**About Fugue**\n\nFugue helps engineers build and operate secure cloud infrastructure. We continuously monitor infrastructure-as-code and cloud resources for our customers, report on vulnerabilities that we find, and help remediate the underlying issues. Our platform and open source tools are used in CI/CD pipelines to spot misconfigurations early and fix them before they are deployed to production environments.\n\nWe are headquartered in Frederick, MD and have always been remote-friendly. This year we took that one step further and now consider ourselves remote-first, but we also aim to provide office space to those who want it.\n\n\n**Our Product Team**\n\nEngineering at Fugue is part of our Product team. We’re a friendly, small, and nimble group of experienced engineers who are having a great time building and scaling the Fugue SaaS. We care about cloud security and helping our customers find and fix security vulnerabilities. We find a lot of satisfaction in working with incredibly considerate, collaborative, and curious teammates.\n\n\n**The Role**\n\nAs a Senior Software Engineer on the Fugue Product team, you will lend a hand in designing, implementing, and automating the deployment of new features in our SaaS application. You will work with the Product team to create solutions that are technically sound, support a good user experience, and are efficient to implement. You’ll contribute to sprint planning and help ship product updates regularly. You’ll need familiarity with at least one of the major cloud providers and must be able to contribute significantly in a codebase of Python and Go. Your focus will be on backend services, but there are opportunities to assist with frontend development as well.\n\n\n**Requirements**\n\n* 5+ years of software development experience\n* Knowledge of web technologies and Linux proficiency\n* Familiarity with Python or Go\n* Proven track record of problem solving and helping ship software products\n* Experience with deploying infrastructure or applications in AWS\n* Experience or interest in cloud engineering and cloud security\n* Proficiency with automated testing and CI/CD\n\nIf you have experience with CloudFormation, Terraform, or other infrastructure-as-code technologies, then that’s a real bonus. Also, we work with these tools and technologies, so any background with these is a plus: Open Policy Agent, Swagger APIs, MySQL, Redshift, Docker, and serverless computing in AWS.\n\n\n**More about Fugue**\n\nThe principles that matter most to us as a company are to be Curious, Considerate, Customer obsessed, Collaborative, and Committed. Working on a team that lives by these principles is tremendously important both for personal job satisfaction and also our overall productivity and success as a team.\n\nWe offer competitive compensation, a great healthcare plan, and a remote-friendly culture. Plus we offer a free Developer plan for use by any engineer that is looking to secure their cloud.\n\nAt Fugue we believe that the only way to build a successful company is by building a diverse team of talented, smart individuals. We know that humans are better together than alone. Whether or not the government provides protection, we do not discriminate against anyone for any reason. Here’s the standard EEO statement - know that we believe in it!\n\nFugue provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetics, sexual orientation or veteran status. In addition to federal law requirements, Fugue complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment. \n\nPlease mention the words **TURKEY FURY VERIFY** when applying to show you read the job post completely (#RMjE2LjczLjIxNi4yNTA=). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n $120,000 — $170,000/year\n \n\n#Location\nWorldwide

Rainforest QA is an on-demand QA solution. It’s our mission to enable development teams to deliver bug-free software while moving at the speed of continuous delivery. We are truly a global team, allowing us to bring together the best and most diverse talent. Our commitment to the distributed team model and to our company values has earned us [multiple culture and workplace awards](https://www.rainforestqa.com/about) and helped us build a diverse team of individuals working toward the same goal: change the way QA is done. \n\nLearn more about Rainforest QA by visiting our [LinkedIn](https://www.linkedin.com/company/rainforestqa/), [Glassdoor](https://www.glassdoor.com/Overview/Working-at-Rainforest-QA-EI_IE825703.11,24.htm), [Instagram](https://www.instagram.com/rainforestqa/), [Facebook](https://www.facebook.com/RainforestQA/), and [Twitter](https://twitter.com/rainforestqa) pages.\n\n\n**Senior Engineer (Backend)**\n\nAs a Senior Engineer at Rainforest QA you'll be part of an experienced and diverse team with members all over the world.\n\nWe were built as a distributed team from the beginning and we've committed to implementing tools and processes that allow for and support continuous and effective communication across the world.\n\nWhat you'll do\n* Work on our main app, which contains the majority of our business logic and is written in Ruby-on-Rails and backed by PostgreSQL and Redis\n* Work on numerous support services (including our work scheduler and VM management system - both of which manage hundreds of thousands of requests a day) written in a variety of languages (Elixir, Golang, Crystal, Node, Python) chosen because of their suitability to the problem the service is solving\n* Work on internal tooling to improve the development experience of other engineers and ship faster and safer\n* Collaborate with product managers and our customer facing teams to analyze customer problems and design high impact features\n* Lead projects to implement those features\n* Help other team members to achieve their goals\n* Continuously learn about new technologies and ways to solve problems\n* Work with our customer facing teams to triage, troubleshoot, and fix bugs\n* Write unit and integration tests (using our own product!) to ship high quality software\n\nWhat we’re looking for\n* Extensive experience in Ruby (or equivalent dynamic language) and be extremely knowledgeable of the language and associated ecosystem\n* Extensive experience in Ruby on Rails (or equivalent framework) and be extremely knowledgeable of the framework and associated ecosystem\n* Experience in writing and debugging SQL\n* Enthusiasm for building applications using tools like Ruby on Rails, Golang, Elixir, React, PostgreSQL, Redis, BigQuery, and Kubernetes - amongst others\n* Practical experience of working on a React codebase\n* Even though this position is mainly backend focused, we expect you to have some grasp of the whole stack to be able to effectively communicate with engineers across the team, and can make frontend or infrastructure changes when the situation calls for it\n* Professional experience in engineering SaaS products\n* Experience leading projects with teams\n* An ownership mindset: you should look not only at what you’re asked to do, but ask why you’re doing it and how it impacts on the rest of the product, our customers, and whether it makes sense. We expect you to be responsible for your work and to resolve any bugs you might ship\n* Excitement to learn\n* Excellent communication skills and able to give and receive constructive feedback\n* Happy to review code and have your code reviewed\n* Can work effectively remotely with remote team members (we are a fully distributed company)\n* Comfortable working in a large codebase with many stakeholders\n\nIdentify with our company values\n* No BS, No Ego: We are radically candid with each other in every interaction. This means a lack of politics, a lack of showboating, a lack of BS. This also means brevity, clarity of thought, and clarity of communication. We give and take feedback without ego, with the knowledge that we all are operating with good intent. No ego is the check system to balance no BS and keep it kind. No ad-hominem attacks.\n* 1% better every day: Continuous improvement is what motivates us. We design our product, our organization and our careers to be continually improving. Mistakes are only bad if they are repeated. Experiments are only wasted if they are not learned from.\n* Own the journey: We are all owners. We demand that of each other. The journey we own is threefold: our customers’ journey, our company’s journey and our personal journey. Our reason for existence is to nail our customer journey, so that we can scale our company’s success.\n\nHow we'll reward you\n* Flexible, remote work options \n* Competitive salary with equity.\n* A locally-adjusted weekly allowance for lunches.\n* A locally-adjusted monthly allowance for remote office supplies or personal development.\n* Unlimited paid-time off.\n* 3 offsites per year: every ~4 months we arrange an offsite for the whole company to get together so we can get to know our colleagues better and understand what we need to do. The location is ever changing, so you will get to see some new places!*\n* currently on-hold due to COVID-19 \n\n**United States Residents Only:**\n* 100% medical, dental, and vision insurance coverage. 75% for dependents.\n* Voluntary 401k program.\n\nOUR COMMITMENT TO DIVERSITY AND INCLUSION\n\nAt Rainforest QA we believe that diverse teams improve our business. We are an equal opportunity employer and do not discriminate on the basis of race, religion, color, nationality, gender, sexual orientation, age, marital status, veteran status, or disability status. \n\nPlease mention the words **FOSSIL SITUATE BIOLOGY** when applying to show you read the job post completely (#RMjE2LjczLjIxNi4yNTA=). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n $50,000 — $170,000/year\n
\n\n#Benefits\n 🤓 Vision insurance\n\n🌎 Distributed team\n\n
\n\n#Location\nWorldwide

Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space.\n\nAs a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqeta’s open payments platform. This role supports the safety and security of our customer’s payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.\n\nOur ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.\n\nYou'll work closely with Marqeta’s Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and you’ll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.\n\nThe ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). You’re knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers. \n\n# Responsibilities\n **Primary Responsibilities** \n* Build Self Service Tools for QE, Frontend and Backend Engineers\n* Assist with Definition, Implementation, and Maintenance of S-SDLC\n* Lead Application Security Assessments and Design Reviews\n* Execute Critical Validation/Verification Functions in Pre- and Post-Release\n* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline\n* Execute Greybox and Whitebox Application Security Assessments\n* Execute and Support HTTP/S Service-Layer Pen-Testing\n* Develop Security Training and Guidelines for Engineers\n* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases\n* Lead Software Vulnerability Management and Risk Mitigation Practices\n* Offer Guidance and Leadership in PCI Compliance\n \n\n# Requirements\n**Requirements**\n* Demonstrable and Practical Experience in an Development or Security Engineering Role\n* You have a passion for Security and Engineering as a discipline\n* You’re an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n\n**Technical Skills**\n* Functional Development Experience in Python, Go, JS, Ruby, or Java\n* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar)\n* Strong Knowledge of OWASP and Common Software Vulnerabilities\n* Solid Understanding of Secure Coding/Development Practices\n* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development\n* Strong Interest in Automation Practices\n* Familiarity and Interest in Cloud Services and SAAS Platforms  (AWS, GCP)\n\n**Communication Skills**\n* Ability to Communicate Technical Details and Concepts Clearly\n* Strong Capacity to Speak and Act with Candor and Empathy\n\n**Nice to Have**\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Solid Knowledge of OAuth and SAML\n* Strong Knowledge of HTTP/S Service Architectures\n* Strong Knowledge of Transport Security, specifically TLS and CAs \n\n**Perks**\n\n* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more! \n\nPlease mention the words **DIVORCE FRIEND DILEMMA** when applying to show you read the job post completely (#RMjE2LjczLjIxNi4yNTA=). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to JavaScript, InfoSec, Java, Python, Ruby, Golang, Engineer, Cloud, API, Mobile and Backend jobs that are similar:\n\n $70,000 — $120,000/year\n

Are you looking to join an innovative organization powering payments for the next generation of fintech and commerce innovators? Marqeta has built the world’s first open API issuer processor platform from scratch, powering prepaid, debit, and credit cards for the most recognizable names in financial technology, alternative lending, on-demand services and e-commerce. Marqeta has become the leader in payment innovation. Our company is comprised of a team of industry experts, a dynamic approach to working on challenging problems, and an open environment and culture that is focused on ideas and innovation.\n\nNot only do we have an inspiring and innovative culture, but only Marqeta can offer you a chance to help redefine the payments industry. As a testament to the company we've collectively built, our world-class team voted Marqeta one of the Bay Area’s Best Places to Work.\n\nMarqeta is proud of its Oakland roots and strives to build a team as diverse as the cities in which we operate. Underrepresented populations are encouraged to apply. \n\nWe are not expecting any single candidate to have an expertise under all areas of our requirements section. Please apply if you meet some but not all of the requirements.\n\n**Position Summary**\n\nMarqeta is growing a fresh Application Security Team with the goal of significantly improving industry standards in Secure Application Development in the Payments space. We are based in Oakland, California but are open to remote engineers for this role!\n\nAs a member of the Application Security Engineer (ASE) Team, you serve as a key contributor to Marqeta’s open payments platform. This role supports the safety and security of our customer’s payments, ensuring the growth of an innovative platform that provides direct access to a strong suite of Payment Card Issuer/Processor APIs. Our long term goal is the development of a strong Product Security Program that protects the global development and deployment of payment and virtual cards as well as mobile authorization.\n\nOur ASEs define Security Engineering standards and practices around Secure Code, Continuous Delivery/Integration, Pre and Post Release S-SDLC, Verification/Validation models, Penetration Testing and innovative Security tooling designed around self-service and rich integration models.\n\nYou'll work closely with Marqeta’s Frontend and Backend Engineers, you'll contribute to critical design input for API development and service architectures, and you’ll assist the company in developing strong engineering practices in support of Product Security. Our goal is to both enhance the workflow of our engineers with security-centric tool sets and implement innovative methods of testing code in the pre-release phase.\n\nThe ideal candidate has a strong core skill set in two or more of the following areas - Automation, QE Testing, Security Engineering, REST API Design, and/or Strong Knowledge in Modern App Frameworks (esp ReactJS, Rails, or Tomcat). You’re knowledgeable and conversant in common vulnerabilities affecting modern web applications, familiar with modern cloud and datacenter based infrastructure, are looking to grow strong application security experience, and you intend to be an excellent communicator and collaborator. Our ASEs are particularly concerned with scaleable tooling strategies and strong process and practice management, which includes constant refinement in how we engage with our cross-functional team of engineers.\n\n\n# Responsibilities\n **Primary Responsibilities**\n* Build Self Service Tools for QE, Frontend and Backend Engineers\n* Assist with Definition, Implementation, and Maintenance of S-SDLC\n* Lead Application Security Assessments and Design Reviews\n* Execute Critical Validation/Verification Functions in Pre- and Post-Release\n* Implement SAST, DAST and Coherent Dependency Vuln Management into the Build Pipeline\n* Execute Greybox and Whitebox Application Security Assessments\n* Execute and Support HTTP/S Service-Layer Pen-Testing\n* Develop Security Training and Guidelines for Engineers\n* Build and Enhance S/W Testing Strategies with Specialized End-to-End Clients, RSpec, Puppeteer and Selenium-Based Test Cases\n* Lead Software Vulnerability Management and Risk Mitigation Practices\n* Offer Guidance and Leadership in PCI Complianc \n\n# Requirements\n**Requirements**\n* 3-5 yrs Demonstrable and Practical Experience in Application Security Engineering or Comparable Experience in a Security Engineering Role\n* You have a passion for Security Engineering as a discipline\n* You’re an excellent communicator\n* You employ strong collaboration patterns and enjoy creating positive team dynamics\n* You know how to own and support positive outcomes\n* You remain constructive under pressure, with a flexible working style\n* Functional Development Experience and Proficiency in Python, Go, JS, Ruby, or Java\n* Familiarity with Java and JVM based Application Stacks (e.g. Tomcat)\n* Functional Experience with Testing Frameworks and Modern Testing Paradigms (BDD, TDD, and similar)\n* Solid Knowledge of OAuth and SAML\n* Strong Knowledge of HTTP/S Service Architectures\n* Strong Knowledge of Transport Security, specifically TLS and CAs\n* Strong Knowledge of OWASP and Common Software Vulnerabilities\n* Solid Understanding of Secure Coding/Development Practices\n* Experience with Production Build Pipeline and CI/CD stacks (Ex. Jenkins, Nexus, Drone CI)\n* Familiarity with Container Technology (Ex. Docker, RKT)\n* Demonstrable Experience with Python, Ruby, JS and/or Go Tool Development\n* Strong Interest in Automation Practices\n* Familiarity and Interest in Cloud Services and SAAS Platforms  (AWS, GCP)\n* Familiarity with Terraform and Ansible Automation Stac\n\n**Perks**\n* Be a member of an exceptional team - we’re growing and your career and opportunities with us will, too!\n* Rich suite of benefit plans - Employee premiums paid 100%\n* Generous Paid Time Off plan\n* Market-leading fully paid Parental Leave\n* Retirement savings - 401k plan with a Company match\n* Meaningful Equity\n* Bi-annual Hack Weeks to support and reward innovation\n* Beautiful downtown Oakland office in a great location, with stunning views of Lake Merritt\n* Conveniently located close to public transportation\n* Open, transparent culture that includes weekly All Hands meetings, Lunch-and-Learns, all-company offsite, etc.\n* Commuter and Parking monthly subsidy\n* Access to corporate gym membership rates and other discounts and employee perks!\n* Fully stocked kitchen, catered lunches twice a week, breakfast on Fridays, and more! \n\nPlease mention the words **PREPARE SYMBOL BURST** when applying to show you read the job post completely (#RMjE2LjczLjIxNi4yNTA=). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to JavaScript, InfoSec, Java, Python, Ruby, Golang, Engineer, Cloud, API, Mobile and Backend jobs that are similar:\n\n $70,000 — $120,000/year\n