Remote Ruby + InfoSec Jobs in Sep 2020 Open Startup
RSS
API
Remote HealthPost a job

find a remote job
work from anywhere

Browse 64+ Remote Ruby Infosec Jobs in September 2020 at companies like Aha!, Doximity and Printwithme, Inc. with salaries ranging from $90,000/year to $135,000/year working as a Software Engineer, Software Engineer, Security or Sr Security Engineer — Ruby on Rails. Last post

Browse 64+ Remote Ruby Infosec Jobs in September 2020 at companies like Aha!, Doximity and Printwithme, Inc. with salaries ranging from $90,000/year to $135,000/year working as a Software Engineer, Software Engineer, Security or Sr Security Engineer — Ruby on Rails. Last post

Remote HealthPost a job

Get a  email of all new remote Ruby + Infosec jobs

Subscribe
×

  Jobs

  People

👉 Hiring for a remote Ruby + Infosec position?

Post a job
on the 🏆 #1 remote jobs board
The first health insurance for remote startups
A fully equipped health insurance that works for all your global employees
The first health insurance for remote startups
A fully equipped health insurance that works for all your global employees

Aha!


Sr Security Engineer — Ruby on Rails


North America

Sr Security Engineer — Ruby on Rails


Aha!

North America

security

 

ruby on rails

 

code review

 

infosec

 

security

 

ruby on rails

 

code review

 

infosec

 
Aha! engineering is a mid-sized, fully remote team. We are centered around North American time zones so we can collaborate during the workday.\n\n# Our core values\n# \n* [The Responsive Method](https://www.aha.io/company/the-responsive-method): These 8 principles drive how we operate Aha! and serve customers and employees.\n* Moving quickly: We ship code multiple times a day. We believe in getting new features in front of customers and iteratively improving as we learn what works and what does not.\n* Product over process: We want our engineers to have the time and focus to solve complex challenges. We aim to minimize the overhead introduced by heavyweight processes and excessive meetings.\n* Collaboration: We each bring unique experiences and skills to the table. Working together to share that knowledge benefits the entire team and helps us produce the best results for our customers.\n# Who we're looking for\n# \nWe believe that being a kind person who elevates the rest of the team is just as valuable as writing great code. We look for strong problem-solving skills and experience working on important functionality for a cloud-based product. We need people who are humble, eager to learn, and always willing to help others learn as well. We want to work with people who enjoy picking up a problem and solving it, regardless of the technologies and techniques involved.\n\nThe Aha! security team is part of the engineering team and is product focused. As a Senior Security Engineer, you can expect to spend the majority of your time working with Ruby on Rails and JavaScript code for security reviews, investigations, updates, and implementing security features.\n\n# Our technology\n# \nOur sole product is the Aha! web application. It is a single-instance, multi-tenant Ruby on Rails monolith supported by Postgres (database), Redis (background jobs), and memcached (Rails caching). We also run a Node.js webserver to support collaborative editing and real-time updates. Our application is hosted on Amazon Web Services and architected with ECS for reproducibility and scalability.\n\nWe use React for rich client-side experiences on the front end. Some of the features we have built with React include:\n\n* Our fully [collaborative text editor](https://www.aha.io/blog/collaborative-writing): Supports multiple cursors and simultaneous editing by any number of users. We also published a blog post explaining the underlying technology.\n* Our [presentation editor](https://www.aha.io/blog/product-roadmap-presentation-editor): Allows users to create presentations with slide themes, shapes, text, and embedded Aha! reports (which update live so the presentation is always current).\n* Our [Gantt chart](https://www.aha.io/blog/roadmap-gantt-chart): Supports scaling and scrolling to change the timeline, drag-and-drop, and quick actions to create records or sort the bars.\n\nWe embrace new technologies that help us deliver a lovable product, but we also remain cognizant of the maintenance overhead that a new library or platform brings. We solve the problems in front of us, rather than prematurely optimizing to address issues that may never materialize.\n\nWe do most of our collaboration and planning in Aha! itself, which we find especially rewarding. We also utilize GitHub, Slack, and GoToMeeting for video calls.\n\n# What you’ll be doing\n# \nWe maintain security controls and perform security reviews on a broad range of features across the full stack. Your work will include:\n\n* Security code reviews that go above and beyond what can be found through scanning tools (which we use too!)\n* Cloud and network security reviews of Amazon Web Services infrastructure that is implemented via infrastructure as code\n* Monitoring third-party dependency vulnerability reports and applying fixes and mitigations\n* Sharing security findings and new developments internally for ongoing education\n* Participating in security monitoring, incident response, and investigations\n\nIf this sounds appealing, we would love to hear from you. A real human reviews every application, so please use the form to help us learn more about you.\n\n#Location\nNorth America


See more jobs at Aha!

Doximity


Software Engineer Security

verified
North America

Software Engineer Security


Doximity

North America

security

 

devops

 

health care

 

hackerone

 

security

 

devops

 

health care

 

hackerone

 
This job post is closed and the position is probably filled. Please do not apply.
Doximity is transforming the healthcare industry. Our mission is to help doctors be more productive, informed, and connected. As a software engineer, you'll work within cross-functional delivery teams alongside other engineers, designers, and product managers in building software to help improve healthcare.  \n\nOur team brings a diverse set of technical and cultural backgrounds and we like to think pragmatically in choosing the tools most appropriate for the job at hand.\n\n**Here's How You Will Make an Impact**\n\nHelp maintain our private security bug bounty program hosted on [hackerone](https://www.hackerone.com/): this involves engaging security researchers, validating security finds, determining impact/risk, awarding bounties, and fixing or coordinating remediation efforts.\nHelp set good security posture; this includes finding bad security habits in applications and encapsulating good secure defaults into libraries/modules, creating training materials for application developers, etc.\nWork side-by-side with the rest of the infrastructure, application, and data teams to empower all of engineering to move quickly while meeting security requirements.\nDesign and implement secure and easy-to-use tooling and abstractions for other teams to leverage.\nActive involvement in the design, implementation, and maintenance of the development, staging, and production infrastructure.\nParticipate in an on-call rotation for the services owned by your team.\nHelp ensure the stability and uptime of services within the organization.\nCreate concise post-mortems in the event of an outage.\nWrite and maintain run-books for other engineers to leverage.\nEnsure proper security, monitoring, alerting, and reporting.\n\n**What we’re looking for**\n\nYou’re a software engineer with years of experience and a deep understanding of software engineering practices.\nYou either have experience with security or really want to dive in headfirst and learn.\nYou are not afraid of:\nReading, reviewing, and implementing our implementation of the oauth spec.\nGetting dirty with CORS, CSRF, XSS, etc\nYou’re proficient in:\nRuby, Python, or Golang. Not afraid to learn the rest.\nJavascript\nYou have experience working with Terraform and Chef (or similar tooling).\nYou are proficient with Linux/Unix, AWS, and Git.\nYou are self-motivated and able to manage yourself and your own queue.\nYou are a problem solver with a passion for simple, clean, and maintainable solutions.\nYou agree that concise and effective written and verbal communication is a must for a successful team.\nYou are able to maintain a minimum of 5 hours overlap with 9:30 to 5:30 PM Pacific time.\nYou can dedicate about two weeks per year for travel to company events.\n\n**Benefits & Perks**\n\nGenerous time off policy\nComprehensive benefits including medical, vision, dental, Life/ADD, 401k, flex spending accounts, commuter benefits, equipment budget, and continuous education budget\nPre-IPO stock incentives\n.. and much more! For a full list, see our career page\n\n**About Doximity**\n\nHere are some of the ways[ we bring value to doctors](https://drive.google.com/file/d/1qimYh0mG3i1nTJe6jDCDepJt2i4o8MEB/view)\nOur web applications are built primarily using Ruby, Rails, Javascript (Vue.js), and Golang\nOur data engineering stack run on Python, MySQL, Spark, and Airflow\nOur production application stack is hosted on AWS and we deploy to production on average 50 times per day\nWe have over 350 private repositories in Github containing our applications, forks of gems, our own internal gems, and [open-source projects](https://github.com/doximity)\nWe have worked as a distributed team for a long time; we're currently [about 65% distributed](https://blog.brunomiranda.com/building-a-distributed-engineering-team-85d281b9b1c)\nFind out more information on the [Doximity engineering blog](https://technology.doximity.com/)\nOur [company core values](https://work.doximity.com/)\nOur [recruiting process](https://technology.doximity.com/articles/engineering-recruitment-process-doximity)\nOur [product development cycle](https://technology.doximity.com/articles/mofo-driven-product-development)\nOur [on-boarding & mentorship process](https://technology.doximity.com/articles/software-engineering-on-boarding-at-doximity)\n\nWe’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $3.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunities for you to make an impact—join us!\n\n*Doximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.*\n\n \n\n \n\n#Location\nNorth America


See more jobs at Doximity

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

PrintWithMe, Inc.


Software Engineer


🇺🇸 US-only

Software Engineer


PrintWithMe, Inc.

🇺🇸 US-only

python

 

aws

 

rails

 

tdd

 

python

 

aws

 

rails

 

tdd

 
This job post is closed and the position is probably filled. Please do not apply.
Are you looking for a flexible work environment where you can take real ownership of a product? Do you approach software development from a test-driven and security-minded point of view? If so, we have an exciting career opportunity for you!\n\n# Responsibilities\n * Develop software using TDD and Agile methodologies.\n* Pair (virtually) with our Lead Engineer regularly to solve interesting problems.\n* Help architect the infrastructure that runs our software using Infrastructure as Code and DevOps best practices.\n* Scale systems to meet increasing demand.\n* Improve the availability and resilience of existing systems.\n* Collaborate with our diverse team to solve problems across all departments in our company.\n* Interact directly with CEO during product road-mapping. Have a real voice and seat at the table. \n\n# Requirements\n*** Minimum of 3 years full-time software engineering experience. Required.**\n* While this position is Remote (U.S.), you must reside in the United States and be authorized to work.\n* You must be passionate about building high-quality software with user security and privacy in mind.\n* You have a learning mentality, constantly reading about and testing out new technologies.\n* You have proficiency in multiple programming languages and you have a pragmatic approach about choosing the correct language for the job.\n* Python is our primary language and experience with it is a plus.\n* You have experience managing AWS services in production environments, including ECS, RDS, EC2, and S3.\n* You are fluent in English.\n* We demonstrate high integrity in everything you do.\n* You must be available for certain meetings and pairing sessions weekly, but other than that, **scheduling your time to code is generally flexible. We are a very trusting environment.** \n\n#Salary\n$90,000\n\n\n#Location\n🇺🇸 US-only


See more jobs at PrintWithMe, Inc.

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Aha!


Security Engineer Ruby on Rails


North America

Security Engineer Ruby on Rails


Aha!

North America

security

 

ruby on rails

 

infosec

 

ruby

 

security

 

ruby on rails

 

infosec

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
Are you a Security Engineer who is passionate about finding and fixing security vulnerabilities in a sophisticated SaaS platform? Do you want to work with cutting-edge visualization, collaboration, and social ideation technologies at the same time?\n\nAs a Senior Security Engineer at Aha!, you will have an excellent opportunity to join a self-funded and profitable company that is growing fast. Aha! was founded by a proven team of experts. More than 300,000 users worldwide trust our roadmap software to build products customers love.\n\n# Responsibilities\n **We are looking for someone who:**\n* Finds joy in breaking (and then fixing) software\n* Has experience with Ruby on Rails and Javascript based applications\n* Has experience with AWS\n* Has worked on compliance projects and security policy development\n* Has driven security initiatives or delivered security training\n* Wants to be great and work in a fast-moving, online environment where the end-user is key \n\n# Requirements\n**We are committed to being great, and we want someone who:**\n* Can work at a fast-paced company where the feedback cycle is measured in hours rather than weeks\n* Has a background of delivering superb work again and again\n* Is seeking a career-defining opportunity and a proven, results-oriented team that has sold multiple software companies\n* Is interested in collaborating with software engineers to grow their skills and career\n\n#Location\nNorth America


See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Aha!


Security Engineer


North America

Security Engineer


Aha!

North America

ruby on rails

 

application security

 

infosec

 

ruby

 

ruby on rails

 

application security

 

infosec

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
Are you a Security Engineer who is passionate about finding and fixing security vulnerabilities in a sophisticated SaaS platform? Do you want to work with cutting-edge visualization, collaboration, and social ideation technologies at the same time?\n\nAs a Senior Security Engineer at Aha!, you will have an excellent opportunity to join a self-funded and profitable company that is growing fast. Aha! was founded by a proven team of experts. More than 300,000 users worldwide trust our roadmap software to build products customers love.\n\n# Responsibilities\n * Can work at a fast-paced company where the feedback cycle is measured in hours rather than weeks\n* Has a background of delivering superb work again and again\n* Is seeking a career-defining opportunity and a proven, results-oriented team that has sold multiple software companies\n* Is interested in collaborating with software engineers to grow their skills and career \n\n# Requirements\n* Finds joy in breaking (and then fixing) software\n* Has experience with Ruby on Rails and Javascript based applications\n* Has experience with AWS\n* Has worked on compliance projects and security policy development\n* Has driven security initiatives or delivered security training\n* Wants to be great and work in a fast-moving, online environment where the end-user is key \n\n#Salary\n$135,000\n\n\n#Location\nNorth America


See more jobs at Aha!

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Marqeta


Infrastructure Security Engineer Oakland

Infrastructure Security Engineer Oakland


Marqeta


infosec

 

java

 

javascript

 

python

 

infosec

 

java

 

javascript

 

python

 
This job post is closed and the position is probably filled. Please do not apply.
Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh new Infrastructure Security Team with the goal of significantly improving industry standards in Secure Platform and Service Delivery in the Payments space.\n\nAs a member of Marqeta’s Infrastructure Security Team, you’re responsible for design, development and implementation of our core platform and network security controls. Your work protects our most critical environments, as well as meets or exceeds the various regulatory compliance standards required in the Payments Industry. This role interfaces directly with Marqeta’s Platform Engineering, SRE, and Network Engineering teams, and is vital to Marqeta’s Application Security Program.\n\nThe ideal candidate for this role has a strong desire to lead the organization in well considered Security Engineering methodologies, is seasoned in either AWS or GCP cloud-based services, has a strong passion for DevOps/SecDevOps/DevSecOps driven patterns, and an excellent ability to communicate across roles, teams and disciplines.\n\n# Responsibilities\n **Primary Responsibilities**\n* Build Self Service Tools for Infrastructure, Platform, and SRE Engineers\n* Maintain Security Controls in Platform and Infrastructure Services\n* Implement and Support End-to-End Transport Security and Proxy Layer Services\n* Lead Infrastructure and Platform Design Reviews\n* Implement and Maintain Security Patterns in Pre-Release and Post-Release Deployment\n* Triage, Respond to and Investigate Security Incidents affecting Platform and Infra Services\n* Implement and Maintain Platform and Infrastructure Threat Monitoring and Detection Tools\n* Manage and Deploy Services for Security Team\n* Mentor Marqeta App Sec, Infra, Platform and SRE Engineers\n* Support Quarterly PCI Efforts \n\n# Requirements\n**Requirements**\n* 3-5 yrs Demonstrable and Practical Experience in Systems and Infrastructure Engineering or Comparable Experience in a DevOps Role\n* You pride yourself in a holistic approach to your work\n* You have a sincere passion for Security Engineering as a discipline\n* You’re an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n* You have solid experience and consistency with remote work and engaging distributed teams\n* Demonstrated experience in some combination of the following disciplines: incident response, detection tooling, vulnerability management, security operations, cloud security, infrastructure security, network security, security tools development\n* Experience selecting and implementing tools for SIEM, IDS and vulnerability scanning\n* Experience with automating new and existing processes and tools\n* Experience with AWS, Java, Python, Ruby, and other modern open source languages and tools\n\n**Technical Skills**\n* Functional Development Experience and Proficiency in Python, Go or Ruby\n* Functional Experience with Ansible, Terraform and Packer\n* Experience with AWS Architecture and Service Deployment\n* Experience with Container Technology (Docker, ECS, Kubernetes/K8s)\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Strong Knowledge of TLS-based Service Architectures\n* Strong Experience with Linux Platforms (CentOS/Ubuntu/Debian/etc)\n* Experience with Secure Deployment Specification\n* Experience with Production Build Pipelines and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Strong Interest in Automation Practices\n \n\n**Bonus Qualifications**\n* Experience in Payments or Financial Services\n* Experience with Remote Work\n\n**Perks**\n\n* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more!\n 


See more jobs at Marqeta

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Marqeta


Application Security Engineer Oakland

Application Security Engineer Oakland


Marqeta


infosec

 

java

 

javascript

 

ruby

 

infosec

 

java

 

javascript

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space.\n\nAs a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqeta’s open payments platform. This role supports the safety and security of our customer’s payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.\n\nOur ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.\n\nYou'll work closely with Marqeta’s Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and you’ll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.\n\nThe ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). You’re knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers. \n\n# Responsibilities\n **Primary Responsibilities** \n* Build Self Service Tools for QE, Frontend and Backend Engineers\n* Assist with Definition, Implementation, and Maintenance of S-SDLC\n* Lead Application Security Assessments and Design Reviews\n* Execute Critical Validation/Verification Functions in Pre- and Post-Release\n* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline\n* Execute Greybox and Whitebox Application Security Assessments\n* Execute and Support HTTP/S Service-Layer Pen-Testing\n* Develop Security Training and Guidelines for Engineers\n* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases\n* Lead Software Vulnerability Management and Risk Mitigation Practices\n* Offer Guidance and Leadership in PCI Compliance\n \n\n# Requirements\n**Requirements**\n* Demonstrable and Practical Experience in an Development or Security Engineering Role\n* You have a passion for Security and Engineering as a discipline\n* You’re an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n\n**Technical Skills**\n* Functional Development Experience in Python, Go, JS, Ruby, or Java\n* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar)\n* Strong Knowledge of OWASP and Common Software Vulnerabilities\n* Solid Understanding of Secure Coding/Development Practices\n* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development\n* Strong Interest in Automation Practices\n* Familiarity and Interest in Cloud Services and SAAS Platforms  (AWS, GCP)\n\n**Communication Skills**\n* Ability to Communicate Technical Details and Concepts Clearly\n* Strong Capacity to Speak and Act with Candor and Empathy\n\n**Nice to Have**\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Solid Knowledge of OAuth and SAML\n* Strong Knowledge of HTTP/S Service Architectures\n* Strong Knowledge of Transport Security, specifically TLS and CAs \n\n**Perks**\n\n* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more!


See more jobs at Marqeta

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Marqeta


Application Security Engineer Oakland

Application Security Engineer Oakland


Marqeta


python

 

go

 

javascript

 

ruby

 

python

 

go

 

javascript

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space. We are based in Oakland, California but are open to remote engineers for this role!\n\nAs a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqeta’s open payments platform. This role supports the safety and security of our customer’s payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.\n\nOur ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.\n\nYou'll work closely with Marqeta’s Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and you’ll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.\n\nThe ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). You’re knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers.\n\n\n# Responsibilities\n **Primary Responsibilities**\n* Build Self Service Tools for QE, Frontend and Backend Engineers\n* Assist with Definition, Implementation, and Maintenance of S-SDLC\n* Lead Application Security Assessments and Design Reviews\n* Execute Critical Validation/Verification Functions in Pre- and Post-Release\n* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline\n* Execute Greybox and Whitebox Application Security Assessments\n* Execute and Support HTTP/S Service-Layer Pen-Testing\n* Develop Security Training and Guidelines for Engineers\n* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases\n* Lead Software Vulnerability Management and Risk Mitigation Practices\n* Offer Guidance and Leadership in PCI Complianc \n\n# Requirements\n**Requirements**\n* 3-5 yrs Demonstrable and Practical Experience in Application Security Engineering or Comparable Experience in a Security Engineering Role\n* You have a passion for Security Engineering as a discipline\n* You’re an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n* Functional Development Experience and Proficiency in Python, Go, JS, Ruby, or Java\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar)\n* Solid Knowledge of OAuth and SAML\n* Strong Knowledge of HTTP/S Service Architectures\n* Strong Knowledge of Transport Security, specifically TLS and CAs\n* Strong Knowledge of OWASP and Common Software Vulnerabilities\n* Solid Understanding of Secure Coding/Development Practices\n* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Familiarity with Container Technology (Ex. Docker, RKT)\n* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development\n* Strong Interest in Automation Practices\n* Familiarity and Interest in Cloud Services and SAAS Platforms  (AWS, GCP)\n* Familiarity with Terraform and Ansible Automation Stac\n\n**Perks**\n* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more!


See more jobs at Marqeta

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Security Roots Ltd


Full Stack Rails Developer 100% Team IT Security

🎈
🌏 Worldwide

Full Stack Rails Developer 100% Team IT Security


Security Roots Ltd

🌏 Worldwide 🎈

rails

 

full-stack

 

ruby

 

infosec

 

rails

 

full-stack

 

ruby

 

infosec

 
This job post is closed and the position is probably filled. Please do not apply.
# Our Story\n\nIn short, Security Roots helps make the Internet safer. We work with IT security professionals and ethical hackers to help them find security holes and vulnerabilities in systems before the bad guys do.\n\n\n\nThere is a lot of creativity and innovation involved in findings those holes. Unfortunately, it’s not all fun and games, in order for their “findings” to be useful, they need to document their results, track progress, notify stakeholders, review mitigations implemented, verify, re-test, etc. There is a lot of overhead involved in the process.\n\n\n\nSurprising no one, IT Security experts like the fun and games but don’t like the overhead/ back-office stuff. That’s where we come in, we exist to make the life of IT Security professionals easier, better, more enjoyable by making all of these overhead tasks easier and more painless.\n\n\n\nWe've been in business for 5 years, completely self-funded and profitable. Today, we serve over 440 Infosecurity teams across 37 different countries.\n\n\n\n\n\n# What’s the opportunity?\n\nWe’re looking to hire our 6th full-time employee, a well-rounded Rails developer.\n\nIn this role, you will learn a ton and be part of a small, global, and user-centered company. You’ll even report directly to Daniel Martin, the founder.\n\n\n\nYou’ll have the opportunity to make a difference to the lives of 100s of hackers. Plus, as a small team, you will will have a lot of choice about what to work on, and there are still a lot of untapped opportunities for you to grow as the company does.\n\n\n\n![Daniel at the BlackHat conference](https://lh5.googleusercontent.com/-F7nk_6rb8B2qCVyuyU1kASsJyz83C4CmQsgl4MzaCZcY6qyPBkK9i7Qgp_W-UHklRlO0-kOUP269JImrK5zoPvRS1dh6zoAp-wWaLgdJTW3VfTH0DGMLVqT04q1xi6kn6SWPybt)\n\n_That’s our founder, Daniel, presenting on the conference floor._\n\n\n\n\n\n# What's in it for you?\n\n- **Work anywhere** – We're 100% remote.\n\n- **Flexible work hours** - Provided you have reasonable overlap with the team (roughly within EU/US Eastern business hours).\n\n- **Great salary** – You will be making more than others in your region.\n\n- **Flexible vacation** – Take time off when you need it, we trust you (no less than 4 weeks each year).\n\n- **No external pressures** - Our users are king, we do what's best for them. We're self-funded, and don't have any investors, so we can make the right decisions for our customers without worrying about artificial deadlines or financial targets.\n\n- **Autonomy** – You will be given a lot of freedom to do what you think is right, without needing to explain every decision.\n\n- **Meaningful work** – You will take initiative and ownership to see things through to completion. We won't micro-manage you. And your work will be measured by your results.\n\n- You will have great hardware and tools to work with.\n\n- Company retreats.\n\n# What we offer and what we are looking for\n\nYou'll be a trusted and key member of our team, and this is (some of) what you'll end up doing on a day-to-day basis:\n\n- Improve the experience for our users, help them get the results they need.\n\n- Detect opportunities to enhance and improve our stack.\n\n- Extend the coverage of our API layer.\n\n- Improve our existing products and internal systems. We want to learn from you as you learn from us.\n\n- Prioritize and decide what features we should tackle next.\n\n# Our stack\n\n- Rails 5\n\n- JS, Stimulus, CoffeeScript and Sass\n\n- Bootstrap and jQuery\n\n- Postgres and MySQL\n\n- Sinatra, Resque, Middlemanapp, Chef, Vagrant, Nginx, Unicorn,...\n\nWe're looking for a solid Rubyist with «adequate» experience who is comfortable in a 100% remote team and is self-driven.\n\nThis is a full-time position for the right candidate and it has an immediate start date. Work 100% remotely (although you need to have a home base - i.e. no perma-travellers this time, sorry!).\n\n# This position might be for you if:\n\n- You've held a remote position before, or you've held a similar position of responsibility in a traditional organisation but now are looking to **improve your work-life balance**.\n\n- You are a well-rounded individual, work is not everything in life, you may have a family and social life. You work hard when it's work time and are **able to switch off** when it isn't.\n\n- You're comfortable communicating with others verbally and in writing. **Our team is spread across the world**, and so are our clients.\n\n- You are organised, like to be on top of your responsibilities and don't let things slip through the cracks. You will be sure to include the name of your favourite tv series as part of your application.\n\n- You have a knack for design / UX will be a plus. Background in Information Security wouldn't hurt either.\n\n- **You believe in giving back to the community**. We started with an open-source project and to this day we remain firm believers of open-source and giving back. Part of what you will be creating with the team will be released as open-source. \n\n#Location\n🌏 Worldwide


See more jobs at Security Roots Ltd

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Security Roots Ltd


Full Stack Rails Developer

🎈
🇪🇺 EU-only

Full Stack Rails Developer


Security Roots Ltd

🇪🇺 EU-only 🎈

rails

 

security

 

dev

 

full stack

 

rails

 

security

 

dev

 

full stack

 
This job post is closed and the position is probably filled. Please do not apply.
# Our Story\n\nIn short, Security Roots helps make the Internet safer. We work with IT security professionals and ethical hackers to help them find security holes and vulnerabilities in systems before the bad guys do.\n\n\n\nThere is a lot of creativity and innovation involved in findings those holes. Unfortunately, it’s not all fun and games, in order for their “findings” to be useful, they need to document their results, track progress, notify stakeholders, review mitigations implemented, verify, re-test, etc. There is a lot of overhead involved in the process.\n\n\n\nSurprising no one, IT Security experts like the fun and games but don’t like the overhead/ back-office stuff. That’s where we come in, we exist to make the life of IT Security professionals easier, better, more enjoyable by making all of these overhead tasks easier and more painless.\n\n\n\nWe've been in business for 5 years, completely self-funded and profitable. Today, we serve over 440 Infosecurity teams across 37 different countries.\n\n\n\n\n\n# What’s the opportunity?\n\nWe’re looking to hire our 6th full-time employee, a well-rounded Rails developer.\n\nIn this role, you will learn a ton and be part of a small, global, and user-centered company. You’ll even report directly to Daniel Martin, the founder.\n\n\n\nYou’ll have the opportunity to make a difference to the lives of 100s of hackers. Plus, as a small team, you will will have a lot of choice about what to work on, and there are still a lot of untapped opportunities for you to grow as the company does.\n\n\n\n![Daniel at the BlackHat conference](https://lh5.googleusercontent.com/-F7nk_6rb8B2qCVyuyU1kASsJyz83C4CmQsgl4MzaCZcY6qyPBkK9i7Qgp_W-UHklRlO0-kOUP269JImrK5zoPvRS1dh6zoAp-wWaLgdJTW3VfTH0DGMLVqT04q1xi6kn6SWPybt)\n\n_That’s our founder, Daniel, presenting on the conference floor._\n\n\n\n\n\n# What's in it for you?\n\n- **Work anywhere** – We're 100% remote.\n\n- **Flexible work hours** - Provided you have reasonable overlap with the team (roughly within EU/US Eastern business hours).\n\n- **Great salary** – You will be making more than others in your region.\n\n- **Flexible vacation** – Take time off when you need it, we trust you (no less than 4 weeks each year).\n\n- **No external pressures** - Our users are king, we do what's best for them. We're self-funded, and don't have any investors, so we can make the right decisions for our customers without worrying about artificial deadlines or financial targets.\n\n- **Autonomy** – You will be given a lot of freedom to do what you think is right, without needing to explain every decision.\n\n- **Meaningful work** – You will take initiative and ownership to see things through to completion. We won't micro-manage you. And your work will be measured by your results.\n\n- You will have great hardware and tools to work with.\n\n- Company retreats.\n\n# What we offer and what we are looking for\n\nYou'll be a trusted and key member of our team, and this is (some of) what you'll end up doing on a day-to-day basis:\n\n- Improve the experience for our users, help them get the results they need.\n\n- Detect opportunities to enhance and improve our stack.\n\n- Extend the coverage of our API layer.\n\n- Improve our existing products and internal systems. We want to learn from you as you learn from us.\n\n- Prioritize and decide what features we should tackle next.\n\n# Our stack\n\n- Rails 5\n\n- JS, Stimulus, CoffeeScript and Sass\n\n- Bootstrap and jQuery\n\n- Postgres and MySQL\n\n- Sinatra, Resque, Middlemanapp, Chef, Vagrant, Nginx, Unicorn,...\n\nWe're looking for a solid Rubyist with «adequate» experience who is comfortable in a 100% remote team and is self-driven.\n\nThis is a full-time position for the right candidate and it has an immediate start date. Work 100% remotely (although you need to have a home base - i.e. no perma-travellers this time, sorry!).\n\n# This position might be for you if:\n\n- You've held a remote position before, or you've held a similar position of responsibility in a traditional organisation but now are looking to **improve your work-life balance**.\n\n- You are a well-rounded individual, work is not everything in life, you may have a family and social life. You work hard when it's work time and are **able to switch off** when it isn't.\n\n- You're comfortable communicating with others verbally and in writing. **Our team is spread across the world**, and so are our clients.\n\n- You are organised, like to be on top of your responsibilities and don't let things slip through the cracks. You will be sure to include the name of your favourite tv series as part of your application.\n\n- You have a knack for design / UX will be a plus. Background in Information Security wouldn't hurt either.\n\n- **You believe in giving back to the community**. We started with an open-source project and to this day we remain firm believers of open-source and giving back. Part of what you will be creating with the team will be released as open-source. \n\n#Location\n🇪🇺 EU-only


See more jobs at Security Roots Ltd

Visit Security Roots Ltd's website

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
This job post is closed and the position is probably filled. Please do not apply.
Doximity is transforming the healthcare industry. Our mission is to help doctors save time so they can provide better care for patients.\n\nWe value diversity — in backgrounds and in experiences. Healthcare is a universal concern, and we need people from all backgrounds to help build the future of healthcare.\n\nThis position is for an experienced DevOps engineer to own Security efforts for our entire application stack and join our 8 person DevOps team. We’re looking for someone with a strong track record in building infrastructure, maintaining high level of uptime and optimal security. You will be supporting and building products alongside our 50+ person engineering team used by hundreds of thousands of people.\n\nHow you’ll make an impact:\n\n-Develop, schedule, and execute automated security audits on infrastructure using industry standard security frameworks and tooling.\n-Write penetration tests for applications and services.\n-Periodically audit and rotate access credentials.\n-Document current and future security procedures and policies in the wiki.\n-Lead security/policy related audits such as SOC2 Type II (annual renewal).\n-Work with sales and client services teams to answer infrastructure related security questions and concerns that clients inquire about.\n-Remediate and write post-mortem reports on security-related issues.\n-Active involvement in design, implementation, and maintenance of the development, staging, and production infrastructure security.\n-Work on automating tasks using Jenkins.\n-Troubleshoot system issues (such as high-load, memory, CPU usage, etc.) and come up with temporary/long-term solutions based on the root cause.\n-Work with developers to deploy applications ready for production (Terraform, Consul, Vault, Upstart, NGINX, Sensu). We believe in infrastructure as code and follow it.\n-Write Chef cookbooks (using "Berkshelf Way") to automate configuration management.\n-Participate in a 1-week on 7-week off, 24/7 on-call rotation.\n-Hands-on maintenance on our Ruby on Rails and Go (Golang) applications.\n-Troubleshoot issues across the whole stack: hardware, software, and network.\n\nWhat we’re looking for:\n\n-Minimum of 5 years of Linux/UNIX systems engineer & administrator experience.\n-Minimum of 5 years of relevant web application security experience\n-Extensive AWS experience\n-Experience writing application security penetration tests with an open source framework.\n-Automation experience with configuration management tools such as Chef, Ansible, or Puppet.\n-Intermediate to advanced experience administering and securing an RDB (MySQL or Postgres a plus)\n-Proficient in bash shell scripting (sed + awk) and one of Ruby or Python.\n-Experience automating application deployments with Capistrano or Jenkins.\n-Ability to work in a proactive manner and manage your own queue.\n-Experience with Hashicorp tools, Neo4j, Elasticsearch, Kibana, Grafana is a big plus.\n\nAbout Doximity\n\nWe’re thrilled to be named the Fastest Growing Company in the Bay Area, and one of Fast Company’s Most Innovative Companies. Joining Doximity means being part of an incredibly talented and humble team. We work on amazing products that over 70% of US doctors (and over one million healthcare professionals) use to make their busy lives a little easier. We’re driven by the goal of improving inefficiencies in our $2.5 trillion U.S. healthcare system and love creating technology that has a real, meaningful impact on people’s lives. To learn more about our team, culture, and users, check out our careers page, company blog, and engineering blog. We’re growing fast, and there’s plenty of opportunity for you to make an impact—join us!\n\nDoximity is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law.


See more jobs at Doximity

Visit Doximity's website

# How do you apply?\n\n This job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.

Doximity


Senior Security Engineer Devops

verified

Senior Security Engineer Devops


Doximity


devops

 

infosec

 

elasticsearch

 

python

 

devops

 

infosec

 

elasticsearch

 

python

 
This job post is closed and the position is probably filled. Please do not apply.
Why work at Doximity?\n\nDoximity is the leading social network for healthcare professionals with over 70% of U.S. doctors as members. We have strong revenues, real market traction, and we're putting a dent in the inefficiencies of our $2.5 trillion U.S. healthcare system. After the iPhone, Doximity is the fastest adopted product by doctors of all time. Our founder, Jeff Tangney, is the founder & former President and COO of Epocrates (IPO in 2010), and Nate Gross is the founder of digital health accelerator RockHealth. Our investors include top venture capital firms who've invested in Box, Salesforce, Skype, SpaceX, Tesla Motors, Twitter, Tumblr, Mulesoft, and Yammer. Our beautiful offices are located in SoMa San Francisco.\n\nThis position is for an experienced DevOps engineer, to own Security efforts for our entire application stack, to join our 8 person DevOps team. We’re looking for someone with a strong track record in building infrastructure, maintaining high level of uptime and optimal security. You will be supporting and building products alongside our 50+ person engineering team used by hundreds of thousands of people.\n\nSkills & Requirements\n\n-Minimum of 5 years of Linux/UNIX systems engineer & administrator experience.\n-Minimum of 5 years of relevant web application security experience\n-Extensive AWS experience\n-Experience writing application security penetration tests with an open source framework.\n-Automation experience with configuration management tools such as Chef, Ansible, or Puppet.\n-Intermediate to advanced experience administering and securing an RDB (MySQL or Postgres a plus)\n-Proficient in bash shell scripting (sed + awk) and one of Ruby or Python.\n-Experience automating application deployments with Capistrano or Jenkins.\n-Ability to work in a proactive manner and manage your own queue.\n-Experience with Hashicorp tools, Neo4j, Elasticsearch, Kibana, Grafana is a big plus.\n\nTypical Tasks\n\n-Develop, schedule, and execute automated security audits on infrastructure using industry standard security frameworks and tooling.\n-Write penetration tests for applications and services.\n-Periodically audit and rotate access credentials.\n-Document current and future security procedures and policies in the wiki.\n-Lead security/policy related audits such as SOC2 Type II (annual renewal).\n-Work with sales and client services teams to answer infrastructure related security questions and concerns that clients inquire about.\n-Remediate and write post-mortem reports on security-related issues.\n-Active involvement in design, implementation, and maintenance of the development, staging, and production infrastructure security.\n-Work on automating tasks using Jenkins.\n-Troubleshoot system issues (such as high-load, memory, CPU usage, etc.) and come up with temporary/long-term solutions based on the root cause.\n-Work with developers to deploy applications ready for production (Terraform, Consul, Vault, Upstart, NGINX, Sensu). We believe in infrastructure as code and follow it.\n-Write Chef cookbooks (using "Berkshelf Way") to automate configuration management.\n-Participate in a 1-week on 7-week off, 24/7 on-call rotation.\n-Hands-on maintenance on our Ruby on Rails and Go (Golang) applications.\n-Troubleshoot issues across the whole stack: hardware, software, and network.\n\nA few facts about us\n\n-We deploy our applications to production on average 25 times per day.\n-We have over 250 private repositories in Github, ranging from forks of gems, our own internal gems as well as auxiliary applications.\n-Our production stack is hosted on AWS and QA clusters on DigitalOcean.\n-Hundreds of thousands of healthcare professionals will utilize the products you build.\n-We host unstructured "hack days" periodically, which is time reserved for you to scratch a code itch.\n-A couple times a year we run a co-op where you can pick a few people you'd like to work with and drive a specific company goal.\n-Every new engineer ships code to production on day one. Our mentorship program ensures you're immersed in the team's culture early on.\n\nAbout the Technical Stack\n\nDoximity's web applications are built primarily using Ruby, Rails, Javascript, and a bit of Go. Our applications are used by hundreds of thousands of Physicians and Healthcare professionals, and we also have a suite of mobile applications for iOS and Android. We like to think pragmatically in choosing the tools most appropriate for the job at hand. More details about our engineering stack on the Doximity engineering blog.


See more jobs at Doximity

Visit Doximity's website

# How do you apply?\n\n This job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.

Contrast Security


Senior Ruby Developer

Senior Ruby Developer


Contrast Security


dev

 

ruby

 

senior

 

infosec

 

dev

 

ruby

 

senior

 

infosec

 
This job post is closed and the position is probably filled. Please do not apply.
\nAbout the Position\n\nAt Contrast, our goal is the make the Internet safer day by day. We work on the exciting and challenging problem of Security Instrumentation within Ruby applications. If you are familiar with applications like New Relic, ScoutApp, AppSignal, Elastic or Skylight, then you likely understand Instrumentation from a performance standpoint. If you understand tools like Brakeman or Hakiri, then you understand static code analysis for Ruby Security. Contrast is similar to both, but we solve the most complicated problem of runtime data flow analysis within your application to make it secure in the most accurate fashion possible.\n\nWe are always interested in meeting talented and creative technologists who share this goal. We’ve built some amazing technology thus far and are shaking up the way the world looks at application security. We know that our products can get better with new voices and ideas. Contrast is looking for a talented Ruby application developer to join our team, engineering a world-class instrumentation agent for analyzing the security of Ruby web applications. An ideal candidate is incredibly proficient in Ruby. He or she likely has professional Ruby, Rails and Gems experience, including some experience contributing to open source frameworks and/or libraries, this could be a great opportunity for you to deepen your understanding of Ruby’s unique characteristics.\n\nResponsibilities\n\n\n* Contribute to the development of our instrumentation agent written in Ruby, C and Protobuf.\n\n* Build many variations of simple to complex web applications in Ruby using Rails, Rack, Sinatra and/or Padrino for our instrumentation agent to analyze to detect security vulnerabilities at run-time.\n\n* Perform forensic investigations when the agent negatively impacts the performance of functionality of instrumented web applications.\n\n\n\n\nAbout You\n\n\n* Experience with or a passion to learn Ruby Instrumentation\n\n* A possible one day desire to become a Rails contributor\n\n* You must love to code and have a strong passion for making software more secure.\n\n* You’re a true scientist and think about algorithms and regular expressions while you sleep.\n\n* You’re a Ruby expert with a strong understanding of Rails and Linux (Ubuntu).\n\n* Experience writing Ruby using Rails, Rack, Sinatra and/or Padrino.\n\n* Experience and/or increasing interest working with Protobuf\n\n* Experience with popular Ruby ORM frameworks like Active Record, Sequel, Mongoid, Lotus::Model and/or DataMapper.\n\n* Experience building Ruby packaging tools such as bundler, RVM and Ruby Gems.\n\n* You approach problems from a product perspective, thinking through how the user will interact with what you're building.\n\n* You have strong communication skills. You ask questions, let others know when you need help, and tell others what you need.\n\n* You're a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges.\n\n\n\n\nWhat We Offer\n\n\n* Competitive compensation\n\n* Medical, dental, and vision benefits\n\n* Flexible paid time off\n\n* Daily in-office lunches\n\n* 401K\n\n* Professional Development Budget\n\n\n


See more jobs at Contrast Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Retail Zipline


Security Engineer For Rails Enterprise SaaS

Security Engineer For Rails Enterprise SaaS


Retail Zipline


infosec

 

saas

 

ruby

 

engineer

 

infosec

 

saas

 

ruby

 

engineer

 
This job post is closed and the position is probably filled. Please do not apply.
\nRetailers use archaic, old systems that don't work (think fax machines and voicemails). We're replacing the core operational processes with a modern platform that our customers love. Help us transform a $4.4 trillion industry and improve the way millions of people work. Major retailers like Gap, Nike, LEGO, and Old Navy are already using Zipline every day, but there is so much more to do!\n\nWe are looking for our first dedicated Cloud Security Engineer to join our team as the surface area of our product and infrastructure continue to scale and keep up with rapid customer growth.\n\n“I think I just shed a tear. This is great!” – One of our Fortune 100 customers\n\nHere are some projects we're excited for you to work on: \n- Security strategies such as static analysis, alerting, logging, and monitoring \n- Interface with the rest of engineering and product teams by building common libraries and processes for all of engineering to leverage \n- Scoping and managing third party assessment and compliance vendors \n- Security-oriented feature development \n- Collaboration with infrastructure team on security-oriented infrastructure topics \n- Evangelize security best practices for product and engineering teams\n\nWhat we look for: \n- You have significant relevant production experience with large scale web applications \n- You have great written and verbal communication skills. \n- You prefer taking projects from inception to completion, and are outcome oriented. \n- You have 3+ years experience in web application security \n- You have a strong understanding of security architecture, risk analysis, network security, identity management, and security monitoring. \n- You proactive with communication and have no problem managing your time as a remote employee. \n- You are proud of your craft, and enjoy and value clean code that scales to keep large teams productive.\n\nBonus points: \n- CISSP certified \n- Scaled security for another cloud startup \n- Experience with retailers


See more jobs at Retail Zipline

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Crossover


Network Security Engineer With Ruby

Network Security Engineer With Ruby


Crossover


infosec

 

ruby

 

engineer

 

ruby

 

infosec

 

ruby

 

engineer

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
\nAre you excited about technology and love building cool stuff? Are you at the top of your game and can beat Mark Zuckerberg in a coding challenge? Do you want to work with a brilliant team on an award winning product and learn new skills? Are a master of pure low level Ruby, Network, protocols and sockets?\n If so - this could be the job for you! \n \nJob Description: \n \nYou will be responsible for building Ruby applications in pure low-level Ruby logic code (without the rails framework) including anything from complex groups of back-end to command line utilities, TCP/IP based libraries and data processing scripts. \nThis job in nature is not the common RoR web development position, but more of a Network infrastructure engineer in its nature, building a network app. \nYour primary responsibility will be to design and develop these applications, and to coordinate with the rest of the team working on different layers of the infrastructure. \nThus, a commitment to collaborative problem solving, sophisticated design, and building quality products is essential. \nThis is an excellent opportunity to be part of an exciting company, in a dynamic and fast growing environment. \n \nCompany Description: \n \nQualicode is a software development firm that helps some of the most technologically advanced startup companies in the world with all their development needs. Working with us means youll be a part of a brilliant team with globally recognized award winning products. It also means youll be working with the most advanced technologies/challenges, and learn new skills that will serve you well in the future. Youll have real pride and satisfaction with your work. \nSome of our clients you might work with got 30+ Million users, or got enterprise level products that serves the biggest companies in the world, including governments. \n \n \n \nResponsibilities: \n * \nDesign, build, and maintain efficient, reusable, and reliable pure Ruby logic low-level code (without the rails framework). \n * \nEnsure the best possible performance, quality, and responsiveness of the applications. \n * \nIdentify bottlenecks and bugs, and devise solutions for these problems. \n * \nHelp maintain code quality, organization, and automatization. \n \n \n40 hrs/week \nCompensation: $25/hour \nLocation: Global (remote) \n \nWere one of the few legitimate companies offering high-paying jobs that are 100% remote, work from home. You never have to fight traffic to the office again and you have the freedom to choose when and where you put in your 40 hours to be most effective each week. \nTo qualify, please provide a resume/CV demonstrating the required experience and skills. From there, to help us find the top 1% of talent, there will be a series of interviews and online skills examinations. We realize these are challenging and can require a decent amount of time - so we thank you in advance for your efforts. \n Are you up for the challenge?


See more jobs at Crossover

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Stratum Security


Rails Developer

Rails Developer


Stratum Security


ruby

 

dev

 

infosec

 

digital nomad

 

ruby

 

dev

 

infosec

 

ruby

 
This job post is closed and the position is probably filled. Please do not apply.
\nHi. We’re looking for an awesome Rails Developer to join our growing team. If you’ve ever wanted to work for a interesting security startup with great people this is your chance. We’re a little different than your average startup so we put together this FAQ.\n\nQ: Ok who are you guys?\n\nA: Stratum is comprised of some really smart security hackers who were tired of working for large companies. There are people here from MITRE, HP, Fortify, RSA, Verizon Business, Cybertrust, and others. We wanted to do the small company thing and it’s worked well for us.  This is our second new product launch.  Our first was ThreatSim, which was very successful and taught us many lessons.\n\nQ: What would I be working on?\n\nA: You’d be working on our data exfiltration testing platform, XFIL, which simulates data exfiltration techniques often used by hackers and helps customers identify areas for improvement in their egress controls.  Let me translate that for non-security people --- remember the Target hack?  They lost 70-90M credit card numbers -- hackers were able to get on Target’s network and transmit the data off for several months without getting noticed.  The part where they transmit the data is referred to as “exfiltration”.  Our service enables organizations’ to test their ability to identify a data breach in motion.  As you can imagine it’s a capability every organization needs these days.\n\nEssentially we get to think like bad guys and help our customers improve their security. It’s an interesting space to say the least. If you ever wanted to learn more about security and cutting-edge attacks, this is the place. We simulate evil AND give our customers data that they can use to protect their organization. You will spend a lot of time thinking “if I was a bad guy I’d…” then have to pivot and think “if I was a security engineer I’d…”\n\nQ: Where is this position located?\n\nA:  Ideally we would love this position to be based out of our office in Herndon, VA.  This is a key role contributing to a new product offering.  The opportunity to interact with our team will be valuable.  However, we are still open to non-local candidates.  We’ve had great experience with remote developers over the years.  While not required -- please let us know if you are open to relocation at some point.\n\nQ: What will my day to day be like as a developer?\n\nA: This depends on whether you are based out of our office or remote.  In either scenario, you work on new features, enhancements, and issues to ensure that XFIL continues to be awesome. You keep in touch with the team using Slack, Skype, Join.me, Google Hangout, and even an ol’ IP phone. Using your company provided Macbook you write code, commit to Github, and listen to your friends complain about traffic on Facebook. From time to time you may respond to a customer support ticket.  \n\nWe do not require employees to be at their desk 9-5.  We expect employees to be professional and get their job done -- and to be available when the job requires it.  XFIL is a new project, so expect a great deal of collaboration.  If you work better at night, then communicate when you’ll be available, and figure out when people need you.  In the end - it’s all about results. \n\nQ: Who will I be working with?\n\nA: Other developers, devops, sales, and maybe even customers. We’re a 20 person company so needless to say you’ll know everyone on a first name basis.\n\nQ: What hours do you work?\n\nA: We generally work “normal” office hours but are flexible. Most of us are on the east coast (DC area) but as long as you are in the lower 48 we’re good. We’re a startup, so sometimes there are long hours. But we all have families so we aim for a good work-life balance.\n\nQ: What technology do you use?\n\nA: XFIL is built entirely within Amazon Web Services. Linux, load balancers, auto-scaling, sidekiq, redis, ansible, git, Splunk, HIDS, two-factor auth, disk encryption, and a lot of cool security stuff that you probably aren’t used to seeing in a startup.\n\nQ: What skills and qualities are you looking for in a candidate?\n\nA: Here’s a bullet list:\n\n– Ruby on Rails 3.0+\n\n– Relational and non-relational databases: MySQL, Redis\n\n– Background job processors (e.g. Sidekiq)\n\n– Javascript frameworks (e.g. jQuery, pure JS)\n\n– Frontend frameworks (e.g. Bootstrap)\n\n– Client-side and server side MVC\n\n– Comfortable with git for version control\n\n– Continuous integration\n\n– MS Office (hah right, could you imagine?)\n\nThe ideal candidate will be comfortable working remote and managing themselves.  We’re not looking for regular employees -- only apply if you have a need & desire to be involved, voice opinions, build the team/company, etc… this is start-up mode and not a 9-5 job. You will be an integral part of the team with a huge impact on the future of our product. We’re passionate about what we do and you should be too.\n\nQ: How often do we get together in person?\n\nA: For people local to DC we try to get together for lunch every few weeks. For those that are remote we have a few events every year (company picnic, go-kart racing, paintball, holiday party, etc.) Some of the folks here brew beer so I suspect that they hang out more often.\n\nQ: What benefits do you offer?\n\nA: The salary is competitive and depends on your experience. We offer the following:\n\n– Medical, dental, and vision insurance\n\n– SIMPLE IRA with company match\n\n– PTO - We use the Netflix model and do not track PTO.  Use what you need and be responsible are the guidelines.  For those that need numbers -- we tell people to work under the notion that you get 3 weeks PTO for new employees, 4 weeks for employees with us longer than a year.\n\n– 8 federal holidays\n\n– Choose your own laptop (hint: we like Apple products)\n\nApply for this position\n\nIf you are interested in helping evolve information security, tell us about yourself at [email protected] Send us your LinkedIn profile, Github repo, or anything else you feel would help us get to know you.


See more jobs at Stratum Security

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

VOSTROM


Full Stack Developer

Full Stack Developer


VOSTROM


devops

 

javascript

 

infosec

 

perl

 

devops

 

javascript

 

infosec

 

perl

 
This job post is closed and the position is probably filled. Please do not apply.
\nFull Stack Developer - Emphasis on Angular.js / Node.js / MongoDB / Redis\nThe Opportunity:\nWe're looking for an experienced full stack developer based in either the Phoenix, AZ or the Washington, DC metro area, however remote teleworkers will be considered for the position also if they have excellent communications skills and are willing to travel to either of the above locations quarterly.\nThe Day to Day:\n* Develop web apps and APIs people use every day\n* Find ways to make apps fun and natural, so users intuitively know how to work the app\n* Build apps and back-end frameworks that are maintainable, flexible and scaleable (think TB)\n* Anticipate tomorrow's problems by understanding of what users are trying to accomplish\n\n\nRequirements:\n* Substantial experience with Javascript, Angular.js and Node.js\n* Comfort with asynchronous programming methodology\n* Experience with web tech including REST, HTML 5 and CSS\n* Experience with MongoDB, Redis, Cassandra, or other BIG databases\n* Familiarity with jQuery\n* US Citizenship or authorization to work in the US\n\n\nBonus Points:\n* DevOps experience with Linux or FreeBSD\n* Experience with Linux Containers and Docker\n* Familiarity with data visualization tools like D3.js\n* Experience working with XML or JSON data\n* Experience with sigmajs or graphviz\n* Experience with Python, Ruby, Perl and/or shell scripting\n* Experience with the Go programming language\n* Mac OS X familiarity\n* BS or MS in a technology or scientific field of study\n* High energy level and pleasant, positive attitude!\n* History of participation in organized sports (high school or college athletic teams)\n* Evidence of working well within a diverse team\n\n\nCompensation:\n* Salary commensurate with experience, generally higher than competitive industries\n* Comprehensive benefits package\n* Opportunities for advancement and a clear career path\n\n\nAbout Us:\nWe conduct advanced technical research and develop innovative software and systems that help meet network security and reliability challenges for organizations world-wide. You can read more at our web site.\nCareer Opportunities:\nWe have many other openings available. For a complete listing, visit jobs.vostrom.com


See more jobs at VOSTROM

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Favly


VP Of Technology

verified

VP Of Technology


Favly


qa

 

javascript

 

infosec

 

c sharp

 

qa

 

javascript

 

infosec

 

c sharp

 
This job post is closed and the position is probably filled. Please do not apply.
\nFavly is a mobile application that connects people with trusted businesses through the power of personal referrals.\n\n\nWe believe in strengthening communities by promoting good, local business. Favly was born out of the conviction that our favorite, most trusted way of doing business is by sharing personal referrals.\n\n\n\nVice President of Technology\n\nReporting to the VP/General Manager, your role is to ensure the successful execution of the company’s business mission through the development and deployment of Favly’s mobile app and web presence. You are instrumental in helping to scale a very dynamic and growing organization. You have deep technology knowledge, specifically as it relates to mobile development, and are able to evaluate and identify appropriate technology platforms for the delivery of our product. You will build and manage a top caliber development and quality assurance team, and oversee development, QA and project management. You are able to work in a fast paced environment overseeing development and deployment, while keeping releases on time. Serving on the Executive Team, you co-own company strategy and leadership, and have analytical mind and solve problems quickly.\n\n\nEssential Duties & Responsibilities\n\n\n* Create and articulate the company’s product vision and product road map\n\n* Recruit, develop and retain top engineering talent\n\n* Lead the engineering process, determining when to use native, when to use web, or when to use a combination\n\n* Lead the delivery of high-quality, on-time mobile product improvements and features ensuring high customer satisfaction\n\n* Lead execution of technology partnerships, relationships, etc.\n\n* Identify competitive services and opportunities for innovation\n\n* Identify technology trends and evolving social behavior that influence the business\n\n* Anticipate and address major technology changes\n\n* Work with product team to identify requirements and features feasibility\n\n* Develop proprietary tools based on business needs\n\n* Identify and prioritize development initiatives\n\n* Set and meet aggressive timetables\n\n* Direct development and execution of enterprise-wide information security plan\n\n* Direct and execute an enterprise-wide disaster recovery and business continuity plan\n\n* Build and manage internal and external teams\n\n* Oversee infrastructure development and deployment; build an infrastructure that can scale to millions of registered and active users\n\n* Develop and own technology budget\n\n* Define organization’s software development methodology\n\n* Establish a specification conformance and testing regimen\n\n* Establish and supervise QA process, including integration and system testing\n\n* Select, deploy and monitor performance profiling tools and procedures\n\n* Evaluate and select web application hosting providers\n\n* Establish an application deployment process\n\n* Monitor app performance and review any app failures in staging or production\n\n* Analyze server workload, including traffic and utilization trends\n\n* Establish and monitor an analytics regime that measures performance to goals\n\n* Review and approve proposed development releases\n\n* Evaluate search engine optimization\n\n* Ensure the ongoing maintenance and updating of information systems and infrastructure, including hardware, software, and ASP applications\n\n\n\n\n\nDesired Skills & Experience\n\n\n* Experience developing cross-platform mobile applications\n\n* Expertise in agile development\n\n* Expertise in HTML5/CSS/JavaScript\n\n* Experience with JavaScript frameworks and libraries like Angular, Ember, React, Node\n\n* Expertise in iOS or Android native development, or wrappers like PhoneGap\n\n* Experience with automated testing and test driven development\n\n* Experience with social login from Facebook, LinkedIn, Google+, etc.\n\n* Strong Objective-C skills and inside-and-out knowledge of the iOS SDK\n\n* Strong Java skills with extensive knowledge of the Android SDK\n\n* Experience using and creating scalable web-based RESTful APIs\n\n* Object Oriented PHP skills at all scales\n\n* Experience in integrating 3rd party interfaces\n\n* Experience in a startup environment\n\n* Ability to manage engineering teams (QA, Dev, Ops)\n\n* Ability to keep remote teams on track\n\n* Proficiency with web programming languages (PHP, C#, Java, Ruby, Python)\n\n* Proficiency with front-end web technologies (XML, HTML, CSS, JavaScript, Ajax)\n\n* Proficiency with several RDBMSs (MySQL, MS SQL Server, PostgreSQL)\n\n* Experience with revision control systems (Git, Mercurial, SVN, Perforce, etc)\n\n* Experience working with different CMSs (BrowswerCMS, Drupal, Joomla, DotNetNuke)\n\n* Experience managing agile development processes through tools such as Atlassian suite\n\n* Familiarity with information security vulnerabilities\n\n* Excellent verbal and written communication\n\n* Keen analytic and problem-solving abilities\n\n\n\n\n\nPersonal Qualities & Core Competencies\n\n\n* Possess personal integrity: a deep moral compass that guides personal action\n\n* Use values and principles to make decisions\n\n* Strive to “do the right thing”\n\n* Yearn to work at a company where the organization’s values reflect personal ones\n\n* Are a team player: understand that success is only achievable as a team\n\n* Treat others fairly and with respect\n\n* Listen well and communicate well\n\n* Are fiercely consumer focused: have a real love and understanding of consumer behavior, and have personal experience using a variety of research and A-B testing techniques\n\n* Seek to understand what consumers want/need from both functional and emotional perspectives\n\n* Embrace the user community, becoming a “hands on,” active user of the service\n\n* Envision long-term market potential and business opportunity and position the business to capitalize on them\n\n* Anticipate future business opportunities or problems and develops strategies to address them\n\n* Drive results: set dramatic, compelling goals and aggressive schedules for improvement\n\n* Have a demonstrated record of delivering both short- and long-term results\n\n* Translate the vision/mission of the organization into actionable, quantitative plans\n\n* Convey a sense of urgency, and drive issues to closure\n\n* Seeks to build a great company for the long haul, not merely optimize for short-term gains\n\n* Embrace goals with enthusiasm: relentlessly optimistic while being grounded in reality\n\n* Manage performance: translates over-arching business goals into specific objectives for each member of the team\n\n* Hold people accountable for agreed-to results.\n\n* Identify and keep others focused on the most important metrics that drive the business.\n\n\n\n\n\nEducation\n\nUniversity degree in the field of computer science or engineering. An advanced degree is a plus.\n\n\nLocation\n\nWe are located in the beautiful community of Ojai, CA.\n\nIt’s a great place LIVE * WORK * PLAY (www.discoverojai.com/about_ojai.html)\n\nHowever, working remotely is an option.\n\n\nCompensation\n\nComfortable base plus equity.\n\n\n\nTo Apply\n\nAre you interested in applying? Contact us at [email protected]


See more jobs at Favly

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Simply Business


Senior Ruby Python Java Developers

Senior Ruby Python Java Developers


Simply Business


qa

 

javascript

 

infosec

 

cloud

 

qa

 

javascript

 

infosec

 

cloud

 
This job post is closed and the position is probably filled. Please do not apply.
\nIf you’re smart, passionate about technology and enjoy solving complex technical challenges then you should apply to join our best-in-class tech team. We believe that people are our most important asset and one worth protecting. As such, we’re known for creating an enviable working culture to keep our employees smiling on a day to day basis. \n\nWe offer things such as flexible hours, remote working, fortnigtly hackathons and freedom to work on projects of individual interest to name just a few. In fact, our impressive working culture has recently earned us 1st place in the Sunday Times 100 Best Companies to Work for 2015. \n\n\nWe have two different positions.\n\n\n1. Senior Developers who would like to lead a team / projects - We envisage the split here being about 70% hands-on coding and 30% leading the team, liaising with product owners on prioritization work, attending iteration planning meetings with stakeholders, delegating tasks to dev team, and making sure we are following Lean / Agile processes correctly.\n\n\n2. Senior Developers who want to be 100% coders (non-lead) - This role will be 100% hands on working with our other Devs to code beautiful products for our customers! \n\n\n\nSome of our Current Projects: \n\nSeedy - Our custom built CMS. A hybrid, markdown based, sinatra driven CMS but with a TDD undercurrent. Content changes are no different to backend refactoring. Templates are written in a custom DSL that enforces our style guide while still supporting iterative changes and automatic deployment. Across the company people (including business teams) are now being tagged in pull requests and even writing code!\n\nAerie - We’re overhauling our data and analytics architecture. Using the latest approaches in event streaming, we are building a brand new data pipeline based on Kinesis and Redshift that will support the analysis of both structured and semi-structured data in near real-time. This will provide rapid and intuitive customer insight to our decision makers, while also providing exciting machine learning capabilities back to our core product offering.\n\nAAA - We are enhancing our new world platform. Our current focus is on security with a view to building out ‘infrastructure as code’ using tools such as AWS CloudFormation, AWS OpsWorks, Chef/Puppet and many others. Essentially, we believe a well architected system allows us to avoid unnecessary complexity and can enable individuals to generate great output.\n\nOur Tech Stack\n\n\n\n\n* Ruby\n\n* Rails                                                                                                                            \n\n* Scala  \n\n* MongoDB\n\n* RabbitMQ\n\n* Puppet/Boxen\n\n* AWS                                                                                                                        \n\n* Hadoop / RedShift / Looker /Tableau\n\n* Cucumber / RSpec / Jasmine                              \n\n* SASS / HAML / HTML5 / CSS3 / JavaScript / CoffeeScript / jQuery\n\n\n\n\n\nThis list changes all the time, as being on the lookout for new technology trials and opportunities is part of our code. We don’t believe in limiting ourselves, or the company. If there are other tools that could get the job done better, we’re committed to exploring them.\n\nThings we believe in:\n\n\n\n\n* TDD / BDD\n\n* Continuous Delivery\n\n* Pair Programming\n\n* Build – Measure - Learn\n\n* Active participation to open source\n\n* Our business people writing code (we've not seen this anywhere else!)                                \n\n* Cross functional teams (Dev / QA/ Data / UX / Product owners all sitting together)            \n\n* Release early and learn quickly - we release our software to production around 15 times a day on average!        \n\n* Continuous learning - we look to pay for courses and conferences and actively encourage our Devs to get out and about in the community. We have even sent some of our Devs to Miami, Portugal and Barcelona for conferences recently.                                                              \n\n* Have fun! We do ruby coding challenges during lunchtimes over pizza, we have desk beers on a friday, we have several social events throughout the year, we do fortnightly hackathons, we have afterwork clubs like: UX, Data science and Robotics club, we have flexible working hours, weekly 'show n tell' sessions, and lot's more!                                                                                                 \n\n\n


See more jobs at Simply Business

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

SecurityScorecard


LEAD Devops Engineer

LEAD Devops Engineer


SecurityScorecard


devops

 

infosec

 

finance

 

elasticsearch

 

devops

 

infosec

 

finance

 

elasticsearch

 
This job post is closed and the position is probably filled. Please do not apply.
\nLEAD DEVOPS ENGINEER\nAbout us\nFounded in NYC, SecurityScorecard (www.securityscorecard.com)  helps companies regain control and visibility of their partner ecosystem.   By continuously collecting millions of proprietary security signals, we non-intrusively benchmark company security performance to their peers and industry.  Our SaaS platform continues to be adopted by industry leaders around the globe to vet their vendor ecosystem.  \nYou can see pictures from our day here: http://on.fb.me/1Sig7Dj\nWe are a startup in a hot market looking to grow our team to meet the demand that our customers and prospects are driving.  We are using cutting edge technology and handling large amounts of data. We also offer a benefits package, including medical, dental, vision, stock options, among many other cool perks.  Add to that, team building outings, Nerf-gun battles, coffee and some of the smartest minds in NY!\nThe CISO/CTO co-founders are encoded with Security DNA, and have spent many years running security and technology teams for startup and fortune 500 companies. Their disruptive technology is gaining incredible market traction.  The company continues to scale and looking for bright, talented individuals to join the team and build a great company.  The company is well funded by notable, high-profile technology investors with deep security expertise.\nSummary\nWe're looking for a Linux ninja with a passion for automation. Fully proficient in Ansible. Experience with deploying Rails and Golang. Experience writing build scripts in Capistrano. Experience administrating redis and elastic search clusters. Strong AWS skills, security groups, load balancers, RDS. Strong bash skills. Strong Linux security skills.\nRequirements\n* \nBS or MS in Computer Science, Engineering, Operational Research, Statistics, or other quantitative field of study.\n* \nExemplifies an easy-to-get-along personality, collaborates well with colleagues even under challenging circumstances, and values team success.\n* \nStrong linux skills\n* \nAnsible\n* \nAWS - ec2 and RDS\n* \nMYSQL / RAILS / REDIS / Elastic Search\n* \nCapistrano, Zabbix\n* \nSuper strong Bash, Ruby scripting\n* \nAbility to learn and dev in Golang\n\n\nResponsibilities\n- Maintain linux servers\n- Automate server setup using ansible\n- Automate setup of various in house applications\n- Debugging production issues at scale\n- Writing build scripts for various rails applications in capistrano\n- Automate various monthly procedures\n- Debug distributed job queues and workers\nBenefits & Culture\nLocated in the heart of NYC, SecurityScorecard is rapidly becoming one of the hottest, most disruptive start-ups in New York.  Backed by biggest VCs and  the most well respected business and thought-leaders, were scaling at an incredibly rapid pace and looking for agile, motivated team members to join us in building an incredible company culture!\nBenefits\n* \nHealth and commuter benefits\n* \nUnlimited vacation\n* \nFlexible schedule\n* \nUncapped opportunities for growth and skill development\n* \nWork in a new, modern office space (Your foosball and table tennis skills will improve!)\n\n\n\n\n \nCulture\n* \nYou are a full member of a team. Work with Ph.D.s in computer science, and industry executives.\n* \nAgile, hyper-paced environment\n* \nWe love keeping customers excited and delighted\n* \nWe love to build and automate from the ground up\n* \nWe always learn and experiment, adopting new ideas very fast\n* \nWe love to take risks and learn quickly from mistakes\n\n\nWere looking forward to connecting with you.        


See more jobs at SecurityScorecard

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Puppet Labs


Professional Services Engineer

Professional Services Engineer


Puppet Labs


devops

 

infosec

 

finance

 

perl

 

devops

 

infosec

 

finance

 

perl

 
This job post is closed and the position is probably filled. Please do not apply.
\nDepartment:  Customer Success\nReports to:  Manager, Professional Services \nLocation:  New York, NY\nSummary of Role\nDo you have a passion for Open Source software?  Excited about what Puppet is doing and want to be a part of it?  Love utilizing your technical knowledge in a client-facing role?  \n\nPuppet Labs is hiring additional Professional Services Engineers to join our growing PS team!  In this role, you'll help our Puppet Labs' customers succeed through consulting and custom development engagements, as well as further Puppet Labs product growth with direct customer feedback.\n\nAs part of our Professional Services team, you will work with our customers to implement solutions and deliver professional services.  In addition, you will be responsible for providing pre-sales support to Sales & Marketing, developing and publishing Puppet modules and products, and developing and promoting integration and tooling around Puppet Labs products.  As Professional Services Engineer, youll also develop blog posts and other communication for Puppet Labs, and work with R&D and Product Management to develop and test Puppet Labs products.\nQualifications\n* Unix &/or Linux SysAdmin or DevOps background, including automation\n* Strong customer relations & presentation skills - must be able to speak well in front of an audience and with customers\n* Excitement about working with the Puppet community\n* Passion for problem solving\n* Excellent time and project management skills\n* Self-motivated and self-directed\n* Requires the ability to travel up to 75% (domestic & internationally) via ground and/or air transportation, including but not limited to, operating a vehicle and/or riding as a passenger in a vehicle, airplane, train or other form of transportation\n* Requires logic and reasoning to identify the strengths and weaknesses of alternative solutions, conclusions or approaches to problems\n* Requires contact with others (face-to-face, by telephone, virtual meetings, VOIP or otherwise) and the ability to work and interact in a group or team\n* Technical degree (CS/IT/Eng/ITSec) or equivalent experience\n* Valid driver's license\n* A criminal background check is part of the employment hiring process.\n* Puppet Certified, a plus!\n\n\nPreferred but not required\n* Programming skills (Ruby, Python, Perl, etc.)\n* Large scale infrastructure experience\n* Experience with Puppet or other configuration management tools\n* Knowledge of data center management, systems management, and monitoring, networking & security\n* Professional services experience in an open source/enterprise software company\n\n\nApplication Instructions\nIn order to be considered for this position, please submit your application online (via the Apply Now button).  Please include a cover letter with your resume addressing the following:\n* Why are you interested in working for Puppet Labs?\n* Please summarize how your background fits the listed qualifications.  \n* Please confirm you are available for up to75% travel domestically & internationally.\n* Please include a list of references in your cover letter.\n\n\nWorking for Puppet Labs\nOur mission at Puppet Labs is to drive the cost of technology change to zero.  We make IT automation software for systems administrators, freeing them from repetitive work and fire-fighting so they can do more interesting and higher-value work for their organizations.  Our most important measure of success is their love for our products.\nWe're growing fast, but we're determined for everyone here to have a real impact on the company and our customers every day.  We're driven and restless.  We encourage creativity and collaboration.  By challenging each other, we foster continuous improvement.  We hire carefully for passion, self-motivation, intelligence, curiosity, and adaptability.\nWe offer excellent health benefits for employees and family, a flexible time-off policy (that we do insist you use), and a variety of methods to grow your skills and further your career.  We have employees all around the US, the UK, Sweden, Canada, the Czech Republic and Australia.  Our headquarters in downtown Portland, Oregon, is one block off Tom McCall Waterfront Park with views of Mt. Hood, Mt. St. Helens and the Willamette River.\nPuppet powers thousands of companies, including Twitter, Yelp, Disney, Google, Citrix, eBay, NYSE, Cisco WebEx, Salesforce, Bank of America and PayPal.  Our investors include Kleiner Perkins Caufield & Byers, VMware, Google Ventures, Cisco, True Ventures, Radar Partners, and Emerson Street Partners.\nPuppet Labs, Inc. is an Equal Opportunity Employer.


See more jobs at Puppet Labs

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

VOSTROM


UX Developer

UX Developer


VOSTROM


devops

 

javascript

 

infosec

 

perl

 

devops

 

javascript

 

infosec

 

perl

 
This job post is closed and the position is probably filled. Please do not apply.
\nUX Developer – Emphasis on Angular.js / Node.js / MongoDB / Redis\nThe Opportunity:\nWe're looking for an experienced UX developer based in either Virginia Beach, VA or the Washington, DC metro area, however remote (tele) workers will be considered for the position also if they have excellent communications skills and are willing to travel to either of the above locations several times per year.\nThe Day to Day:\n* Develop front-end interfaces for web apps people use every day \n* Find ways to make apps fun and natural, so users intuitively know how to work the app\n* Build apps and back-end frameworks that are maintainable, flexible and scaleable\n* Anticipate tomorrow's problems by understanding of what users are trying to accomplish \n\n\nRequirements:\n* Experience with Javascript, Angular.js and Node.js \n* Comfort with asynchronous programming methodology \n* Experience with web tech including REST, HTML 5 and CSS \n* Experience with MongoDB, Redis, Cassandra, or other BIG databases \n* Familiarity with jQuery\n* US Citizenship\n\n\nBonus Points:\n* DevOps experience with Linux or FreeBSD \n* Experience with Linux Containers and Docker \n* Familiarity with data visualization tools like D3.js\n* Experience working with XML or JSON data \n* Experience with sigmajs or graphviz\n* Experience with Python, Ruby, Perl and/or shell scripting \n* Experience with the Go programming language \n* Mac OS X familiarity \n* BS or MS in a technology or scientific field of study\n* High energy level and pleasant, positive attitude!\n* History of participation in organized sports (high school or college athletic teams)\n* Evidence of working well within a diverse team\n\n\nCompensation:\n* Salary commensurate with experience, generally higher than competitive industries\n* Comprehensive benefits package\n* Opportunities for advancement and a clear career path\n\n\nAbout Us:\nWe conduct advanced technical research and develop innovative software and systems that help meet network security and reliability challenges for organizations world-wide.  You can read more at our web site.  \nCareer Opportunities:\nWe have many other openings available. For a complete listing, visit jobs.vostrom.com


See more jobs at VOSTROM

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

KarmetiK


Education Startup

Education Startup


KarmetiK


devops

 

infosec

 

edu

 

teaching

 

devops

 

infosec

 

edu

 

teaching

 
This job post is closed and the position is probably filled. Please do not apply.
The Gist\nWe're a stealth mode education start-up in the Los Angeles area that is re-inventing the way institutions utilize technology. The founders of the company were instructors themselves at universities so we have an intimate knowledge of how desperately this area needs to be properly served. We set out to build a solution to this problem and have since received nothing but positive support and feedback from many large players in the industry. Although there are many moving parts to what we are trying to accomplish, our flagship product runs as a Ruby on Rails web application that makes heavy use of Amazon’s cloud hosting and services environment.\n\n \n\n\n\nWhat we’re looking for\nThe definition of “DevOps” is somewhat controversial, but we prefer the one from http://theagileadmin.com/what-is-devops/: 'System administrators participating in the product development process alongside developers and using a many of the same techniques for their systems work.' We are looking for an experienced DevOps Engineer to join our small but talented web team to help ensure our application infrastructure is as scalable, robust, and secure as possible. We are flexible on location and are open to a remote developer as long as you are a strong communicator and have proven experience working remotely. \n\nOur ideal candidate is an savvy sysadmin with experience working in an agile environment. Our customers deserve the best data protection we can give them so a background in InfoSec is also a huge bonus.\n\n\n \n\n\n\n What you’ll be doing\nYou will be working alongside our current DevOps Engineer on a team of ~10 developers. As the company and product are still quite young, you will have a great opportunity to provide input on infrastructure related decisions across our product line. Primarily, you will be responsible for helping estimate, provision, automate, and monitor the infrastructure for our applications. As part of this process, you will need to develop risk and threat analyses along with mitigation and response strategies. You will also be asked to deliver monitoring and usage reports to the founders from time to time.


See more jobs at KarmetiK

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

SportSetter


Startup Minded

Startup Minded


SportSetter


infosec

 

scala

 

ruby

 

api

 

infosec

 

scala

 

ruby

 

api

 
This job post is closed and the position is probably filled. Please do not apply.
\nHi!\n\nWe're a startup company, with an app to easily find and do fitness in your city. \nIt's pretty neat, check it out here: https://sportsetter.com/app\n\n\n\nOur backend is running on a monolithic (for now) Rails app, on top of AWS. And we're looking for backend-leaning full-stack developers.\n\nHere's what you will be doing: \n• Work on modularizing a Rails app \n• Work on its scalability and build a sweet infrastructure for the whole backend to run on (AWS and Docker FTW) \n• Regular ol' features \n• Maintain and update our REST API consumed by the iOS client \n• Participating in business development \n• Drinking and going out with the team\n\nHere's what we offer:\n• Competitive compensation \n• Stock \n• Unlimited vacation time \n• Heavily subsidized workouts \n• Flexible hours \n• Sweet Apple equipment \n• Fun and friendly environment (incl. bad puns) \n• Frequent outings with the team\n\nPlease do apply if: \n• Everything in this listing sounds appealing \n• You know your stuff\n• You want to hone your craft while building something great \n• You are located in NYC or Helsinki (if not, apply anyway, remote work is fine too) \n• You have a startup attitude of getting things done\n\n\nPlease do not apply if you: \n• Ever refused to do something because 'it's not your job' \n• Want to be left alone to code forever \n• Don't mind leaving work unfinished, as long as you arrive at 9 AM and leave at 5 PM \n• Would rather have a budget and a time frame rather than constant ASAP deadlines \n• Prefer job security to building great things


See more jobs at SportSetter

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

VOSTROM


Open Source Ambassador

Open Source Ambassador


VOSTROM


devops

 

infosec

 

perl

 

python

 

devops

 

infosec

 

perl

 

python

 
This job post is closed and the position is probably filled. Please do not apply.
\nOpen Source Ambassador – Open Source Software Community Outreach\nThe Opportunity:\nWe're looking for an experienced open source contributor / advocate / packager with excellent communications and networking skills to help us manage our wide-ranging charitable contributions to various open source projects. This position includes a sort of "venture budget" to back projects that meet specified criteria and may include travel to various networking and security conferences both regionally and internationally. The right candidate can be located anywhere and telecommute.\nThe Day to Day:\n* Keep up to date on news in the open source software community\n* Package and submit / commit our open source software to various distributions\n* Work with internal stakeholders to understand their needs and interest areas\n* Uncover internal software and research that may accelerate open source projects \n* Develop and evolve budget and prioritization criteria for charitable assistance \n\n\nRequirements:\n* Substantial experience of the open source software community (as a committer) \n* Experience packaging software using multiple package systems (e.g., a ports committer) \n* Comfort working with social media, newsgroups, development wikis and bug trackers \n* Knowledgeable about popular open source licenses (MIT, BSD, GPL, CC, etc)\n* Fluent in English with excellent communications skills (no citizenship requirement)\n\n\nBonus Points:\n* Multi-lingual\n* DevOps experience with Linux or FreeBSD \n* Experience with Python, Ruby, Perl and/or shell scripting \n* Mac OS X familiarity \n* BS or MS in a technology or scientific field of study\n* High energy level and pleasant, positive attitude!\n* History of participation in organized sports (high school or college athletic teams)\n* Evidence of working well within a diverse team\n\n\nCompensation:\n* Salary commensurate with experience, generally higher than competitive industries\n* Comprehensive benefits package\n* Opportunities for advancement and a clear career path\n\n\nAbout Us:\nWe conduct advanced technical research and develop innovative software and systems that help meet network security and reliability challenges for organizations world-wide.  You can read more at our web site.  \nCareer Opportunities:\nWe have many other openings available. For a complete listing, visit jobs.vostrom.com


See more jobs at VOSTROM

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

VOSTROM


Devops Engineer

Devops Engineer


VOSTROM


devops

 

javascript

 

infosec

 

elasticsearch

 

devops

 

javascript

 

infosec

 

elasticsearch

 
This job post is closed and the position is probably filled. Please do not apply.
\nDevOps Engineer– Emphasis on Linux / Docker / Node.js / Elasticsearch / MongoDB\nThe Opportunity:\nWe're looking for an experienced DevOps engineer based in Phoenix, AZ, Virginia Beach, VA or the Washington, DC metro area, however remote (tele) workers will be considered for the position also if you have excellent communication skills and are willing to travel to one of the above locations several times per year.\nThe Day to Day:\n* Provide operational support and automation tools to application developers \n* Bridge the gap between development and operations to ensure successful delivery of projects \n* Participate as a member of the application development team \n* Build back-end frameworks that are maintainable, flexible and scaleable\n* Operate and scale the application back-end including the database clusters \n* Anticipate tomorrow's problems by understanding what users are trying to accomplish today \n\n\nRequirements:\n* DevOps experience with Linux or FreeBSD \n* Experience with Linux Containers and Docker \n* Configuration management experience, Salt Stack preferred \n* Exposure to the deployment and operations of node.js applications \n* Experience operating and optimizing Elasticsearch at large scale\n* Operational experience with Hadoop, MongoDB, Redis, Cassandra, or other distributed big data systems \n* Experience with any of JavaScript, Python, Ruby, Perl and/or shell scripting \n* Comfort with compute clusters and many terabytes of data \n* US Citizenship / Work Authorization\n\n\nBonus Points:\n* Development experience with Node.js or other HTTP backend tools\n* Mac OS X familiarity \n* BS or MS in a technology or scientific field of study\n* High energy level and pleasant, positive attitude!\n* Evidence of working well within a diverse team\n\n\nCompensation:\n* Salary commensurate with experience, generally higher than competitive industries\n* Comprehensive benefits package\n* Opportunities for advancement and a clear career path\n\n\nAbout Us:\nWe conduct advanced technical research and develop innovative software and systems that help meet network security and reliability challenges for organizations world-wide.  You can read more at our web site.  \nCareer Opportunities:\nWe have many other openings available. For a complete listing, visit jobs.vostrom.com


See more jobs at VOSTROM

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.

Samasource


Senior Web Services Architect

Senior Web Services Architect


Samasource


devops

 

infosec

 

architecture

 

java

 

devops

 

infosec

 

architecture

 

java

 
This job post is closed and the position is probably filled. Please do not apply.
\nWe are looking for a senior level Web Services Architect/Developer to join our small software team, to develop web services that unleash the power of our Microwork™ platform. In particular, we are targeting engineers who can architect and develop ultra-reliable and secure web services that manage millions of Microwork™ tasks per month. This is a unique opportunity to both shape and build our services from the ground up. While we don't mind you being remote your particular timezone may be a factor -- this role requires you to work closely with our US based engineers.\n\nWe expect that you:\n\n\n* Are a self-motivated quick learner\n\n* Have hands-on experience architecting and developing all aspects of horizontally scalable, secure, fast and highly available RESTful web services\n\n* Are an expert in at least one of Ruby, Python, Java, Clojure, Scala.\n\n* Are an expert in database technologies -- SQL and NoSQL\n\n* Are proficient in using AWS as a deployment platform -- you have worked extensively with three or more of the following: EC2, EB, ELB, SQS, S3, SNS, RDS, DynamoDB, EMR\n\n* You understand data security and site security issues\n\n* Have experience in SOA and multi-tier web applications (experience with microservices is a plus)\n\n* Depend upon a healthy CI environment\n\n* Write excellent automated tests, and run them often\n\n* Are proficient in using load testing, functional testing and regression tools\n\n* Can write high quality, maintainable code in a high pressure environment -- you know when to take shortcuts and have the discipline to undo them later\n\n\n\n\nYou will stand out if:\n\n\n* You have full stack experience\n\n* You have experience with architecting HIPAA compliant services\n\n* You have worked with major third party APIs (e.g. FB, Google, Salesforce.com)\n\n* You have experience building, deploying, and monitoring microservices\n\n* You have experience with and embrace Continuous Deployment\n\n* You have experience with DevOps (though this is not going to be a part of your job)\n\n* You know the issues surrounding distributed systems and how to work around them\n\n* You have worked in an agile development environment and you follow agile development principles when you write code\n\n* You have prior start-up experience -- particularly the ability to find one’s bearings in a fast-paced and fast-changing environment\n\n\n


See more jobs at Samasource

# How do you apply?\n\n This job post is older than 30 days and the position is probably filled. Try applying to jobs posted recently instead.
FeedbackIf you find a bug, or have feedback, write it here. Please no job applications in here, click Apply instead! If you want to advertise, we do not do CPA/aff/perf ads ever.Thanks for the message! We will get back to you soon.

[Spam check] What is the name of Elon Musk's company going to Mars?

Send feedback