Security Engineer

Feeld


2 weeks ago

08/31/2019 10:21:23

Job type: Full-time

Category: Software Dev


We're looking for a community-centric human to join our remote team to protect our systems and foster a culture of privacy and security in order to protect our community of users.

At Feeld we are on a mission to normalise sexuality. We are building an inclusive, human-centred product welcoming people in relationships or not to meet like-minded others. Most of the humans in our app look up to us as a safe space where they can explore safely.

We're looking for a security engineer who likes to wear hats of many colours to help us preserve the privacy and safety of our users, and who understands the importance of this fact.

As a security engineer, you will be in charge of all things security in the company. You will be the first point of contact for everyone technical and non technical to ensure Feeld's systems are kept safe from threats.

If you're a list person, here are some of our expectations, listed:

You:

  • Can help us automating security on our Continuous Integration Pipeline.

  • Protect our infrastructure from Intrusions.

  • Collaborate with Devops to make sure that Developer velocity is maintained.

  • You will create processes to perform security reviews of our architecture.

  • You will be in charge of maintaining and updating our architecture documentation.

  • You have experience managing and evaluating third-party services.

  • You will build and maintain a security incident response plan.

  • You will perform and enforce security code reviews.

  • Establish and enforce security practices across the whole company .

  • Educate developers and provide tools to handle a SDLC.

  • Create a solid onboarding/offboarding process for employees.

  • Assess, list and prioritise security issues.

  • Prepare and evaluate third parties for external security tests.

  • Set up and facilitate our own bug bounty program, internal or external.

  • Create a security policy and expose it on our website.

  • Regularly audit our applications, DNS settings and dependencies.

Bonus points:

  • interest in working remotely

  • experience with consumer based products

  • Be humble and respectful - no security shaming

  • Create and maintain strong relationships with our Circle Leads

  • Willingness to develop a security + privacy culture

  • Experience training engineers and non-engineers in security skills

  • Attend meetups with other security engineers

Us:

Feeld is an independent, experimental and fully remote organisation reshaping the dialogue on dating and sexuality. The company was founded 5 years ago and has evolved since to become the transparent, flat structure it is now. We don't believe in standard management, so we have a naturally agile and fluid culture. The whole team is fully remote, which means you work where and when helps you perform at your best. We're self-managed and treat our organisation as a product – we iterate, improve and test things internally to see what works best for everyone. Some things we provide are:

  • flexible working hours

  • unlimited holidays

  • fully remote

  • annual retreats

  • equity options

  • expense account

  • training budget

  • computer and home office equipment

  • transparency - open data, open salaries, open equity

  • access to the Feeld Flat in Porto, Portugal

  • friendly humans

Please mention that you come from Remotive when applying for this job.

Help us maintain Remotive! If this link is broken, please just click to report dead link!

similar jobs

  • Hunter is a company founded 4 years ago in France by Antoine and François. Our goal is to make it easier for businesses to connect with each other. We make it happen by continually analyzing public data on the web and make it easy and practical to search.

    We built Hunter to match our needs and aspirations (hopefully, you'll share them too!). This means we're bootstrapped and don't intend to raise any funds. And because we're building a real long-term business, we've made sure to be profitable from the start. We have the liberty to exclusively focus on providing the most value possible to our users.

    Maintaining a small group is essential to us as it creates tighter bonds, increases productivity and eases communication. We're currently a team of 6 and love it this way. We're all in a different country (🇫🇷,🇩🇪,🇧🇦,🇪🇸,🇹🇭,🇨🇦) meaning working remotely is in our DNA.


    Responsibilities

    You’ll have the lead on the Go application managing Hunter’s business database. We're looking for someone eager to build the most comprehensive database of companies and professionals by using the web. Billions of pages of unstructured HTML data don’t scare you away; they give you ideas!

    We’re looking for an imaginative developer. We’re processing vast amounts of data to help hundreds of thousands of professionals… all of this with a tiny but mighty team! To succeed, we need to be more creative than anyone else.

    Your mission will include writing Go code to collect, process and organize our data. We’re also starting to use machine learning to bring Hunter’s data to the next level. Ideally, you’re also curious and skilled in deployments of applications to find the best setup to run the code you’ll write.


    Requirements

    • You’re a skilled and experienced Go developer writing high quality, maintainable and testable code (if you think you’re a perfect fit but are new to Go, you can still apply)
    • You’re able to find simple and elegant solutions to complex problems
    • You have a good understanding of what makes an efficient SQL request (bonus points for familiarities with PostgreSQL)
    • You know how to deploy applications on cloud platforms (bonus points for familiarities with Docker and Kubernetes)
    • You’re fluent in English
    • You believe in shipping fast, but also shipping quality work to avoid technical debt
    • You love working remotely while maintaining great relationships with your team members

    Benefits


    This job isn't for everyone. But if you're looking to work remotely, in a small business having an impact on hundreds of thousands of professionals, and with plenty of time aside from your work, then it should be perfect!

    The team gathers during company retreats three times per year, each time in a new location in Europe. During these one-week events, the team gets to know each other and prepare the projects for the following months.

    Being part of the Hunter team will also get you:

    • A competitive salary with no negotiation
    • 5 weeks of paid vacation per year
    • 3 company retreats in Europe every year
    • Fully-paid setup to get started (including a Macbook Pro, standing desk and ergonomic chair)
    • $5,000 vacation bonus per year for a far-away trip
    • An awesome team 🤗

    If you’re curious to learn more about the hiring process, we wrote a blog post about it. And if you have some questions for us, you’ll find our contact information on our About page.

  • 4 weeks ago

    DESCRIPTION

    TaxJar is the leading technology solution for busy eCommerce sellers to manage sales tax and is trusted by more than 15,000 businesses.

    Our core values

    • We do the right thing for our customers.

    • We're a team, built on trust.

    • We're proud to be remote.

    • We're in control of our own destiny.

    TaxJar’s remote-only team of 100+ people is growing quickly. We have an immediate opening for a Security Analyst who wants to help us make eCommerce easier for everyone.

    We're looking for a detailed oriented and experienced Security Analyst that has a passion for information security and is eager to make an impact in a growing company.

    On our team you will have the opportunity to help build, grow, and maintain our Information Security Program. This position reports to the Director of Information Security.

    *This is a full-time remote position available to folks located in the US.

    As a Security Analyst for TaxJar you will:

    • Develop a comprehensive understanding of our Security Policies, SOC2 and GDPR controls in order to manage and track commitments from partners and vendors

    • Own the Access Control management process for all employees

    • Analyze, track, and monitor alerts from our Cloud SIEM (security analytics tool)

    • Deploy, manage, and help secure employees workstations using Jamf - MDM tool

    • Perform security reviews of vendors to ensure compliance with policies and customer requirements

    • Assist with ongoing and annual Security and Privacy Awareness training for employees

    • Ongoing auditing and testing of security controls to ensure adherence with SOC2 and GDPR compliance frameworks

    • Perform regularly-scheduled vulnerability scans to support regulatory compliance and identification of new vulnerabilities

    • Assist with annual risk assessments, incident response, and business continuity planning

    • Responsible for monitoring and analyzing of all Data Loss Prevention events using Amazon Macie and CloudTrail

    REQUIREMENTS

    • 3 - 5 years of experience in a technology and information security related role

    • Experience supporting SOC2 compliance, GDPR experience is a plus

    • Knowledge and expertise of Mobile Device Management (MDM) tools, preferably with Jamf

    • Superior attention to detail, with strong process and documentation skills

    • Fast learner and someone who is always eager to learn and adapt (growth mindset)

    • Self-directed, self-motivated

    • Agile, humble, trustworthy, and a team player

    • Excel at communicating with the team remotely (chat, video, email, etc)

    You’ll be a great fit on our team if you

    • Only want to work remotely

    • Are a PRO at communicating and collaboration

    • Highly value working with people you like and respect

    • Are accountable

    • Are confident in your skills and a solid team player (We’re peers here, no egos please) but also comfortable working asynchronously

    • Hungry to play an impactful role and not afraid to fail

    We’re a happy team and we all really love what we do. We've created a space where high-achievers can succeed but are also safe to fail. We're profitable and focused on growing TaxJar sustainably. We're always learning how to make TaxJar the best place to work for all of us, and not just another tech startup. We’re always looking for an amazing new teammate to come share in the excitement of solving real-world problems with technology.

    BENEFITS

    • Excellent health, vision and dental benefits

    • Flexible vacation policy

    • 401k Plan

    • $1,000 in professional development credit

    • Home office stipend

    • Equity in a profitable company

    • 2x year all-company in person retreats (fully paid for by us of course)

    • Mandatory Birthday holiday!

    • 12 week paid maternity/ 6 week paid paternity leave

    • Monthly perks reimbursement for things like Netflix, Amazon Prime, your gym membership, home internet and more.

    We offer all of our employees amazing benefits. Visit www.TaxJar.com/jobs for a full list of our benefits and to learn more about how we work and what we stand for.

    If you're not the perfect fit for this position, but you know someone who is, we'll pay you $1,000 if you refer us to the person we hire.

  • This position is remote based.

    GitLab is building a research team that will focus on improving GitLab’s security detection capabilities, including SAST/DAST and future products. For more information about our security products, please review:  https://about.gitlab.com/direction/secure/ and https://about.gitlab.com/direction/defend/

    This team will work directly with the GitLab Security, Development, and Product teams to build, tune and improve the efficacy of GitLab’s stand-alone detection products. 

    Managers in the Security Department at GitLab see the team as their product. While they are technically credible and know the details of what vulnerability research engineers work on, their time is spent hiring a world-class team and putting them in the best position to succeed. They own the delivery of security commitments and are always looking to improve productivity. They must also coordinate across departments to accomplish collaborative goals.

    As a member of the security team at GitLab, you will be working towards raising the bar on security. We will achieve that by working and collaborating with cross-functional teams to provide guidance on security best practices.

    The Security Team is responsible for leading and implementing the various initiatives that relate to improving GitLab's security.

    Responsibilities

    • Hire a world class team of vulnerability research engineers to work on their team

    • Help vulnerability research engineers grow their skills and experience

    • Provide input on vulnerabilities, issues, and security features

    • Hold regular 1:1's with all members their team

    • Create a sense of psychological safety on your team

    • Recommend security-related technical and process improvements

    • Author project plans for security initiatives

    • Draft quarterly OKRs

    • Train engineers to screen candidates and conduct managerial interviews

    • Strong sense of ownership, urgency, and drive

    • Excellent written and verbal communication skills, especially experience with executive-level communications

    • Ability to make concrete progress in the face of ambiguity and imperfect knowledge

    Requirements

    • You have a passion for security and open source

    • You are a team player, and enjoy collaborating with cross-functional teams

    • You are a great communicator

    • You employ a flexible and constructive approach when solving problems

    • You share our values, and work in accordance with those values

    Compensation

    Please view the compensation range for this role at the bottom of the position description.


Remotive can help!

Not sure how to apply properly to this job? Watch our live webinar « 3 Mistakes to Avoid When Looking For A Remote Startup Job (And What To Do Instead) ».

Interested to chat with Remote workers? Join our community!