This job post is closed and the position is probably filled. Please do not apply. Work for Gruntwork and want to re-open this job? Use the edit link in the email when you posted the job!
About Gruntwork
Gruntwork aims to improve humanity's most important invention: Software. Our focus today is on creating a DevOps UX that software engineers actually enjoy, which we do by creating building blocks that make launching in the cloud 10x better/faster/easier. We work with AWS, K8s, Terraform, Terragrunt, Terratest, Go, Typescript, and React, and introduce new tech as needed. Weโre a small team (~20 people), but our clients include Toyota, Adobe, TicketMaster, Verizon, and hundreds of startups.
We are profitable, self-funded (no investors, no debt), and pay salaries, equity, and bonuses according to transparent formulas. We are 100% remote, with 2/3 of our team in the USA and 1/3 in Europe. We plan company-wide in-person meetups every few months and are known world-wide for both DevOps thought leadership and our popular open source tools, Terragrunt and Terratest.
Our measure of a successful Grunt is (1) think like an owner, (2) make impact, (3) communicate effectively, (4) be a good person. If this sounds like you, we're hiring!
About The Role
Our infrastructure as code library and platform team delivers an end-to-end, best-practices infrastructure on AWS in just days, all as a product. In this role, youโll collaborate with other senior-level engineers to define the next generation of AWS and DevOps best practices, codify them for use by thousands of engineers, and design a next-level experience for implementing, operating and understanding them.
What You'll Work On
Build a better DevOps experience.ย We have a unique product that generates complete, multi-account AWS architectures for Terraform and Terragrunt in just a few hours using a collection of internal Golang tools. Help us take this to the next level by using that product to deliver prod architectures directly to customers, and then leveraging their feedback for improvements. Better yet, help us get to the point where the entire experience is completely automated or self-service.
Codify AWS and Terraform best practices.ย Customers look to Gruntwork to share the best way to launch on AWS. Discover AWS and Terraform best practices, and then codify them as repeatable patterns that Gruntwork customers can pull off the shelf.
Integrate with the Gruntwork platform.ย Integrate your product work with our company-wide platform, which consists of a REST API (Next.js/Typescript), a web-based single-page app (Next.js/React/Typescript, Tailwind), and a first-class CLI tool (Go).
Build out the Infrastructure as Code Library.ย Create and maintain reusable infrastructure modules for a variety of infrastructure (e.g., EKS, ECS, RDS, VPC, Lambda, EC2, S3, ElastiCache, etc.), using a variety of tools (e.g., Terraform, Go, Python, Bash, Docker, Packer, etc.) on AWS.
Contribute to open source.ย Contribute to our open source projects as needed, including Terragrunt, Terratest, cloud-nuke, bash-commons, and more.
Train and mentor.ย Play to your strengths and areas of expertise by not only writing code and working on the product but also by sharing knowledge and mentoring both other team members and our customers in those areas.
Support customers.ย Gruntwork is a small, distributed, self-funded, profitable startup, so we'll ask you to provide a limited amount of support to enable learning directly from customers about how we can improve and continue achieving our vision of making it easier to understand, build, and deploy software.
Your Ideal Background
You should meet some of these requirements, but you don't need to meet all of them. As a company, we look for people who can leverage their existing skills to make significant impact in the near term. As an individual, you are likely looking for a growth opportunity, a core part of which is building new skills.
You know how to write code across the stack and have experience in one or more of the following: Go, C++, Python, Typescript, Bash, React, Next.js
You have production-level experience with AWS.
You have expertise in one or more of the following: Kubernetes (any managed offering, preferably EKS), ECS<, EC2, Lambda / Serverless, API Gateway, RDS, S3, AWS Config, AWS CloudTrail, Amazon GuardDuty, IAM, VPC, VPN.
You have worked with Terraform or other infrastructure-as-code tools like CloudFormation, CDK, or Pulumi in prod.
You have experience achieving compliance and going through audits (e.g., SOC2, HIPAA, vendor, etc).
You have a strong background in software engineering.
You have strong communication skills in English and are comfortable engaging with external customers.
Your Ideal Values
You have a passion for imparting best practices to other developers.
But you would rather invest the time to automate a problem than do the same work again.
You have a passion for learning (new technologies and languages specifically).
But you are motivated most by making impact.
You are inspired by our values (https://gruntwork.io/about/#our-values).
Compatible Time Zones
You'll be working with a team in theย US time zones, so you can be located in almost any country as long as your time zone is no further west than Los Angeles (GMT-8/GMT-7) and no further east than New York (GMT-5/GMT-4). We've found that when everyone on the team is located in similar time zones, it's easier to collaborate and there's much less pressure to stay up late or get up early, so this is a hard constraint, even if you're willing to work hours different from your current time zone.
Benefits
Our benefits reflect our values. We believe compensation should be fair, transparent, and generous. We hire Grunts in many countries, so some details may vary.
Location Independent, Above-Market Salary.ย To reduce bias and increase transparency, we compute all salaries using formulas. The formula factors in your title and uses a multiplier to produce a result that's above market for that title. Our salaries are location independent.
Profit-Sharing Bonus.ย We set aside a pot of money at the end of each year based on profits and distribute bonuses according to a formula that uses as inputs your level within the company and the length of your tenure at the company.
Hardware Budget.ย We'll buy you a brand new 16" Apple MacBook Pro (or other computer of your choosing of equivalent value) upon joining. It will be owned by you, not the company.
Personal Budget.ย We'll give you a personal budget of $1,000 USD per month to spend on your workspace (e.g., a co-working space), health (e.g., gym, yoga), time (e.g., babysitter), and/or learning (e.g., books, courses).
Medical/Dental/Vision Insurance.ย We offer a range of high-quality plans with a large portion paid by the company. For countries other than the US, this includes extra coverage on top of your statutory insurance.
In addition to the global benefits listed above, we have some US-specific benefits as well:
FSA and HSAs.ย We don't contribute to these accounts, but we do offer them as an option.
401(k).ย We contribute a portion of your salary to your 401(k).
Disability insurance.ย If you get disabled, we have a policy that will pay out a portion of your salary.
Life First, Then Work
We believe in planning our work around our lives, not the other way around. To help achieve that we offer:
Remote workย that lets you control your hours and physical location.
Normal working hoursย that usually amount to not more than ~40h per week, and no working on weekends or holidays.
Deliberate project planningย that takes into account the time zone of all team members.
A minimum vacation policyย where you must takeย at leastย 4 weeks per year away from work.
No one carrying a pagerย and no on-call rotation. We enable this by only offering support contracts with SLAs of responses on business days / hours only.
Please mention the word WARMTH when applying to show you read the job post completely (#RMy4yMS4xMDYuNA==). This is a feature to avoid fake spam applicants. Companies can search these words to find applicants that read this and instantly see they're human.
Salary and compensation
$180,000 — $240,000/year
Benefits
๐ฐ 401(k)
๐ Distributed team
โฐ Async
๐ค Vision insurance
๐ฆท Dental insurance
๐ Medical insurance
๐ Unlimited vacation
๐ Paid time off
๐ฐ 401k matching
๐ Company retreats
๐ฌ Coworking budget
๐ Learning budget
๐ช Free gym membership
๐ง Mental wellness budget
๐ฅ Home office budget
๐ฐ Profit sharing
๐ฐ Equity compensation
โฌ๏ธ No whiteboard interview
๐ No monitoring system
๐ซ No politics at work
๐ We hire old (and young)
How do you apply?
This job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.
This job post is closed and the position is probably filled. Please do not apply. Work for Marqeta and want to re-open this job? Use the edit link in the email when you posted the job!
Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the worldโs first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Areaโs Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply.ย \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space.\n\nAs a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqetaโs open payments platform. This role supports the safety and security of our customerโs payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.\n\nOur ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.\n\nYou'll work closely with Marqetaโs Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and youโll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.\n\nThe ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). Youโre knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers.ย \n\n# Responsibilities\n
**Primary Responsibilities**ย \n* Build Self Service Tools for QE, Frontend and Backend Engineers\n* Assist with Definition, Implementation, and Maintenance of S-SDLC\n* Lead Application Security Assessments and Design Reviews\n* Execute Critical Validation/Verification Functions in Pre- and Post-Release\n* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline\n* Execute Greybox and Whitebox Application Security Assessments\n* Execute and Support HTTP/S Service-Layer Pen-Testing\n* Develop Security Training and Guidelines for Engineers\n* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases\n* Lead Software Vulnerability Management and Risk Mitigation Practices\n* Offer Guidance and Leadership in PCI Compliance\n \n\n# Requirements\n**Requirements**\n* Demonstrable and Practical Experience in an Development or Security Engineering Role\n* You have a passion for Security and Engineering as a discipline\n* Youโre an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n\n**Technical Skills**\n* Functional Development Experience in Python, Go, JS, Ruby, or Java\n* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar)\n* Strong Knowledge of OWASP and Common Software Vulnerabilities\n* Solid Understanding of Secure Coding/Development Practices\n* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development\n* Strong Interest in Automation Practices\n* Familiarity and Interest in Cloud Services and SAAS Platforms ย (AWS, GCP)\n\n**Communication Skills**\n* Ability to Communicate Technical Details and Concepts Clearly\n* Strong Capacity to Speak and Act with Candor and Empathy\n\n**Nice to Have**\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Solid Knowledge of OAuth and SAML\n* Strong Knowledge of HTTP/S Service Architectures\n* Strong Knowledge of Transport Security, specifically TLS and CAsย \n\n**Perks**\n\n* Be a member of an exceptional team - weโre growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more! \n\nPlease mention the words **DIVORCE FRIEND DILEMMA** when applying to show you read the job post completely (#RMy4yMS4xMDYuNA==). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to JavaScript, InfoSec, Java, Python, Ruby, Golang, Engineer, Cloud, API, Mobile and Backend jobs that are similar:\n\n
$70,000 — $120,000/year\n
# How do you apply?\n\nThis job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.
This job post is closed and the position is probably filled. Please do not apply. Work for Marqeta and want to re-open this job? Use the edit link in the email when you posted the job!
Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the worldโs first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Areaโs Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply.ย \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space. We are based in Oakland, California but are open to remote engineers for this role!\n\nAs a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqetaโs open payments platform. This role supports the safety and security of our customerโs payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.\n\nOur ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.\n\nYou'll work closely with Marqetaโs Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and youโll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.\n\nThe ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). Youโre knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers.\n\n\n# Responsibilities\n
**Primary Responsibilities**\n* Build Self Service Tools for QE, Frontend and Backend Engineers\n* Assist with Definition, Implementation, and Maintenance of S-SDLC\n* Lead Application Security Assessments and Design Reviews\n* Execute Critical Validation/Verification Functions in Pre- and Post-Release\n* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline\n* Execute Greybox and Whitebox Application Security Assessments\n* Execute and Support HTTP/S Service-Layer Pen-Testing\n* Develop Security Training and Guidelines for Engineers\n* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases\n* Lead Software Vulnerability Management and Risk Mitigation Practices\n* Offer Guidance and Leadership in PCI Complianc \n\n# Requirements\n**Requirements**\n* 3-5 yrs Demonstrable and Practical Experience in Application Security Engineering or Comparable Experience in a Security Engineering Role\n* You have a passion for Security Engineering as a discipline\n* Youโre an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n* Functional Development Experience and Proficiency in Python, Go, JS, Ruby, or Java\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar)\n* Solid Knowledge of OAuth and SAML\n* Strong Knowledge of HTTP/S Service Architectures\n* Strong Knowledge of Transport Security, specifically TLS and CAs\n* Strong Knowledge of OWASP and Common Software Vulnerabilities\n* Solid Understanding of Secure Coding/Development Practices\n* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Familiarity with Container Technology (Ex. Docker, RKT)\n* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development\n* Strong Interest in Automation Practices\n* Familiarity and Interest in Cloud Services and SAAS Platforms ย (AWS, GCP)\n* Familiarity with Terraform and Ansible Automation Stac\n\n**Perks**\n* Be a member of an exceptional team - weโre growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more! \n\nPlease mention the words **PREPARE SYMBOL BURST** when applying to show you read the job post completely (#RMy4yMS4xMDYuNA==). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to JavaScript, InfoSec, Java, Python, Ruby, Golang, Engineer, Cloud, API, Mobile and Backend jobs that are similar:\n\n
$70,000 — $120,000/year\n
# How do you apply?\n\nThis job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.
Frontpage
๐ Remote jobs
๐ Dark mode
๐ฉโ๐ป Hire remote workers
๐จ Post a remote job
๐ฑ Compact mode
โ๏ธ Remote work blog new
Health insurance for teams
Hacker News mode
Safe for work mode
