\nAs a Principal Security Operations  Engineer at Vimeo, you will engage in a variety of activities, either offensive, defensive, or some combination thereof, ultimately aimed at safeguarding our 300+ million  users who entrust Vimeo with their content every day.\n\nYou’ll plan, carry out, and lead security initiatives to monitor and protect sensitive data and systems from infiltration and cyber-attacks.\n\nYou will likely collaborate frequently with and support developers, as well as members of the infrastructure security team, the compliance team, IT, Product, and other teams throughout the organization.\n\nYou love to solve puzzles, and are a great team player.\n\nThis role is remote.\n\nWhat you'll do:\n\nDepending on your preferences and the current needs of the team, you may either focus on just some of the following areas, or you may choose to become involved with all of them.\n\n\n* As a Principal SecOps Engineer, you will be responsible for ensuring the security of our systems and infrastructure. You will work closely with our development, DevOps teams to identify and remediate vulnerabilities, implement security best practices, and automate security processes. You will also monitor and respond to security incidents and maintain compliance with industry and regulatory standards.\n\n* Conduct security assessments of our systems and infrastructure to identify vulnerabilities and risks, identify risk owners and implement mitigating controls.\n\n* Implement and maintain security controls, including access controls, Zero trust network access (ZTNA), network segmentation, and security monitoring tools.\n\n* Design and operate identity management, lifecycle, governance and SSO.\n\n* Implement and operate cloud security hardening and cloud security posture management across Google cloud and AWS.\n\n* Develop and maintain security policies and procedures, and ensure compliance with industry and regulatory standards.\n\n* Collaborate with SRE, AppSec and Information technology around vulnerability management, endpoint hardening, detection and response.\n\n* Participate in incident response activities, including investigating security incidents and responding to security alerts.\n\n* Collaborate with development and DevOps teams to implement security best practices throughout the software development and infrastructure lifecycle.\n\n* Automate security processes using scripting and other automation tools.\n\n* Stay up-to-date with the latest security threats, vulnerabilities, and technologies.\n\n* Collaboration with the compliance and privacy team — help ensure that our company complies with industry best practices and standards\n\n* Process improvements — help strengthen our own internal processes and procedures\n\n\n\n\nSkills and knowledge you should possess:\n\n\n* 6+ years of experience in a security or operations role, preferably in a cloud-based Linux environment.\n\n* 3+ years experience with container and container orchestration systems\n\n* Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent work experience. \n\n* Strong knowledge of security best practices and industry standards, such as NIST, CIS, and ISO.\n\n* Relevant certifications such as CISSP, CCSP, or AWS Certified Security Specialty are a plus.\n\n* Experience with security tools such as IDS/IPS, SIEM, vulnerability scanners, and endpoint protection.\n\n* Experience with automation tools such as Terraform, Ansible, or Chef.\n\n* Strong scripting skills using Python, shell, or other scripting languages.\n\n* Excellent problem-solving skills and the ability to work well under pressure.\n\n* Good communication and interpersonal skills.Confident working in and across cloud environments like AWS and GCP. Detailed knowledge of at least one cloud environment.\n\n* Confident with common SDLC components, like git, Jira, Jenkins, etc\n\n* At least an upper-intermediate level of English\n\n\n\n\nBonus points (nice skills to have, but not needed):\n\n\n* Experience implementing zero trust network access such as Z-Scaler, Warp, Google beyondCorp etc.\n\n* Experience implementing identity lifecycle including provisioning, quarterly access reviews, role management and deprovisioning.\n\n* Understanding of FIDO2 and machine certificate authentication flows.\n\n* Experience with Crowdstrike and OKTA.\n\n* Experience with system security hardening guidelines and SDLC principles\n\n* Experience with implementing Fedramp and/or HIPAA.\n\n\n\n\nTargeted Base Salary Range:  $149,400 to $227,500\n\nThe base salary range listed above is for candidates located in the U.S., including the New York City metro area.\n\nAt Vimeo, we strive to hire and nurture amazing talent across the globe. Actual salaries will vary depending on factors including but not limited to experience, specialized skills, internal alignment and a candidate’s home base.\n\nBase salary is just one component of Vimeo’s total rewards philosophy. We offer a wide range of benefits and perks that appeal to the variety of needs across our diverse employee base! Other rewards may include bonus or commission, Restricted Stock Units (RSUs), paid time off, generous 401k match, wellbeing resources, and more.\n\n#LI-MM1 \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, Cloud and Engineer jobs that are similar:\n\n $60,000 — $110,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nNew York City, New York, United States

Who We Are\n\nWe're a cast of characters working to shine a spotlight on anime. Crunchyroll is an international business focused on creating both online and offline experiences for fans through content (licensed, co-produced, originals, distribution), merchandise, events, gaming, news, and more. Visit our About Us pages for more information about our collection of brands.\nAbout the Team\n\nAt Crunchyroll, our Core Infrastructure Engineering team forms the foundation on which our services are built and directly influence our customer experience and the velocity of our engineers. Our team focus is to ensure that our developers are enabled, self-service, that everything about our infrastructure is automated\n\nYou will report into our Senior Manager and this role can be fully remote.\n\nAbout the Role:\n\nAs a Senior DevOps Engineer within the Core Infrastructure Engineering team, you are essential in automating and scaling the systems and services that power our streaming platform. You will work with our SRE team, our delivery teams and lead projects related to infrastructure automation, scaling, CICD, driving them forward to completion and ensuring that the platform processes, automation and best practices are being followed. In collaboration with other engineers, you develop tools and systems that support services and facilitate high-quality software delivery.\n\nAbout You:\n\nYou have an in-depth understanding of Software and DevOps methodologies, automation, and infrastructure as code. You have experience in designing, building, and scaling high availability systems and developer platforms. You excel in a collaborative environment and can work well with your teammates, providing a good example to other engineers to achieve high quality and standards in everything they do.\n\n\n* At least a Bachelor's degree in computer science or a related field.\n\n* 8+ years of experience working in production-level environments as a DevOps Engineer\n\n* 5+ years of experience managing containerized infrastructure in Kubernetes.\n\n* Experienced in automation and making reusable patterns and solutions.\n\n* Experienced in GitOps practices and CI/CD, especially tools like ArgoCD and including Infrastructure automation within CI/CD\n\n* You have a passion for supporting and empowering software development teams.\n\n* 5+ years with AWS cloud technologies, coupled with Infrastructure as Code (IaC) such as Terraform & CDK\n\n* Proficient in at least one programming language (Go, Python, TypeScript) with experience in a software engineering environment.\n\n* Familiarity with relational databases like PostgreSQL, MySQL and non-relational databases such as DynamoDB.\n\n* Experience working with and guiding Software Engineers in production best practices, sharing knowledge across teams and teammates.\n\n\n\n\nPluses:\n\n\n* Knowledge, or working experience with GCP\n\n* Knowledge of Crossplane, Amazon Controller for Kubernetes and Backstage are big pluses\n\n* Knowledge of streaming video delivery, video encoding workflows, video origin architecture, and issues of scale for video delivery.\n\n* Understand security concepts such as cryptography, authentication, authorization, and security protocols.\n\n* Proficiency in TypeScript / Golang.\n\n\n\nWhy you will love working at Crunchyroll\n\nNot only will you get to work with fun, passionate and inspired colleagues, you will also...\n\n\n* Receive a great compensation package including salary plus performance bonus earning potential, paid annually.\n\n* Enjoy flexible PTO and time off policies allowing you to take the time you need to be your whole self.\n\n* Appreciate the generous medical, dental, vision, STD, LTD, and life insurance options for you and your family.\n\n* Take advantage of our health saving account HSA program plus health care and dependent care FSA programs.\n\n* Love that we offer an employer match on our 401(k) plan.\n\n* Receive employer paid commuter benefit (for eligible employees)\n\n* Appreciate the generous support program for new parents\n\n* Obtain pet insurance and some of our offices are pet friendly!\n\n\n\n\n#LifeAtCrunchyroll #LI-Remote \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, Video, Cloud, Typescript, Senior and Engineer jobs that are similar:\n\n $62,500 — $110,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nSan Francisco, California, United States