11 days ago
Responsibilities
- Partner with engineering and product teams to identify security risks throughout the development lifecycle.
- Conduct threat modeling and security design reviews for new product features.
- Serve as the primary liaison to the organization's security group.
- Act as the first point of contact for incoming vulnerability reports and CVEs.
- Review Go code with a security mindset to identify potential issues.
- Contribute security-focused improvements directly to the codebase.
- Develop and maintain internal security documentation and guidelines.
- Stay current on the Linux security landscape as it pertains to containers.
Requirements
- 6+ years of experience in security engineering or application security.
- Bachelor’s degree in Computer Science, Engineering, or a related field.
- Strong proficiency in Go programming.
- Deep understanding of Linux fundamentals relevant to container security.
- Solid grasp of OCI specifications and container runtime security.
- Hands-on experience with identity and access management concepts.
- Experience performing security design reviews and threat modeling.
- Familiarity with vulnerability management processes.
- Strong written and verbal communication skills.
Benefits
- Freedom & flexibility to fit work around life.
- Designated quarterly Whaleness Days and end of year Whaleness break.
- Home office setup for comfortable work.
- 16 weeks of paid parental leave.
- Technology stipend of $100 net/month.
- PTO plan encouraging time off for personal enjoyment.
- Training stipend for conferences, courses, and classes.
- Equity in the company.
- Docker swag.
- Medical benefits, retirement, and holidays vary by country.
- Remote-first culture with offices in Seattle and Paris.
Tech Stack
BuildkiteDockerGoLinux