This job post is closed and the position is probably filled. Please do not apply. Work for Platform.sh and want to re-open this job? Use the edit link in the email when you posted the job!
๐ค Closed by robot after apply link errored w/ code 404 2 years ago
\nMission \n\nTo reinforce our commitment to customers’ privacy and security, for its PaaS solution, Platform.sh is looking for a Security Engineer with a taste for Python and Go, excellent Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC 2 compliance, and a real hunger for the challenges of building compliant distributed systems. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.\n\nWe are targeting engineers that like writing documentation and can function in a high performing, multithreaded, 100% cloud-based, remote environment.\n\nSecurity, privacy, and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated and where every constraint becomes a feature making the product better.\n\nThis role reports to our Security Operations Manager, and works in close interaction with our CTO, VP of Infrastructure, VP of Engineering, our Data Protection Officer, and our Customer Support teams.\n\n\n\n\nIn a given day you might:\n\n\n* Act as a technical liaison between the Security department and our product, engineering, support, and operations staff.\n\n* Create documentation and processes in English to help satisfy compliance requirements and/or internal process questions.\n\n* Evaluate, deploy, and create systems and tools that will enhance our efficiency.\n\n* Support our data protection officer and compliance team with information requests, pen testing coordinations, internal and external vulnerability scanning, disaster recovery, and related activities.\n\n* Execute our security incident management process.\n\n* Ensure all systems and services in our environment are securely designed, configured, managed, and monitored.\n\n* Work with external auditors to answer questions on PCI and SOC 2.\n\n* Participate in an on-call rotation, the majority of which is during normal working hours.\n\n\n\n\n\nQualifications\n\nMinimum Qualifications:\n\n\n* Experience with Linux (preferably Debian-based)\n\n* Markdown\n\n* Experience implementing PCI, SOC 2 , or related\n\n* Operate largely independently (go take that hill) with management support\n\n* Able to juggle several requests at the same time\n\n* Experience securing cloud services (AWS in particular)\n\n* Sysadmin experience\n\n* Experience with git-based workflows\n\n* Proficient in Python or Golang\n\n* Experience with containerization technologies (LXC/LXD, Docker)\n\n* Working knowledge of\n\n\n\n* Patch and Vulnerability Management process\n\n* Principle of Least Privilege\n\n* Incident response\n\n* Identity and Access Management\n\n* IPTABLES\n\n* Encryption: TLS, SSH, Disk, etc.\n\n* Ticketed change control\n\n* Snapshot-based backups\n\n\n\n* CISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP+ Certification or similar\n\n* Excellent written English skills\n\n\n\n\n\nPreferred Qualifications:\n\n\n* AWS, Google, and/or Azure certifications\n\n* Experience with performing vendor security reviews\n\n* Experience with Puppet\n\n* Knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n\n* Relational database skills\n\n* Public speaking experience\n\n* Ability to speak French or German\n\n* Ability to kick ass in Chess or beat Zork without using a map\n\n* Can bravely take on new challenges like a Gryffindor, analyze problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.\n\n\n\n\nSound Like a Good Fit? We’d love to talk to you! \n\n* This is a remote job \n\nWe are a worldwide distributed team and are looking for a candidate who can perform well working remotely. To be an effective performer here at Platform.sh, you’ll need to be able to effectively collaborate across time zones while operating with a high level of independence and autonomy. \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Engineer, English, Cloud, Python and Linux jobs that are similar:\n\n
$75,000 — $120,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐
We hire old (and young)\n\n