\nLocation: EMEA (Romania, Lithuania, and Poland only)\n\n\nIn the digital age, content rules.\n\n\nMore people are now involved in creating and distributing content than ever before. We have all become the media; the media has been marginalized, and brands are now broadcasters.\nEveryone has a story to tell or something to sell. There is a need to create, connect, post, publish, showcase, and share.\nSo, say hello to Strapi! We exist to fuel the world’s creativity and productivity by unleashing the power of content.\nBeyond a headless CMS, we are building an open composable content platform with infinite customization capabilities, the largest open-source community, and a broad open ecosystem.\n\n\n🚀 Strapi has a caring, transparent, and collaborative culture as a whole, but every team creates its own energy and environment.\nAt Strapi, we don't expect you to meet all of the requirements of the Support Engineer role. If you believe in what you have to contribute and in your ability to elevate the team, we want to hear about your story.\nFew of us would be here had we not taken the chance.\n\n\n🙏🏾 Why your role is important at Strapi\n\n\nOn a daily basis, you will work with both the community users and clients of Strapi. The support team is answering community technical questions on the different platforms we have. We also dig deep into the product to find workarounds to unblock users in their project development. We are currently working on the restructuring of all technical resources we have, you will be involved in this massive task.\n\n\n👋🏿 The User Success Team culture is\nAt Strapi, we are a team of experts comprising support engineers and customer success managers who are passionate about helping Strapi customers and other Strapiers.\nUser Success members are always ready and willing to learn something new.\nOur team is not just prepared but meticulously organized and ready to efficiently handle multiple tasks in a way that instills confidence in our ability to deliver.\nReady and willing to give and receive feedback to improve continually.\n\n\n📋 How will my job look like on a daily basis?\n\n\n- Make sure all technical questions have an answer\n- Create technical resources to help users to achieve their goals using Strapi\n- Help clients during their project development\n- Structure support processes in collaboration with the sales and customer success team\n- Analyze and report the community users' and clients feedback to the product team\n\n\n💙 About you:\n- Strong proficiency in React and Node.js. A general understanding of our stack Redux, Saga, Styled-components, Webpack, Koa, and REST/GraphQL\n- Significant experience with web development and technical support\n- A passion for learning, teaching, and helping others\n- Excellent communication and presentation skills\n- 3 years experience with Javascript, including at least 3 with React and Node.js\n- Familiarity with common front-end and back-end development tools\n- Fundamental understanding of common application deployment systems such as CI/CD pipelines, cloud hosting, PaaS systems, and security frameworks\n- Experience with working remotely a big plus.\n\n\n👾 Strapi benefits:\n🌍 Work from anywhere: We're a remote-first company, so we can work wherever our home is. And WiFi.\n🚑 Expanded health benefits: Including premium medical, dental, and vision coverage.\n💰 Equity for everyone: We win together. On top of a competitive salary, every Strapier has equity that grows with you in the company.\n🐣 Parents on a mission: 16 weeks of fully paid parental leave for every new Strapi parent.\n💻 You'll always be up to date: We’ll cover all hardware and software needed, so you’re always with the latest versions.\n🎓 Grow as you are: From day one, we provide budget and tools to learn and grow both professionally and personally.\n🎉 Offsite: We all gather physically or virtually twice a year.\n🌱 Mental health support: We offer Moka.care one-on-one sessions with certified specialists.\n👭 Referral program: $1500 if you refer someone to Strapi and they are hired. \n🙏🏾 Vacation & Emergency days: At least 25 days of paid vacation. 5 paid emergency days per year, for each Strapier in trouble (miscarriage, grief, domestic violence, sick kids or dependents) who needs a day or a few days off to manage it.\n\n\nMeet the team!\nFirst video call with the Talent Acquisition Team or the hiring Manager\nTechnical assessment & Assessment debriefing\nTeam meetings (with a few Strapiers)\nReferences check\nMore details here: https://miro.com/app/board/uXjVOMEXZ58=/\nAt any moment, the process can stop, and the team will be happy to give you a call to share their feedback or get into more details.\n\n\n🎉 Celebrating You being YOU!\nStrapi's mission is to empower the worldwide community of users to build a million tailor-made projects. To do that, we are growing a diverse team representative of the users we serve. We are committed to building a safe workplace where everyone feels empowered to bring their authentic selves. By being you and bringing your unique difference, perspective, culture, experience, lifestyles, and challenges, you actually help all of us succeed and grow to be the best version of ourselves!\nIt is important to us to create an accessible and inclusive candidate experience. Please let us know if there are any adjustments we can make to assist you during the hiring and interview process.\n\n\n📖 Want to learn more about us?\nTake a look at our open positions at our Careers Website, Join our community, read our latest news at Strapi's blog, learn more about our story and check out our Glassdoor page!\n\n\n\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to React, Cloud, Sales and Engineer jobs that are similar:\n\n $60,000 — $100,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nAbout the Team:\n\nNetlify’s SRE team is on a mission to scale Netlify’s infrastructure to support our next million users. We focus on ensuring application resiliency and delivering a robust compute and network platform at scale. As a Site Reliability Engineer within the Infrastructure SRE team, you’ll play a key role in designing, developing, and delivering solutions that enhance the scalability, availability, and efficiency of our platform. Whether you're an experienced systems engineer or a software developer eager to dive into systems, we’re excited to hear from you!\n\nWe are a remote-first, globally distributed group, emphasizing asynchronous communication to prioritize execution over meetings. Documentation is at the core of how we operate, and we are deeply committed to our values of transparency, empowerment, and collective ownership. We foster a culture of curiosity, collaboration, and support, where there are no dumb questions. Everyone on our team knows their contributions matter, feels empowered in their role, and can quickly see the impact of their efforts. At Netlify, we believe diversity is key to innovation, and as a remote-first company, we value the unique perspectives that come from our team’s varied backgrounds. Whether you’re launching a new career or growing an established one, Netlify is a place where you can do impactful work while maintaining a healthy work-life balance\n\nWhat You’ll Do: \n\n\n* Manage full infrastructure lifecycle from design to decommission, ensuring systems are reliable and efficient.\n\n* Participate in an on-call rotation for the compute platform and related systems.\n\n* Automate routine tasks and develop tools to improve system efficiency and reduce the human intervention time on any tasks.\n\n* Conduct system performance tuning and troubleshooting, as well as capacity planning, to ensure system reliability and efficiency.\n\n* Participate in the creation and testing of disaster recovery plans.\n\n* Monitor and maintain observability systems to ensure issues are identified and resolved proactively.\n\n* Educate team members on security best practices and emerging threats.\n\n\n\n\nWhat You'll Bring: \n\n\n* Several years of experience in SRE, DevOps, or related roles.\n\n* Proven experience working in hyperscale cloud environments.\n\n* Demonstrated ability to lead infrastructure projects.\n\n* Strong understanding of network protocols and configurations.\n\n* Experience with automation tools (e.g., Ansible, Terraform) and scripting languages (e.g., Python, Bash, Golang).\n\n* Experience automating component deployment across multiple environments using tools like Jenkins, CircleCI, or GitHub Actions.\n\n* Proficient observability and log analysis techniques to detect and resolve system issues.\n\n* Effective communication skills for both technical and non-technical stakeholders.\n\n* Familiarity with compliance requirements and frameworks: PCI, ISO 2701, HIPAA, SOC\n\n\n\n\nApplying\n\nNot sure you meet 100% of our qualifications? Please apply anyway!\n\nWhen applying please include: \n\nA resume or short listing of your job history & skills (link to a LinkedIn profile would be fine). We appreciate a cover letter explaining why you would enjoy working in this role at Netlify to get to know you a bit better, though this is not required and will not impact your application. Our mission is to “build a better web” and that cannot be done without a diversity of skill sets, backgrounds and thoughts. \n\nOf everything we've ever built at Netlify, we are most proud of our team. Netlify is an Equal Opportunity Employer. We are devoted to building a team of people with diverse backgrounds and lifestyles. Driving equality empowers our team, enables us to innovate, and helps us maintain a more inclusive environment. We don’t discriminate against employees or applicants based on gender identity or expression, sexual orientation, religion, age, race, military/veteran status, citizenship, pregnancy status, or any other differences. If we can do anything to provide a better interview, i.e. accommodate a disability, then please let us know by emailing [email protected]. \n\nAbout Netlify\n\nAt Netlify, we’re on a mission to build a better web by making it easier than ever to build, deploy, and scale web applications. By unifying an entire ecosystem of web development tools, content sources, services, and APIs into one simplified workflow, Netlify empowers top brands to ship campaigns faster, reduce risk, and boost productivity and revenue. At the forefront of the composable web movement, with over 4 million web developers and businesses using the platform, with Netlify, you can connect everything and build anything. \n\nWe are a Series D company that has raised over $200M from investors such as Andreessen Horowitz, Kleiner Perkins, EQT, Bessemer, BOND, and Menlo Ventures. As a fully distributed company, we aim to create a company culture where the best idea can come from anywhere and strive to be thoughtful, compassionate, and collaborative in our work. If this sounds like something you’d like to be part of, we’re excited to connect with you!\n\nAt Netlify, we are committed to a compensation philosophy that prioritizes fairness and equity, positions our employee compensation competitively in the market, recognizes and rewards performance, and takes a comprehensive approach to our rewards package. We anchor our compensation philosophy on a market-based approach, therefore salary ranges may differ depending on the labor cost in a particular location. The salary provided is in addition to robust benefits and participation in Netlify’s equity plan. Our base compensation for this role is targeted at $136,000 - $184,000  for most US-based locations. Candidates outside the US or in premium markets should consult with their Talent Acquisition partner regarding location-based ranges, as they may be higher or lower than the average US range listed. The starting pay will be determined based on multiple factors, including expertise and skills, market demands, experience, internal equity, and applicable geographic location. These compensation packages and ranges are subject to change and may be modified in the future. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Testing, Cloud, Senior and Engineer jobs that are similar:\n\n $60,000 — $110,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nToronto, Ontario, Canada

\nAI is the new electricity. Millions of AI engineers are needed to transform industries with AI, particularly in the realm of GenAI, and we’re building an education platform to train them. With a mission to grow and connect the global AI community, DeepLearning.AI is an education technology company that is empowering the global workforce to build an AI-powered future through world-class education, hands-on training, and a collaborative community. We’re a small tech company with serious credentials, exciting marketing challenges, and wonderful teammates.\n\n\nWe are looking for a Fullstack Developer who can build a prototype for a new product we’re building. The ideal candidate is a creative self-starter who can work collaboratively and independently to execute new ideas, thrives in a fast-paced environment, and has a passion for AI and education. This position reports to the GM for the new business for college admissions that we’re exploring. We are open to remote workers within 3 time zones of California (PDT / GMT -7).\n\n\nThe keys to success in this position will be (i) expertise with front-end and back-end development frameworks and coding languages (ii) a strong understanding of visual product design and user experience (iii) self-starter who is comfortable in a very early stage environment and can work with the GM and other cross-functional team members (as needed). \n\n\nThis is a remote contractor position open to candidates based in Latin America. \n\n\n\nHere’s what you’ll do:\n* Build the front-end of applications through appealing visual design.\n* Develop and manage well-functioning databases and applications.\n* Test software to ensure responsiveness and efficiency.\n* Troubleshoot, debug and upgrade software.\n* Create security and data protection settings.\n* Build features and applications.\n\n\n\nHere are the skills you should have:\n* Experience developing desktop applications from scratch. \n* Familiarity with common stacks.\n* Knowledge of multiple front-end languages and libraries (e.g. HTML/ CSS, JavaScript).\n* Knowledge of multiple object-oriented languages (e.g. Java, Python) and multiple frameworks (e.g. Angular, React, Node.js).\n* Familiarity with databases (e.g. MySQL, MongoDB), web servers (e.g. Apache) and UI/UX design.\n* Excellent communication skills and the ability to have in-depth technical discussions with both the engineering team and business people.\n* Excellent English language skills.\n* Self-starter and comfort working in an early-stage environment.\n* Ability to prototype, build, ship and iterate quickly on software products.\n* Strong project management and organizational skills.\n\n\n\nBonus if you have:\n* BSc in Computer Science, Mathematics or similar field; Master’s or PhD degree is a plus.\n* Understanding of AI/ML models.\n* Understanding of big data tools, including Hadoop, Spark, Kafka, etc.\n* Experience with consumer applications and data handling.\n* Familiarity with data privacy regulations and best practices.\n\n\n\nWhat you get working with us:\n* Being part of a world-class team of subject matter experts from various fields (marketing, operations, product, etc.) trying to change the world.\n* Work across cultural and geographical lines alongside our offices in different parts of the world.\n* The opportunity to be exceptionally creative with your high-impact ideas.\n\n\n\nOur defining values:\n* We care deeply about our learners: We let our learner's needs guide our actions and decisions and put our mission ahead of ourselves.\n* We are great at what we do: We strive for excellence in all dimensions, especially in the quality of the content we create and the people we hire.\n* We default to action: We are comfortable acting with limited information and taking ownership of our decisions. \n* We ask why: We ask the hard questions and are open to being in the wrong. We advocate for the best ideas, not our ideas. \n* We are honest and authentic: We are transparent as an organization, over-communicate to build trust, and share our failures just as we do our successes.\n* We do this together: We help each other grow and succeed and have fun at work, even in a remote environment.\n\n\n\n\n\n\nAt DeepLearning.AI, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants without regard to race, color, religion, sex, pregnancy (including childbirth, lactation, and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. DeepLearning.AI believes that diversity and inclusion among our employees are critical to our success as a company. We seek to recruit, develop, and retain the most talented people from a diverse candidate pool. Selection for employment is decided based on qualifications, merit, and business needs. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Education, Marketing and Engineer jobs that are similar:\n\n $35,000 — $62,500/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nLATAM

\nAbout DataCamp\n\nThere is incredible power in data and AI—but only if you know what to do with it. DataCamp teaches companies and individuals the skills to work with data and AI in the real world. Our mission is to democratize data and AI skills for everyone! \n\nCompanies and teams of every size use DataCamp to close their skill gaps and make better data-driven decisions. We work with over:\n\n\n* 4000+ companies\n\n* 3000+ academic organizations\n\n* 12+ million DataCamp learners\n\n\n\n\nAnd a global learning community spread across 180+ countries.\n\nAt DataCamp, we believe that everyone deserves access to high-quality education and data and AI skill development for a more secure future. From our first-class courses, projects, code-alongs, certification programs, and DataLab—we are an all-in-one platform on a mission to democratize data and AI education for all.\n\nAbout the role\n\nDataCamp's infrastructure team, which is part of the Platform Engineering department, is a T-shaped cross functional team that looks after CI/CD pipelines, cloud infrastructure (deployed on AWS), logging, monitoring and security. The infrastructure team also looks after the data platform (deployed on GCP) as we have data engineers embedded in our cross functional infrastructure team. The team helps advise our production engineering teams on infrastructure best practices on all DataCamp projects and looks after the whole DataCamp Platform to ensure commercial availability for our customers.\n\nTo facilitate this we have a highly automated CI/CD pipeline based on CircleCI and Spotify Backstage (internal engineering portal) which allows developers to ship what they build, increasing deployment speed and ownership and visibility. The infrastructure team aims to enhance developer productivity, scalability, availability and security by providing feedback cycles for teams so they follow a model of continuous improvement. \n\nIt will be your role as a part of the Infrastructure team to enable the development teams to deploy their applications as seamlessly as possible and also advise them on either new content for DataCamp courses or any new projects that require infrastructure expertise. You will be managing company wide shared resources which support our microservice architecture, and building upon internal services. The team has a strong bias towards providing self-serve and automation for deployment/infrastructure provisioning as well as cost control and ensuring security standards. The infrastructure team aims to support other teams using these services rather than being a central bottleneck in the company. You will play a key part in planning future improvements and owning your day to day work.\n\nAll DataCamp Platform workloads are deployed on EKS (Kubernetes) and our Istio service mesh by the self-service deployment pipelines. All infrastructure is provisioned using Terraform. The infrastructure team also manages the Kong API Gateway allowing external ingress traffic into the DataCamp Platform. The DataCamp Data Platform is deployed on Big Query and airflow manages our data pipeline jobs.\n\nAs well as providing means for other development teams to deploy their applications as seamlessly as possible, the infrastructure team takes ownership of the our learn multiplexer product that schedules course sessions for learners on the DataCamp platform. \n\nThe ideal candidate\n\n\n* Has 2+ years of administering/maintaining infrastructure related tools (AWS, Docker, K8s)\n\n* Has 2+ years experience advising on/implementing deployment pipelines (CI/CD)\n\n* Has 2+ years of web development experience (javascript, go, python, node, ruby)\n\n\n\n\nHas 2+ years of security tooling experience (sonarcloud, vulnerability scanning tooling)\n\n\n* You have experience with Infrastructure-as-code (Terraform, Ansible, etc)\n\n* Has excellent oral and written communication skills\n\n* Is interested in understanding and scaling complex systems\n\n* Is interested in monitoring and self healing systems\n\n* Is highly organized with a flexible, can-do attitude and a willingness/aptitude for learning\n\n* Improves the team with code reviews, technical discussions and documentation\n\n* Is able to work collaboratively in teams and develop meaningful relationships to achieve common goals\n\n\n\n\nIt's a plus if\n\n\n* You have an understanding of data engineering principles\n\n* You have experience with API-gateways or service meshes (Kong, Istio, etc)\n\n* You are passionate about data science and education\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, Cloud, API, Senior and Engineer jobs that are similar:\n\n $60,000 — $100,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nBerlin, Berlin, Germany

\nAs a Principal Application Security Engineer at Vimeo, you will engage in a variety of activities, either offensive, defensive, or some combination thereof, ultimately aimed at safeguarding our users who entrust Vimeo with their content every day.\n\nYou’ll plan, carry out, and lead security initiatives to monitor and protect sensitive data and systems from infiltration and cyber-attacks.\n\nYou will likely collaborate frequently with and support developers, as well as members of the infrastructure security team, the compliance team, IT, Product, and other teams throughout the organization.\n\nYou love to solve puzzles, and are a great team player.\n\nThis role is remote. The role requires three hours of overlap with the US Eastern time zone (i.e., New York City) daily.\n\nWhat you’ll do:\n\nDepending on your preferences and the current needs of the team, you may either focus on just one or two of the following areas, or you may choose to become involved with many of them.\n\n\n* Security architecture — create a technical plan for partitioning and consolidating our cookies; draft up a sequence diagram for a new middleware to prevent IDOR attacks; implement a POC for leveraging CAPTCHA challenges in cross-origin embedded iframes; draft some code to modify the expiration behavior of our JWTs then pair with our API team to get feedback\n\n* Penetration testing — either hunt for security issues on our production or staged applications during an open-box internal pen test, or help coordinate an engagement with an external firm\n\n* Writing code for internal automated security tools — write some code, usually in Python, Bash, or Go, to support any of our team's various initiatives. Often we strive to facilitate a culture of “paved roads” for our developers, such that it is easy for any developer to incorporate security into their designs and implementations\n\n* Threat modeling — consider how malicious attackers may compromise our systems, and advise developers and product managers on what defenses are needed\n\n* Code reviews — discover weakness in our source code before it reaches production\n\n* Bug bounty program — help triage new incoming reports on a daily basis, plus launch creative initiatives to increase researcher engagement on our programs\n\n* Web Application Firewall and Rate Limiting — expand coverage and tune new rules while coordinating with developers, support team members, and the site reliability team\n\n* Remediation — enable and encourage developers to correctly fix recently discovered security issues in a timely manner, ultimately reducing our Mean Time To Remediate\n\n* Secure Software Development Lifecycle — configure automated tooling (eg. static and dynamic code analysis,, IAST) in our SDLC to detect security issues in our source code before it reaches production\n\n* Developer Education, Security Culture — create fun ways to spread technical security awareness throughout the engineering department\n\n* Incident response — lead or assist in running the various phases of an incident response, including initial detection, triage, containment, recovery, root cause analysis, retrospective, etc.\n\n* Collaboration with the infrastructure security team — pair with members of the infrastructure security team on various projects to secure our cloud instances and employee workstations\n\n* Collaboration with the compliance and privacy team — help ensure that our company complies with industry best practices and standards\n\n* Process improvements — help strengthen our own internal processes and procedures\n\n* A typical day will look like:\n\n\n\n* Engage with one or more product development teams and guide them through a threat model and data flow analysis.\n\n* Review the code for major new functionality to ensure security best practices are followed.  \n\n* Review new tickets in our bug bounty program (http://hackerone.com/vimeo) and use your system design and threat modeling knowledge to reproduce, define risk and mitigating controls and propose a fix., \n\n* A call or two with Development, Product Management teams to discuss security-related issues\n\n* Pen test a new feature in a staging environment with Burp Pro\n\n* Assist the compliance team on a privacy-related project\n\n* Provide technical advice in response to occasional questions from developers and other members of the security team\n\n\n\n\n\n\nSkills and knowledge you should possess:\n\n\n* Required: 5+ years of prior experience in either software development, devops, or site reliability engineering with hands-on coding experience.\n\n* Preferred: prior experience in Application Security\n\n* 7+ total years of relevant experience in Engineering, Application Security, or a similar technical field.\n\n* Strong knowledge of modern web, mobile, and network security\n\n* Strong programming skills with at least one of the following languages, and the ability to read all of them: Python, Go, PHP, Javascript, and Ruby\n\n* Expertise with application pen testing, using tools like Burp or Zap\n\n* Confident working in and across cloud environments like AWS and GCP. Detailed knowledge of at least one cloud environment.\n\n* Confident with shell scripting\n\n* Confident with common SDLC components, like git, Jira, Jenkins, etc\n\n* Confident ability to communicate technical security concepts to developers\n\n* At least an upper-intermediate level of English\n\n\n\n\nBonus points:\n\n\n* Link to a Github repo with security tools/scripts you’ve developed or help maintain\n\n* Full-stack web development experience creating RESTful applications (in any language) is a big plus\n\n* Open source vulnerability research or blog posts is a big plusS\n\n* Experience with system security hardening guidelines and SDLC principles\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Cloud, API and Engineer jobs that are similar:\n\n $62,500 — $105,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nTel Aviv, Tel Aviv District, Israel

\nAs a Sr. Application Security Engineer at Vimeo, you will engage in a variety of activities, either offensive, defensive, or some combination thereof, ultimately aimed at safeguarding our users who entrust Vimeo with their content every day.\n\nYou’ll plan, carry out, and lead security initiatives to monitor and protect sensitive data and systems from infiltration and cyber-attacks.\n\nYou will likely collaborate frequently with and support developers, as well as members of the infrastructure security team, the compliance team, IT, Product, and other teams throughout the organization.\n\nYou love to solve puzzles and are a great team player.\n\nThis role is remote.\n\nWhat you’ll do:\n\nDepending on your preferences and the current needs of the team, you may either focus on just one or two of the following areas, or you may choose to become involved with many of them.\n\n\n* Penetration testing — either hunt for security issues on our production or staged applications during an open-box internal pen test or help coordinate an engagement with an external firm\n\n* Writing code for internal automated security tools — write some code, usually in Python, Bash, or Go, to support any of our team's various initiatives. Often, we strive to facilitate a culture of “paved roads” for our developers, such that it is easy for any developer to incorporate security into their designs and implementations\n\n* Threat modeling — consider how malicious attackers may compromise our systems, and advise developers and product managers on what defenses are needed\n\n* Code reviews — discover weaknesses in our source code before it reaches production\n\n* Bug bounty program — help triage new incoming reports on a daily basis, plus launch creative initiatives to increase researcher engagement in our programs\n\n* Web Application Firewall and Rate Limiting — expand coverage and tune new rules while coordinating with developers, support team members, and the site reliability team\n\n* Remediation — enable and encourage developers to correctly fix recently discovered security issues in a timely manner, ultimately reducing our Mean Time To Remediate\n\n* Secure Software Development Lifecycle — configure automated tooling (eg. static and dynamic code analysis, IAST) in our SDLC to detect security issues in our source code before it reaches production\n\n* Developer Education, Security Culture — create fun ways to spread technical security awareness throughout the engineering department\n\n* Incident response — lead or assist in running the various phases of incident response, including initial detection, triage, containment, recovery, root cause analysis, retrospective, etc.\n\n* Collaboration with the infrastructure security team — pair with members of the infrastructure security team on various projects to secure our cloud instances and employee workstations\n\n* Collaboration with the compliance and privacy team — help ensure that our company complies with industry best practices and standards\n\n* Process improvements — help strengthen our own internal processes and procedures\n\n* A typical day will look like:\n\n\n\n* Engage with one or more product development teams and guide them through a threat model and data flow analysis.\n\n* Review the code for major new functionality to ensure security best practices are followed.  \n\n* Review new tickets in our bug bounty program (http://hackerone.com/vimeo) and use your system design and threat modeling knowledge to reproduce, define risk and mitigating controls and propose a fix. \n\n* A call or two with Development, Product Management teams to discuss security-related issues\n\n* Pen test a new feature in a staging environment with Burp Pro\n\n* Assist the compliance team on a privacy-related project\n\n* Provide technical advice in response to occasional questions from developers and other members of the security team\n\n\n\n\n\n\nSkills and knowledge you should possess:\n\n\n* Required: 4+ years of prior experience in either software development, devops, or site reliability engineering with hands-on coding experience.\n\n* Preferred: prior experience in Application Security\n\n* 6+ total years of relevant experience in Engineering, Application Security, or a similar technical field.\n\n* Strong knowledge of modern web, mobile, and network security\n\n* Strong programming skills with at least one of the following languages, and the ability to read all of them: Python, Go, PHP, Javascript, and Ruby\n\n* Expertise with application pen testing, using tools like Burp or Zap\n\n* Confident working in and across cloud environments like AWS and GCP. Detailed knowledge of at least one cloud environment.\n\n* Confident with shell scripting\n\n* Confident with common SDLC components, like git, Jira, Jenkins, etc\n\n* Confident ability to communicate technical security concepts to developers\n\n* At least an upper-intermediate level of English\n\n\n\n\nBonus points (nice skills to have, but not needed): \n\n\n* Link to a Github repo with security tools/scripts you’ve developed or help maintain\n\n* Full-stack web development experience creating RESTful applications (in any language) is a big plus\n\n* Open-source vulnerability research or blog posts is a big plus\n\n* Experience with system security hardening guidelines and SDLC principles\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, Cloud and Engineer jobs that are similar:\n\n $65,000 — $125,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nBengaluru, Karnataka, India

\nEach day you will work with a cross-functional team of brilliant professionals combining business, design, product, user experience and engineering expertise, working relentlessly to push the boundaries of what’s possible and paving the road for the future of news and entertainment media.\n\nThe Audience Technology group is looking for an experienced, talented and knowledgeable Software Engineer to join the Consumer/Network Services team responsible for developing, supporting and maintaining our microservices, core backend APIs, and systems that power donor/subscriber conversion experiences on NPR platforms . These are the API’s and services that drive innovation and engagement across NPR’s audience facing digital platforms and member station touch points.\n\nWe are looking for someone to help develop, support and maintain our audience revenue platforms which include donations and our premium podcast offering. Examples of technology you’ll work with include our payment processing solution (Stripe), the systems powering our Podcast Subscription Service (NPR+). You will be a vital contributor to NPR’s efforts to increase financial support from our audience for our mission as we build the technology needed to service long term sustainable growth.\n\nYou’ll also work on the Listening and Identity services, which directly power the NPR One and NPR mobile applications as well as our NPR One Alexa skill. These services provide NPR content recommendations directly to thousands of users on a daily basis. You’ll also collaborate closely with our client-side engineering teams who manage NPR.org and the NPR mobile app.\n\nThis is a union represented role covered under the terms of a collective bargaining agreement with DMU. \n\nRESPONSIBILITIES\n\n\n* Write clean, efficient and reusable code based on product specifications\n\n* Participate in all phases of quality assurance and defect resolution\n\n* Aid in the development and maintenance of CI/CD pipeline implementations\n\n* Knowledge share, write technical designs & participate in code reviews\n\n* Mentor and coach junior engineers on code quality and best practices\n\n* Consult with senior engineers across the department while designing comprehensive solutions\n\n* Provide input on system design and architecture within the feature areas and services owned by the team\n\n* Work closely with other software engineers, partner teams, dev ops engineers, infrastructure engineers, product designers, QA engineers, engineering managers and product managers\n\n* Improve team/development processes\n\n* Join agile ceremonies,including daily stand-ups, sprint retros, sprint reviews and more\n\n* Join our on-call rotation\n\n* Other duties as assigned\n\n\n\n\nThe above duties and responsibilities are not an exhaustive list of required responsibilities, duties and skills. Other duties may be assigned, and this job description can be modified at any time.\n\nMINIMUM QUALIFICATIONS\n\n\n* Fluency in or working knowledge of PHP (or alternative back-end language)\n\n* Fluency in JavaScript / TypeScript\n\n* Fluency in or working knowledge of PHP (or alternative back-end language)\n\n* Experience in developing and working with RESTful APIs that utilize cloud infrastructure such as AWS\n\n* Ability to develop software that is scalable and performant under high loads.\n\n* Familiarity with SQL and RDBMS technologies \n\n* Strong Object-Oriented programming skills \n\n* Familiarity with deploying and monitoring production systems\n\n* Experience writing unit and other automated tests\n\n* Knowledge of web development best practices, coding standards, code reviews, source control management, build processes, deployment, rollback, testing, monitoring\n\n\n\n\nPREFERRED QUALIFICATIONS\n\n\n* Experience with Stripe or other payment processing platforms.\n\n* Experience with Supporting Cast or other podcast subscription platforms.\n\n* Previous work in PCI-compliant environments, or comparable security experience\n\n* Experience with CRM platforms used by NPR and Member stations such as Salesforce \n\n* Advanced experience with Amazon AWS or equivalent cloud computing platform, including Lambda, EC2s, ASGs, ElastiCache, DynamoDB, RDS and CodeDeploy\n\n* Familiarity with Google BigQuery\n\n* Additional programming languages and frameworks fluency (for example, Python)\n\n* Experience with CI/CD pipelines (Github Actions, Jenkins, CodeFresh, or equivalent)\n\n* Experience using performance monitoring and log aggregation applications (Datadog, New Relic)\n\n* Knowledge and experience with different caching layers of caching (browser, DNS, web server, application, etc) and caching technologies/services (Redis, Elasticache, CDNs, AWS CloudFront)\n\n* Exposure to NoSQL databases (Elasticsearch, DynamoDB)\n\n* Experience with React and Redux\n\n* A/B testing experience \n\n* A passion for NPR’s content and/or familiarity with our digital products\n\n\n\n\nWORK LOCATION\n\nRemote Permitted: This is a remote permitted role. This role is based out of our Washington, DC office but the employee may choose to work on a remote basis from a location that NPR approves.\n\nJOB TYPE\n\nThis is a full time, exempt position.\n\nCOMPENSATION\n\nSalary Range: The U.S. based anticipated salary range for this opportunity is $117,968  -  121,507 plus benefits. The range displayed reflects the minimum and maximum salaries NPR expects to provide for new hires for the position across all US locations.\n\nBenefits: NPR offers access to comprehensive benefits for employees and dependents. Regular, full-time employees scheduled to work 30 hours or more per week are eligible to enroll in NPR’s benefits options. Benefits include access to health and wellness, paid time off, and financial well-being. Plan options include medical, dental, vision, life/ accidental death and dismemberment, long-term disability, short-term disability, and voluntary retirement savings to all eligible NPR employees. \n\nDoes this sound like you? If so, we want to hear from you. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Design, React, Testing, JavaScript, Cloud, PHP, NoSQL, Mobile, Senior, Engineer and Backend jobs that are similar:\n\n $60,000 — $110,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nWashington, District of Columbia, United States