\nAbout DataCamp\n\nThere is incredible power in data and AI—but only if you know what to do with it. DataCamp teaches companies and individuals the skills to work with data and AI in the real world. Our mission is to democratize data and AI skills for everyone! \n\nCompanies and teams of every size use DataCamp to close their skill gaps and make better data-driven decisions. We work with over:\n\n\n* 4000+ companies\n\n* 3000+ academic organizations\n\n* 12+ million DataCamp learners\n\n\n\n\nAnd a global learning community spread across 180+ countries.\n\nAt DataCamp, we believe that everyone deserves access to high-quality education and data and AI skill development for a more secure future. From our first-class courses, projects, code-alongs, certification programs, and DataLab—we are an all-in-one platform on a mission to democratize data and AI education for all.\n\nAbout the role\n\nDataCamp's infrastructure team, which is part of the Platform Engineering department, is a T-shaped cross functional team that looks after CI/CD pipelines, cloud infrastructure (deployed on AWS), logging, monitoring and security. The infrastructure team also looks after the data platform (deployed on GCP) as we have data engineers embedded in our cross functional infrastructure team. The team helps advise our production engineering teams on infrastructure best practices on all DataCamp projects and looks after the whole DataCamp Platform to ensure commercial availability for our customers.\n\nTo facilitate this we have a highly automated CI/CD pipeline based on CircleCI and Spotify Backstage (internal engineering portal) which allows developers to ship what they build, increasing deployment speed and ownership and visibility. The infrastructure team aims to enhance developer productivity, scalability, availability and security by providing feedback cycles for teams so they follow a model of continuous improvement. \n\nIt will be your role as a part of the Infrastructure team to enable the development teams to deploy their applications as seamlessly as possible and also advise them on either new content for DataCamp courses or any new projects that require infrastructure expertise. You will be managing company wide shared resources which support our microservice architecture, and building upon internal services. The team has a strong bias towards providing self-serve and automation for deployment/infrastructure provisioning as well as cost control and ensuring security standards. The infrastructure team aims to support other teams using these services rather than being a central bottleneck in the company. You will play a key part in planning future improvements and owning your day to day work.\n\nAll DataCamp Platform workloads are deployed on EKS (Kubernetes) and our Istio service mesh by the self-service deployment pipelines. All infrastructure is provisioned using Terraform. The infrastructure team also manages the Kong API Gateway allowing external ingress traffic into the DataCamp Platform. The DataCamp Data Platform is deployed on Big Query and airflow manages our data pipeline jobs.\n\nAs well as providing means for other development teams to deploy their applications as seamlessly as possible, the infrastructure team takes ownership of the our learn multiplexer product that schedules course sessions for learners on the DataCamp platform. \n\nThe ideal candidate\n\n\n* Has 2+ years of administering/maintaining infrastructure related tools (AWS, Docker, K8s)\n\n* Has 2+ years experience advising on/implementing deployment pipelines (CI/CD)\n\n* Has 2+ years of web development experience (javascript, go, python, node, ruby)\n\n\n\n\nHas 2+ years of security tooling experience (sonarcloud, vulnerability scanning tooling)\n\n\n* You have experience with Infrastructure-as-code (Terraform, Ansible, etc)\n\n* Has excellent oral and written communication skills\n\n* Is interested in understanding and scaling complex systems\n\n* Is interested in monitoring and self healing systems\n\n* Is highly organized with a flexible, can-do attitude and a willingness/aptitude for learning\n\n* Improves the team with code reviews, technical discussions and documentation\n\n* Is able to work collaboratively in teams and develop meaningful relationships to achieve common goals\n\n\n\n\nIt's a plus if\n\n\n* You have an understanding of data engineering principles\n\n* You have experience with API-gateways or service meshes (Kong, Istio, etc)\n\n* You are passionate about data science and education\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, Cloud, API, Senior and Engineer jobs that are similar:\n\n $60,000 — $100,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nBerlin, Berlin, Germany

\nAs a Principal Application Security Engineer at Vimeo, you will engage in a variety of activities, either offensive, defensive, or some combination thereof, ultimately aimed at safeguarding our users who entrust Vimeo with their content every day.\n\nYou’ll plan, carry out, and lead security initiatives to monitor and protect sensitive data and systems from infiltration and cyber-attacks.\n\nYou will likely collaborate frequently with and support developers, as well as members of the infrastructure security team, the compliance team, IT, Product, and other teams throughout the organization.\n\nYou love to solve puzzles, and are a great team player.\n\nThis role is remote. The role requires three hours of overlap with the US Eastern time zone (i.e., New York City) daily.\n\nWhat you’ll do:\n\nDepending on your preferences and the current needs of the team, you may either focus on just one or two of the following areas, or you may choose to become involved with many of them.\n\n\n* Security architecture — create a technical plan for partitioning and consolidating our cookies; draft up a sequence diagram for a new middleware to prevent IDOR attacks; implement a POC for leveraging CAPTCHA challenges in cross-origin embedded iframes; draft some code to modify the expiration behavior of our JWTs then pair with our API team to get feedback\n\n* Penetration testing — either hunt for security issues on our production or staged applications during an open-box internal pen test, or help coordinate an engagement with an external firm\n\n* Writing code for internal automated security tools — write some code, usually in Python, Bash, or Go, to support any of our team's various initiatives. Often we strive to facilitate a culture of “paved roads” for our developers, such that it is easy for any developer to incorporate security into their designs and implementations\n\n* Threat modeling — consider how malicious attackers may compromise our systems, and advise developers and product managers on what defenses are needed\n\n* Code reviews — discover weakness in our source code before it reaches production\n\n* Bug bounty program — help triage new incoming reports on a daily basis, plus launch creative initiatives to increase researcher engagement on our programs\n\n* Web Application Firewall and Rate Limiting — expand coverage and tune new rules while coordinating with developers, support team members, and the site reliability team\n\n* Remediation — enable and encourage developers to correctly fix recently discovered security issues in a timely manner, ultimately reducing our Mean Time To Remediate\n\n* Secure Software Development Lifecycle — configure automated tooling (eg. static and dynamic code analysis,, IAST) in our SDLC to detect security issues in our source code before it reaches production\n\n* Developer Education, Security Culture — create fun ways to spread technical security awareness throughout the engineering department\n\n* Incident response — lead or assist in running the various phases of an incident response, including initial detection, triage, containment, recovery, root cause analysis, retrospective, etc.\n\n* Collaboration with the infrastructure security team — pair with members of the infrastructure security team on various projects to secure our cloud instances and employee workstations\n\n* Collaboration with the compliance and privacy team — help ensure that our company complies with industry best practices and standards\n\n* Process improvements — help strengthen our own internal processes and procedures\n\n* A typical day will look like:\n\n\n\n* Engage with one or more product development teams and guide them through a threat model and data flow analysis.\n\n* Review the code for major new functionality to ensure security best practices are followed.  \n\n* Review new tickets in our bug bounty program (http://hackerone.com/vimeo) and use your system design and threat modeling knowledge to reproduce, define risk and mitigating controls and propose a fix., \n\n* A call or two with Development, Product Management teams to discuss security-related issues\n\n* Pen test a new feature in a staging environment with Burp Pro\n\n* Assist the compliance team on a privacy-related project\n\n* Provide technical advice in response to occasional questions from developers and other members of the security team\n\n\n\n\n\n\nSkills and knowledge you should possess:\n\n\n* Required: 5+ years of prior experience in either software development, devops, or site reliability engineering with hands-on coding experience.\n\n* Preferred: prior experience in Application Security\n\n* 7+ total years of relevant experience in Engineering, Application Security, or a similar technical field.\n\n* Strong knowledge of modern web, mobile, and network security\n\n* Strong programming skills with at least one of the following languages, and the ability to read all of them: Python, Go, PHP, Javascript, and Ruby\n\n* Expertise with application pen testing, using tools like Burp or Zap\n\n* Confident working in and across cloud environments like AWS and GCP. Detailed knowledge of at least one cloud environment.\n\n* Confident with shell scripting\n\n* Confident with common SDLC components, like git, Jira, Jenkins, etc\n\n* Confident ability to communicate technical security concepts to developers\n\n* At least an upper-intermediate level of English\n\n\n\n\nBonus points:\n\n\n* Link to a Github repo with security tools/scripts you’ve developed or help maintain\n\n* Full-stack web development experience creating RESTful applications (in any language) is a big plus\n\n* Open source vulnerability research or blog posts is a big plusS\n\n* Experience with system security hardening guidelines and SDLC principles\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Cloud, API and Engineer jobs that are similar:\n\n $62,500 — $105,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nTel Aviv, Tel Aviv District, Israel

\nCrowdbotics is on a mission to democratize the software development process by providing entrepreneurs, product managers, and technical teams with the tools to build applications with zero to minimal coding. Embedded in our DNA are the following beliefs and values:\n\n\n* open systems empower our customers to build future-proof businesses on our platform.\n\n* open architectures enable customers to leverage the “best-of-breed” technologies for their business and our platform should support and embrace them.\n\n* machine-generated code is just a means to an end. It needs to coexist with human-written code, and be readable by humans in order to be truly useful.\n\n* customers stay on our platform because of the openness, flexibility, and value that our platform offers, and not because they are locked into our platform through inaccessible code.\n\n* talent is global and we will strive to make it accessible to our customers with minimal effort. We are looking for like-minded people who believe in our mission, and share our vision of a world where anyone can build software - at scale.\n\n\n\n\nCrowdbotics is in need of a technical writer to make our products easy to use and integrate by creating useful content for developers and everyday users. Our documentation must exemplify quality and instill trust.\n\nCrowdbotics cares deeply about the developer experience for our customers and agency partners. Our products require innovation and creativity to create an excellent user experience and to increase developer velocity. We need writers with exceptional writing ability and solid technical competence to provide an engaging developer experience.\n\nKey Responsibilities:\n\n\n* Document new products, features, and APIs\n\n* Document standards, guidelines, and best practices for customer and agency developers\n\n* Organize documentation and make it easily discoverable\n\n* Maintain content quality through curation and content performance analysis\n\n* Push Crowdbotics and the industry forward by dreaming up and implementing new ways to deliver, author, analyze, and interact with technical content\n\n\n\n\nQualifications:\n\n\n* 5+ years of Technical Writing experience \n\n* Able to collaborate, partner with, and learn from other members of the product team \n\n* Proficient in HTML and Markdown\n\n* Conversant with Git\n\n* Creative, empathetic, optimistic, and curious\n\n* Adept at communicating technical concepts clearly and precisely\n\n* Able to quickly iterate and improve\n\n* A perpetual learner and teacher\n\n* Experience writing about backend languages like Ruby, Go, Python, PHP, Node, or Java\n\n* Experience selection and implementation of automated documentation tools\n\n* Experience leading information architecture projects\n\n\n\nBonus attributes:\n\n\n* Remote work experience.\n\n* Previous experience with designing mobile or web app development applications for technical and non-technical users.\n\n* Experience with React, Bootstrap, Heroku and/or Shopify.\n\n* You have built an app with the Crowdbotics App Builder (https://www.crowdbotics.com/app-builder).\n\n* Note: If you are excited about this role and our mission - we strongly encourage you to share your design portfolio as part of your application.\n\n\n\nAbout Crowdbotics\n\n\n* Crowdbotics is a new way to build software using modular parts and a visual build tool. We’ve made a bet that the people building products and companies around Crowdbotics represent a new kind of software creator that, if we do our job right, will become the new normal for how people build software in the next decade — with readymade parts, cloud talent, and automated tools that empower everyone to be a maker. We see this as the future, and our customers, investors, and the market do too. To that end, Crowdbotics is creating what we call an “Operating System for Application Development”. What exactly does this mean? Contemporary application development requires the use of multiple tools and processes that are often spread across multiple disconnected systems. The Crowdbotics App Builder seeks to unify all these tools and processes into a single system with 4 key facets:\n\n* No-code engine which enables users to build applications without coding, including a way to create database models visually, import screen layouts and designs from common development tools, and visually link screens to external services.\n\n* Workforce management which enables a user to source talent from a curated menu of Crowdbotics experts who can help take your product over the finish line.\n\n* Process and Project Management: We enable a user to manage all aspects of their agile development process, including tasks, milestones, and deadlines.\n\n* Deployment and post-deployment maintenance which allows the user to one-click deploy their application to various cloud providers (Heroku being the most popular), app stores, and to provision and manage other infrastructure resources seamlessly.\n\n\n\nTop 10 reasons to work for Crowdbotics:\n\n\n* Work with helpful, kind, motivated, and talented people.\n\n* Work remote so you have no commute and are free to travel and move.\n\n* Have flexible work hours so you are there for other people and free to plan the day however you like.\n\n* Everyone works remote, but you don't feel remote. We don't have a head office, so you're not in a satellite office.\n\n* Our open architectures enable customers to leverage the “best-of-breed” technologies for their business and our platform supports and embraces them.\n\n* Talent is global and we will strive to make it accessible to our customers with minimal effort. We are looking for like-minded people who believe in our mission, and share our vision of a world where anyone can build software - at scale.\n\n* Work on a product used by lots of people that care about what you do.\n\n* Our open systems empower our customers to build future-proof businesses on our platform.\n\n* Focused on results, not on long hours, so that you can have a life and don't burn out.\n\n* Open internal processes: know what you're getting into and be assured we're thoughtful and effective.\n\n\n\n\nCrowdbotics is an E-Verify Employer and this organization participates in E-Verify. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Cloud, HTML, Mobile and Backend jobs that are similar:\n\n $45,000 — $90,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nBerkeley, California, United States