA day in the life\n\n\n* Demonstrate products and services to clients onsite, remotely via webinar sessions, and at conferences/trade shows.\n\n* Communicate Perch’s key value propositions to clients in context of their specific use case or requirements.\n\n* Provide technical support and field questions from prospects and clients.\n\n* Develop and manage client relationships.\n\n* Communicate client feature requests and issues with product management and leadership teams.\n\n* Communicate and train partners on how to share the Perch value propositions.\n\n* Collaborate and communicate effectively with cross functional teams, executives, and clients.\n\n* Support RFI/RFP responses.\n\n* Support Proof of Value engagements.\n\n* Stay plugged into industry trends.\n\n\n\n\n\n\nA perfect match\n\n\n* BS/BA degree in Computer Science, a related discipline, or equivalent experience.\n\n* Excellent verbal and written communication skills.\n\n* Strong analytic and problem solving skills.\n\n* 3-5 years of experience working for a private software company.\n\n\n\n\n\n\nLocation\n\n\n* West of the Mississippi\n\n\n\n\n\n\nAbove and beyond\n\n\n* Some networking experience, you know what a subnet is.\n\n* Cybersecurity interest or background.\n\n\n

See more jobs at Perch Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Product Manager Community Edition Manager

Product Manager Community Edition Manager


Contrast Security


product manager

exec

infosec

product manager

exec

infosec


πŸ‘ 3,208 viewed | ✍️ 166 applied (5%)
\nReady to shake things up? At Contrast we recognize that the cloud has dramatically changed the dynamics of application development, and that modern software requires a modern software security model. We strive to make security intrinsic to DevOps without compromising speed and without the need for specialized skills. Our business is growing at an incredible pace and we are expanding teams across our organization to support customer demand. Now is the time to get on board. It’s an awesome place to work, and we’re looking for super stars. We are looking for a dynamic product manager to lead growth initiatives for our Assess and Protect offerings. These initiatives include:\n\n\n* Contrast Community Edition – a freemium version of our SaaS services targeting the developer and DevOps community.\n\n* Software Composition Analysis (SCA) offering – focused on capturing the market for open source security use cases.\n\n\n\n\nWe need an energetic, talented, and data-driven individual who can drive strategic services and marketing campaigns with a targeted focus on user acquisition, engagement, retention and conversion.\n\nResponsibilities\n\n\n* Own the business and roadmap for our new Software Composition Analysis (SCA) offering, driving the product vision, strategy, and execution for the service across SaaS and on-prem deployment models.\n\n* Own the strategy and roadmap for Contrast Community edition focused on the Developer and DevOps personas. Drive new features and marketing campaigns to grow the freemium user base and convert users to our paid Assess and Protect offerings.\n\n* Inform product decisions with quantitative analysis based on user behavior analytics and experimentation (A/B testing, ...)\n\n* Drive and own the product requirements process while working collaboratively with key stakeholders to prioritize and validate technology, features, product direction and strategy.\n\n* Influence the Product Development and R&D teams while helping them better understand what to build and why.\n\n* Collaborate with customers, sales, engineering and designers on fresh new concepts\n\n* Establish clear metrics and KPIs to continuously evaluate business performance and feature usability with a direct feedback loop into the product strategy.\n\n* Develop a deep understanding of the market landscape and identify key areas of competitive differentiation and market disruption.\n\n* Work side-by-side with product marketing on positioning and marketing campaigns.\n\n\n\n\nAbout You\n\n\n* A talent for driving organic growth through freemium offerings and user conversion.\n\n* Demonstrated ability to leverage service usage analytics, user research and financial analysis to drive decisions and service improvements.\n\n* Excellent communicator, with natural ability to communicate effectively with internal stakeholders, customers and at trade shows, industry events and webinars.\n\n* Detail oriented and organized. You’re able to transmute various, conflicting inputs into a focused narrative that engineering can drive and deliver.\n\n* Experience owning a SaaS product line ideally targeting the Developer and DevOps persona.\n\n* Experience in one or more of the following markets and technologies: Developer/DevOps Tools, Software Composition Analysis (SCA), Open Source Software Security, Application Security Testing, Web Application Firewalls (WAF)\n\n* Previous knowledge of the most prevalent web application security vulnerabilities and exploits is a strong plus.\n\n* Solid understanding of the developer community, tools and supporting ecosystem.\n\n* Strong customer empathy and relationship building\n\n* Demonstrated ability to distill and present research findings, market analysis and product requirements for both technical and non-technical audiences.\n\n* Demonstrated strong, structured and data-driven problem-solving and prioritization skills for multi-dimensional problems.\n\n* Demonstrated experience with Agile and Lean development practices.\n\n* Outstanding organizational skills to coordinate various creative, technical, and administrative projects across the organization.\n\n* A minimum of 2 years of experience in Product Management for SaaS based security offerings.\n\n* Bachelor's degree in engineering; MBA preferred\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Files.com


Infrastructure Security Engineer

Infrastructure Security Engineer


Files.com


infosec

engineer

infosec

engineer


πŸ‘ 2,281 viewed | ✍️ 129 applied (6%)
\nHave you built and managed large cloud server deployments that have seen real production usage? Are you an expert at automation tools like Chef, Consul, Terraform, and Vault? Do the concepts of immutable infrastructure or DevSecOps call out to you?\n\nIf so, we’d like you to learn about Files.com!\n\nFiles.com operates dozens of services over 150+ cloud server in 10 AWS regions. We rely on our ever-growing infrastructure team to keep those services running smoothly and securely.\n\nAt Files.com, you will be working with our existing deployments of Chef, Vault, Consul, Docker, Ansible, ELK, Grafana, Statsd, Asterisk, MySQL, Redis, Memcached, Zeromq, Puma, Jenkins, Wazuh, and many other exciting open source systems. Of course, you’ll also have the freedom to deploy something else if it gets the job done.\n\nAs a member of our infrastructure team, your work will be mostly project-based, but will also involve being part of an on-call rotation for the systems you maintain. (There are not many after-hours incidents.)\n\nExamples of Projects our Infrastructure Team Tackles:\n\n\n* Building zero-downtime failover from one AWS region to another for complex web applications.\n\n* Securing our network using tools like Terraform and Vault.\n\n* Deploying and managing internal services for things like LDAP, VPN, and telephone.\n\n* Designing and building our sophisticated monitoring stack and app uptime alerting.\n\n* Contributing features to our home-built FTP and SFTP server software that runs the FTP/SFTP interfaces of Files.com\n\n* Automating a system for dynamically allocating dedicated IPs to Files.com customers and keeping those IPs highly available even across server/AZ migrations.\n\n* Building and managing a Certificate Authority system\n\n\n\n\nMinimum Qualifications:\n\n\n* 5+ years of directly applicable experience.\n\n* Experience managing large cloud server deployments that have seen real production usage.\n\n* Experience building secure, failure-resistant architecture, including disaster recovery, backups, failover, etc.\n\n* Significant experience working with GNU/Linux servers, including a complete understanding of the command line, /proc, services, processes, virtual memory, etc.\n\n* Experience diagnosing and resolving problems in mission-critical environments.\n\n* Comprehensive understanding of networking concepts (layers, firewalls, DNS, VPN, etc) and how to build secure infrastructure and an awareness of common server security vulnerabilities.\n\n* Proficiency with configuration management tools, such as Chef or Puppet, and fluency with at least one major scripting language.\n\n\n\n\nPreferred Qualifications:\n\n\n* Experienced programmer capable of writing code in at least 2-3 major programming languages.\n\n* Contributions to major open source projects.\n\n* Familiarity with large scale log management systems, such as ELK or Splunk (we use ELK).\n\n* Experience with penetration testing in a production environment\n\n* Experience with the advanced features of public cloud platforms such as AWS or Azure (we use AWS).\n\n* Experience working on a remote team.\n\n\n

See more jobs at Files.com

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

TaxJar


Security Analyst Administrator

Security Analyst Administrator


TaxJar


infosec

analyst

admin

infosec

analyst

admin


πŸ‘ 2,535 viewed | ✍️ 139 applied (5%)
\nTaxJar is the leading technology solution for busy eCommerce sellers to manage sales tax and is trusted by more than 15,000 businesses.\n\nOur core values\n\n\n* We do the right thing for our customers.\n\n* We're a team, built on trust.\n\n* We're proud to be remote.\n\n* We're in control of our own destiny.\n\n\n\n\nTaxJar’s remote-only team of 100+ people is growing quickly. We have an immediate opening for a Security Analyst / Administrator who wants to help us make eCommerce easier for everyone.\n\nWe're looking for a detailed oriented and experienced Security Analyst that has a passion for information security and is eager to make an impact in a growing company.\n\nOn our team you will have the opportunity to help build, grow, and maintain our Information Security Program. This position reports to the Director of Information Security\n\n\n*This is a full-time remote position available to folks located in the US.\n\nREQUIREMENTS\n\nAs a Security Analyst / Administrator for TaxJar you will:\n\n\n* Own the Access Control management process for all employees using Okta as the Identity and Access Management tool\n\n* Deploy, manage, and help secure employees workstations using Jamf - MDM tool\n\n* Assist with 3rd party security reviews and assessments\n\n* Analyze, track, and monitor alerts from our Cloud SIEM (security analytics tool)\n\n* Assist with ongoing and annual Security Awareness training for employees\n\n* Test and audit security controls to ensure adherance with SOC2 and GDPR compliance frameworks\n\n* Develop a comprehensive understanding of our Security Policies, SOC2 and GDPR controls in order to manage and track commitments from partners and vendors\n\n* Performs regularly-scheduled vulnerability scans to support regulatory compliance and identification of new vulnerabilities\n\n\n\n\nBENEFITS\n\n\n* 2 - 4 years of experience in a technology and information security related role\n\n* Experience with an Identify and Access Management (IAM) tool - Okta\n\n* Knowledge and expertise of Mobile Device Management (MDM) tools, preferably with Jamf\n\n* SOC2 compliance experience, GDPR experience is a plus\n\n* Superior attention to detail, with strong process and documentation skills\n\n* Fast learner and someone who is always eager to learn and adapt (growth mindset)\n\n* Self-directed, self-motivated\n\n* Agile, humble, trustworthy, and a team player\n\n* Excel at communicating with the team remotely (chat, video, email, etc)\n\n\n\n\nYou’ll be a great fit on our team if you\n\n\n* Only want to work remotely\n\n* Are a PRO at communicating and collaboration\n\n* Highly value working with people you like and respect\n\n* Are accountable\n\n* Are confident in your skills and a solid team player (We’re peers here, no egos please) but also comfortable working asynchronously\n\n* Hungry to play an impactful role and not afraid to fail\n\n\n\n\nWe’re a happy team and we all really love what we do. We've created a space where high-achievers can succeed, but are also safe to fail. We're profitable and focused on growing TaxJar sustainably. We're always learning how to make TaxJar the best place to work for all of us, and not just another tech startup. We’re always looking for an amazing new teammates to come share in the excitement of solving real-world problems with technology.\n\n\n* Excellent health, vision and dental benefits\n\n* Flexible vacation policy\n\n* 401k Plan\n\n* $1,000 in professional development credit\n\n* Home office stipend\n\n* Equity in a profitable company\n\n* 2x year all-company in person retreats (fully paid for by us of course)\n\n* Mandatory Birthday holiday!\n\n* 12 week paid maternity/ 6 week paid paternity leave\n\n* Monthly perks reimbursement for things like Netflix, Amazon Prime, your gym membership, home internet and more.\n\n\n\n\nWe offer all of our employees amazing benefits. Visit www.TaxJar.com/jobs for a full list of our benefits and to learn more about how we work and what we stand for.\n\nIf you're not the perfect fit for this position, but you know someone who is, we'll pay you $1,000 if you refer us to the person we hire.

See more jobs at TaxJar

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Redox


Application Security Engineer

Application Security Engineer


Redox


infosec

engineer

infosec

engineer


πŸ‘ 2,197 viewed | ✍️ 114 applied (5%)
Are you an Application Security Engineer who is passionate about empowering engineering teams to build secure software? Redox is searching for an exceptionally talented Senior Application Security Engineer to join our Security Team. In this role, you will set the direction for our application security processes, tools, and capabilities. Redox is an engineering-first company, building the future of healthcare information exchange, the platform to help power healthcare companies and applications to work together!\n\n\n\n\nResponsibilities:\n\n\n\n\n* Be an active voice in our small, focused security team as the primary engineer responsible for Application and Product Security.\n\n* Empower Redox to reduce avoidable vulnerabilities introduced into code, reduce the time to detect vulnerabilities that do exist, and mitigate vulnerabilities detected as quickly as possible.\n\n* Approach securing our company pragmatically, empathizing with engineers, developers and security champions to understand their needs.\n\n* Perform risk assessments, threat models and code reviews for our application.\n\n* Communicate issues and progress on complex problems in terms easily understood by stakeholders.\n\n* Coordinate and manage our penetration testing and bug bounty programs.\n\n* Support and build valuable training activities that uplift developer awareness of secure coding practices.\n\n* Build and maintain tools that detect potential security issues within our development pipeline.\n\n* Maximize security impact and reduce risk while minimizing the negative impact on our businesses and developer velocity.\n\n* Mentor and guide engineering teams on best practices for keeping our applications secure.\n\n\n\n\n\n\n\n\n\n\nBackground and Experience Requirement:\n\n\n\n\n* Knowledge of current application security vulnerabilities, how to detect them, how to prevent them and how to create awareness of them.\n\n* Proficiency and hands-on experience using tools to which can detect security vulnerabilities, both statically and dynamically.\n\n* Experience securing Javascript, NodeJS and Typescript applications.\n\n* Experience with containerized and application mesh architectures.\n\n* Ability to communicate complex security threats and risks into simple terms for non-security (and even non-technical) stakeholders.\n\n* Development experience in at least two high-level languages such as NodeJS, Python, Ruby, C#, Scala, Java, etc.\n\n* Experience running threat modeling sessions with engineering teams.\n\n\n\n\n\n\n\n\n\n\nBonus Points:\n\n\n\n\n* Securing applications based on AWS Technologies\n\n* Offensive security (OSCP) certifications\n\n* Docker/K8 hardening experience\n\n\n\n\n

See more jobs at Redox

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Contrast Security


Development Manager Nodejs Agent

Development Manager Nodejs Agent


Contrast Security


exec

javascript

node js

infosec

exec

javascript

node js

infosec


πŸ‘ 2,470 viewed | ✍️ 101 applied (4%)
\nAs a member of the Contrast Security team, you will join a group responsible for industry leading Application Security products. Our team includes engineers, designers, and product managers, all focused on making the Internet safer for everyone.  We believe in agile practices to build our software, as well as continuously delivering features and improvements to our users. You are a person who is always pushing your teammates to do their best work and intolerant of anything else. Our team believes that a successful product is built by working with designers, product managers, and operators to understand the full cycle of software development.\n\nThe role of the Development Manager involves a balance of day-to-day personnel management, as well managing development projects in a cross-functional manner. Development managers are not just managers, as they are expected to commit code, but at a different pace than contributing engineers.\n\nAs Development Manager of the NodeJS Agent team you have a number of responsibilities, but the primary one is to get a product out the door. Your goal is deliver results to the customer, or market, and do everything necessary to achieve this. To do this you need to make sure the development team is able to work as efficiently as possible and this means making sure they have clear goals, both short term and long term, and that nothing prevents them from doing their work. From the initial project scope to deploying the product out to customer sites, each step is your responsibility. You can, and should, delegate as much as you can but be ready to check that things are being done as you want and be ready to jump in if it is not.\n\nRoles and Responsibilities\n\n\n* Own your product and software code base, including the feature road map, customer issues/defects and the technology road map.\n\n* Lead up cross-functional development project initiatives owning project management, issue tracking, scoping and planning.\n\n* Drive the daily standup meeting with the team to ensure the project is on-track and that issues are resolved timely.\n\n* Support all hiring and recruiting initiatives for your team.\n\n* Work on technical designs and architectural initiatives on a project by project basis.\n\n* Manage individuals supporting their personal/career growth and development.\n\n* Develop team and individual goals/objectives that align to the department and company goal\n\n* Perform consistent and regular individual one on one meetings with team members.\n\n* Be a team player. You love to work with others to find the right solutions.\n\n\n\n\nAbout You\n\n\n* You love to manage others and make them better developers.\n\n* You love to code and deploy at scale.\n\n* Desire to make the Internet a safer place.\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n* You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally.\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation\n\n* Daily team lunches\n\n* Meaningful stock plans\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off\n\n\n

See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Auth0


Product Security Engineer

Product Security Engineer


Auth0


infosec

product manager

engineer

exec

infosec

product manager

engineer

exec


πŸ‘ 982 viewed | ✍️ 1 applied (0%)
Auth0’s mission is to help developers innovate faster. Every company is becoming a software company and developers are at the center of this shift. They need better tools and building blocks so they can stay focused on innovating. One of these building blocks is identity: authentication and authorization. That’s what we do. Our platform handles 2.5B logins per month for thousands of customers around the world. From indie makers to Fortune 500 companies, we can handle any use case. We like to think that we are helping make the internet safer.\n\nWe have raised $210M to date and are growing quickly. Our team is spread across more than 35 countries and we are proud to continually be recognized as a great place to work. Culture is critical to us, and we are transparent about our vision and principles.\n\nJoin us on this journey to make developers more productive while making the internet safer!\n\nAuth0 is a security company and Auth0's Security organization is in the privileged position of supporting a security-first culture for a company that wants to make the Internet safer. The Product Security team mission is to ensure that Auth0 products are as secure as our customers trust them to be. We partner closely with our Engineering and Product teams to embed security into every stage of the product life cycle.\n\nWe are looking for a Product Security Engineer with a passion for both building and breaking things to solve security problems in partnership with our Engineering teams. You will have a chance to apply your skills and passion to improve the security of our product on a daily basis.\n\n\n\n\nIn this role you will:\n\n\n\n\n* Provide security guidance to Engineering and Product teams\n\n* Build threat models and conduct risk assessments for new features and services\n\n* Perform design and code reviews (lots of them!)\n\n* Identify, triage, resolve, and manage security vulnerabilities identified in Auth0 products\n\n* Build libraries and tools to make software built at Auth0 secure by default\n\n* Make security an integral part of our CI/CD pipeline\n\n* Perform internal penetration tests and participate in red team exercises\n\n* Champion security at Auth0\n\n\n\n\n\n\n\n\n\n\nOur ideal candidate will have:\n\n\n\n\n* Strong understanding of Web application security, including hands-on exploitation skills\n\n* Familiarity with secure development practices and security testing techniques (SAST, DAST, fuzzing, etc.)\n\n* Ability to explain complex security issues and their impact to diverse audiences\n\n\n\n\n\n\n\n\n\n\nAlso nice if you have:\n\n\n\n\n* Experience running a bug bounty program\n\n* Experience with JavaScript (Node.js) development\n\n\n\n\n

See more jobs at Auth0

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
Apply for this Job

πŸ‘‰ Please reference you found the job on Remote OK, this helps us get more companies to post here!

When applying for jobs, you should NEVER have to pay to apply. That is a scam! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. Scams in remote work are rampant, be careful! When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.

Redox


Lead Security Engineer Risk Operations


πŸ‡ΊπŸ‡Έ US-only

Lead Security Engineer Risk Operations


Redox

πŸ‡ΊπŸ‡Έ US-only

infosec

exec

ops

engineer

infosec

exec

ops