Remote Git + Linux + Operations + Python + Security Jobs

\nMission\n\nTo reinforce our commitment to customers’ privacy and security, for its PaaS solution, Platform.sh is looking for a Security & Compliance Engineer with a taste for Python and Go, excellent Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC compliance, and a real hunger for the challenges of building compliant distributed systems. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.\n\nThis position is well suited for engineers wanting to transition into a heavy security and compliance role. We are targeting developers/sys admins that like writing documentation and can function in a high performing, multithreaded environment.\n\nSecurity, privacy, and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated and where every constraint becomes a feature making the product better.\n\nDirectly reporting to our Data Protection Officer (VP), and in close interaction with our Chief Product Officer, CTO, VP of Infrastructure, and our Engineering and Customer Support teams.\n\nIn a given day you might be:\n\n\n* Acting as a technical liaison between the Security & Compliance department and our product, engineering, and operations staff.\n\n* Creating documentation and processes in English to help satisfy compliance requirements.\n\n* Evaluating, deploying, and creating, systems and tools that will enhance our support and operations efficiency.\n\n* Supporting our data protection officer and compliance team with information requests, pen testing, disaster recovery, and related activities.\n\n* Executing our security incident management process.\n\n* Working with appropriate teams to deploy and operate security tools and solutions.\n\n* Ensuring all systems, security applications, and services in environment are securely configured and managed through operating system appropriate security platforms and tools.\n\n* Ensuring optimal operation of all security solutions and tools.\n\n\n\n\nQualifications:\n\nMinimum Qualifications\n\n\n* Excellent written English skills (as in, you could have been a tech writer or commercial author in another life)\n\n* Experience with Linux (preferably Debian-based)\n\n* Familiar with markdown\n\n* Experience implementing PCI, SOC, or related\n\n* Operate largely independently (go take that hill) with management support\n\n* Juggle several requests at the same time\n\n* Proven successful experience in an operations role\n\n* Exposure to cloud services (AWS in particular)\n\n* Understands how an OS works, knows networking, how git works, and the constraints of a distributed system\n\n* Proficient in Python\n\n* Has an understanding of\n\n\n\n* Patch and Vulnerability Management process\n\n* Principle of Least Privilege\n\n* Incident response\n\n* Identity and Access Management\n\n* IPTABLES\n\n* WAFs\n\n\n\n\n\n\nPreferred Qualifications\n\n\n* Experience with containerization technologies (LXC/LXD, Docker)\n\n* Experience with vendor management\n\n* Experience with Puppet and Golang\n\n* Demonstrated the ability to successfully manage cloud-based infrastructure for a fast growing organization\n\n* Knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n\n* Relational database skills\n\n* Public speaking experience\n\n* Ability to speak French or German a plus\n\n* Ability to kick ass in Chess or beat Zork without using a map\n\n* CISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP Certification or similar will get you moved to the top of the queue\n\n* CIPM/E, CIPP/E, CIPM/E certification or similar will get you moved to the top of the queue\n\n* Can bravely take on new challenges like a Gryffindor, analyzes problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.\n\n\n\n\nSound Like a Good Fit? We’d love to talk to you!  \n\n* This is a remote job.  \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Engineer, English, Cloud, Git, Python and Linux jobs that are similar:\n\n $70,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nThis is a full-time, permanent, remote position.\n\nWhat we need\n\nTo reinforce our commitment to customers’ privacy, we are looking to grow our security & compliance team. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be the job for you.\n\nFor its PaaS solution, https://platform.sh is looking for a Security & Compliance Engineer with a taste for Python and Go, great Linux system understanding, outstanding written English skills, experience working on PCI and/or SOC compliance, and a real hunger for the challenges of building compliant distributed systems.\n\nThis position is unique and well suited for engineers wanting to transition into a heavy security and compliance role. We are targeting developers/sysadmins that like writing documentation.  Initially, this high-visibility position will be non-coding while we overcome a bubble of compliance activities (and get the candidate on-boarded). After a few months, this role will grow into a part-time SecOps engineering position based upon the skill set and interests of candidate.  \n\n\nSecurity, privacy and compliance controls are at the heart of what we do as our mission is to simplify the cloud. The job is to transform what is often regarded as red-tape and constraints to a well-oiled machine where everything is automated, where every constraint becomes a feature making the product better.\n\nThe ideal candidate will work Western Europe Afternoon & USA-friendly hours, ideally residing in the Americas or Western Europe.\n\n\nDirectly reporting to our Data Protection Officer (VP), and in close interaction with our Chief Product Officer, CTO, VP of Infrastructure, and our Engineering and Customer Support teams, you will be responsible for:\n\n\n* Acting as a technical liaison between our compliance department and our product, engineering, and operations staff\n\n* Creating documentation and processes in English to help satisfy compliance requirements\n\n* Evaluating, deploying, and possibly creating, systems and tools that will enhance our support and operations efficiency\n\n* Supporting our data protection officer and compliance team with information requests, pen testing, disaster recovery, and related activities\n\n* Executing our security incident management process\n\n* Working with appropriate teams to deploy and operate security tools and solutions\n\n* Ensuring all systems, security applications, and services in environment are securely configured and managed through operating system appropriate security platforms and tools\n\n* Ensuring optimal operation of all security solutions and tools\n\n* Automating all the above, so we can instead drink margaritas (or non-alcoholic beverages, of course)\n\n\n\n\n\nThe ideal candidate:\n\nMust meet these requirements:\n\n\n* works Western Europe and USA-friendly hours\n\n* has excellent written English skills (as in, you could have been a tech writer or commercial author in another life)\n\n* has proven experience with Linux (preferably Debian-based)\n\n* knows markdown\n\n* has experience implementing PCI, SOC, or related\n\n* can operate largely independently (“go take that hill”) with management support\n\n* has proven successful experience in an operations role\n\n* has had good exposure to cloud services (AWS, Azure, & GCP in particular)\n\n* understands how an OS works, knows networking, how git works, and the constraints of a distributed system\n\n* is proficient in Python or GoLang\n\n* Has an understanding of\n\n\n\n* Patch and Vulnerability Management process\n\n* Principle of Least Privilege\n\n* Incident response\n\n* Identity and Access Management\n\n* IPTABLES\n\n* WAFs\n\n\n\n\n\n\n\nNice to have :\n\n\n* resides in the Americas\n\n* has experience with containerization technologies (LXC/LXD, Docker)\n\n* Has experience with vendor management\n\n* Has experience with Puppet\n\n* has demonstrated the ability to successfully manage cloud-based infrastructure for a fast growing organization\n\n* knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n\n* Has experience with Drupal\n\n* Has experience with Rust\n\n* relational database skills\n\n* public speaking experience\n\n* ability to speak French or German a plus\n\n* ability to kick ass in Chess or beat Zork without using a map\n\n* CISSP, CISM, Security+, GCED, GICSP, GCIH, SSCP, or CASP Certification or similar will get you moved to the top of the queue and is highly desirable\n\n* CIPM/E, CIPP/E, CIPM/E certification or similar will get you moved to the top of the queue\n\n* Can bravely take on new challenges like a Gryffindor, analyzes problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Engineer, English, Cloud, Git, Python and Linux jobs that are similar:\n\n $70,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nPlatform.sh is a groundbreaking hosting and development tool for web applications. We’re a European VC-Backed startup with a host of blue-chip Enterprise clients and a string of awards and grants (including €2m from the EU Horizon 2020 program).\n\nTo reinforce our technical prowess, we are looking to grow our operations team. If you’re looking for an exciting, high-growth opportunity with an award-winning, cutting-edge company, this could be just the job for you\n\nFor its PaaS solution, https://platform.sh is looking for an Operations and Service Reliability Engineer with a taste for Python and Go, great Linux system understanding, and a real hunger for the challenges of building robust, distributed systems.\n\nPlatform.sh is a PaaS shrouded in a lot of black magic (we can consistently clone a whole running cluster, with its state, databases, indexes in a matter of seconds). We want to get this down to the hundreds of milliseconds domain. Interested? There is more...\n\nOur external API is pure Hypermedia REST + oAuth on top of Pyramid. It mechanizes the Git layer and needs more features.\n\nWe can consistently generate from the same manifest a Docker container, an LXC one, or VM disk images (AWS, Azure, OpenStack), we want more targets.\n\nWe probably have the highest industry container density. We need to get it higher.\n\nWe support any Python, Ruby, NodeJS or PHP, Java and .NET, time to roll-out Elixir, of course, Elixir (and Rust. We need Rust).\n\nWe need to have more auto-healing on the high-availability clusters. We need more performance out of our multi-protocol ssh proxy. We need work on our Ceph Implementation. We need to get the Debian package generation streamlined and faster. We need… great ideas on how to make Platform.sh even better.\n\nDirectly reporting to our VP of Infrastructure and in close interaction with our Engineering and Customer Support teams, you will be responsible for:\n\n\n* cloud operations: configure clusters, deploy stuff, follow-up on alerts, help customer support debug issues.\n\n* creating systems, tools & processes that will enhance our support and operations efficiency\n\n* improving service quality, discipline and reliability throughout lifecycle\n\n* monitoring operating objectives, streamline and automate intervention\n\n* continuous learning from Operations experience, modeled as software\n\n* supporting our data protection officer and compliance team with information requests, pen testing, disaster recovery, and related activities\n\n* executing our security incident management process\n\n* work with appropriate teams to deploy and operate security tools and solutions\n\n* ensure all systems, security applications and services in environment are securely configured and managed through operating system appropriate security platforms and tools\n\n* ensure optimal operation of all security solutions and tools\n\n* automating all of the above so they can instead drink margaritas (or non-alcoholic beverages, of course)\n\n\n\n\nMust have :\n\nThe ideal candidate:\n\n\n* has proven successful experience in an operations role\n\n* has demonstrated the ability to successfully manage cloud-based infrastructure for a fast growing organization\n\n* has experience with containerization technologies\n\n* has had exposure to cloud services (AWS)\n\n* understands how an OS works, knows networking, how git works, and the constraints of a distributed system\n\n* puppet experience\n\n* is proficient in Python (Golang a plus)\n\n* has an understanding of\n\n\n\n* Patch and Vulnerability Management process\n\n* Principle of Least Privilege\n\n* Incident response\n\n* Identity and Access Management\n\n* IPTABLES\n\n* WAFs\n\n\n\n\n\n\nNice to have :\n\n\n* knowledge of Magento Ecommerce, Symfony, Drupal, eZ Platform, or Typo3\n\n* relational database skills\n\n* public speaking experience\n\n* ability to kick ass in Chess or beat Zork without using a map\n\n* proficiency in Rust grants you bonus points\n\n* CISSP (preferred), Security+, GCED, GICSP, GCIH, SSCP, or CASP Certification or similar\n\n* audit and compliance experience\n\n* can bravely take on new challenges like a Gryffindor, analyzes problems like Ravenclaw, protects our infrastructure and client data like a Slytherin, and talks with clients like a Hufflepuff.\n\n\n\n\nNote: We don't like stress, so we build everything to be robust and resilient, but stuff does break. This is a role with on-call duties. If page-duty fills you with dread... well, this might not be a fit. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, Engineer, Java, Cloud, Git, Python, API and Linux jobs that are similar:\n\n $70,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n