\nThe Backend guild's main responsibility is to have stable, reliable and fast cloud for data storage. We provide platform to have secure data synchronisation between all NordPass applications and web based systems. We get to touch not only server, but also client side: we’re responsible for encrypting, handling and synchronizing data between frontend application and our cloud - this is done through background application which lives in all of our clients computers. Democracy helps us to be not one-men-opinion team. Everybody’s experience, suggestions and ideas are discussed at team level to reach best results and stay away from code smells.\n\n\n\n\n\nMain Responsibilities\n* Be responsible for writing clear and well-tested code that delivers real business value;\n* Be involved in creating APIs that are useful for developers (both internally and externally);\n* Together with our core team, deliver quality code-based solutions;\n* Contribute to app technical decisions, architecture, process, etc.;\n* Contribute to technical tasks, feedback forms, and technical interviews;\n* Take ownership of product decisions and decision-making;\n* Help with work planning and prioritizing;\n* Be a part of incident solving.\n\n\n\nCore Requirements\n* At least 7+ years of experience in web development;\n* 3+ years of experience working with PHP and its frameworks (Symfony, Slim) or Golang;\n* Understanding of modern software design principles & good code design;\n* Experience in building distributed systems;\n* Be acquainted with system design patterns;\n* Good Relational DB and NoSQl knowledge;\n* That working with Git & Jira is nothing new to you.\n\n\n\nBonus Points For\n* Knowledge of both PHP and Golang.\n\n\n\nTools You Will Use\n* PHP 8;\n* Golang;\n* MySQL, DynamoDB, ES DB, Redis;\n* RabbitMQ, SQS, EventBridge;\n* Docker, Terraform;\n* Git;\n* Jira;\n* Grafana, CloudWatch, Sentry;\n* AWS services.\n\n\n\nSalary Range\n* 17100 - 32900 PLN gross per month (employment contract)\n\n\n\n\n\nAbout Us\n\n\n\n\nNord Security is a global leader in internet privacy and security solutions and Lithuania’s second tech unicorn. Established in 2012, Nord Security now has more than 1400 employees and serves millions of users worldwide. Our team has a global mission to shape a more secure and peaceful online future for people everywhere.\nWith that in mind, we built 4 advanced cybersecurity solutions: NordVPN, NordLayer, NordLocker, and NordPass.\n\n\nNordPass – Your Intuitive Password Manager.\nAt NordPass we are working on showing that cybersecurity can be simple and easy for everyone. We take care of the security so that our users could do their best online effortlessly. And yes, being on people’s side and working against cybercrimes feel good!\nNordPass is an intuitive password manager for both business and consumer clients. It’s powered by the latest technology for the utmost security. Developed with affordability, simplicity, and ease-of-use in mind, NordPass allows users to access passwords securely on desktop, mobile, and browsers. It generates and remembers complex passwords, auto-fills logins and online forms and lets you access it all from anywhere. With NordPass you can share logins with peers and check if your accounts were breached. All passwords are encrypted on the device, so only the user can access them. NordPass was created by the experts behind NordVPN — the advanced security and privacy app trusted by more than 14 million customers worldwide.\n\n\nAnd we’re always looking to expand our team of :\n\n\n• Future shapers\n• Restless achievers\n• Self-movers\n• Honest communicators\n• Team players\n\n\nWhat We Offer\n\n\n • Access to Nord Security products. We build solutions used by millions of users worldwide, and you’ll get to experience our products firsthand, at no charge; \n• Professional growth. Internal and external events, online training, conferences, books - everything you need to reach full potential; \n• Health benefits. Private health insurance, sports access card, online workouts, consultations, programs to improve mental health to feel and be your best;\n• Mental wellbeing. Access to mental health tools like Calm, Headspace, and Mindletic. Options for therapy to keep your emotional wellbeing in check; \n• Team spirit. Team buildings and parties with games, shows, tastings, food coupons, gifts, and it’s on us; \n• Additional paid leave. Additional days are covered by us in cases of illness or special occasions; \n• Flexibility. Flexible working time arrangement.\n\n\nKindly refer to our Privacy Notice for Recruitment Candidates for comprehensive information regarding our data handling procedures throughout recruitment processes: https://bit.ly/3urJdOL \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Design, Cloud, PHP, NoSQL, Git, Senior, Engineer and Backend jobs that are similar:\n\n $60,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nRemote

\nSummary\n\nThe Wikimedia Foundation is looking for an Application Security Engineer to join the Security team working to help protect Wikipedia and our other projects. You'll be working with other developers and security engineers to create new security features, review the security of other people's code, and help find and fix security bugs before they're exploited.\n\nYOU ARE ...a smart security practitioner with experience building and auditing security features in large scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly, and volunteers can add arbitrary JavaScript to our site.\n\nYou will be joining a team responsible for ensuring the security and integrity of applications written in PHP, Python, Ruby, Lua, Perl, JavaScript (Node.js) among others, using both relational and key-value data storage mechanisms. (Don't worry, you don't need to have had experience with all of those technologies.)\n\nWe’d like you to do these things:\n\n\n* Triage and remediate reported security issues\n\n* Review and deploy features developed by the Foundation and community members\n\n* Work with other development teams to ensure that they make safe architectural and implementation choices\n\n* Constantly poke and abuse our software to find bugs before attackers do\n\n* Provide application security concept reviews and help socialize application security best practice\n\n* Provide support for application security operations\n\n\n\n\nWe’d like you to have these skills:\n\nThe right person is better than the right set of experiences, these are the traits we’ve identified make great additions to our team so far.\n\n\n* Two or more years of application security experience, including thorough understanding of issues documented in the OWASP Top Ten and CWE Top 25\n\n* Strong understanding of modern, object-oriented PHP development\n\n* In-depth experience developing or auditing client-side JavaScript\n\n* Demonstrated ability to exploit and mitigate application-level vulnerabilities\n\n* Experience conducting software security reviews using a combination of source code inspection, manual testing, and automated scanning\n\n* Patience in explaining security issues and their implications on privacy to non-technical audiences\n\n* Sensitivity to the security challenges faced by participants in a large, international project\n\n* Strong understanding of cryptography as applied to web application security (encryption, hashing, PKI management), including analysis and implementation\n\n* Experience using Linux at the command line for tasks related to web application development and deployment\n\n* Ability to maintain focus when working remotely\n\n\n\n\nAnd it would be even more awesome if you have this:\n\nIn addition to the basic skills needed for being successful these skills could set you apart from the pack!\n\n\n* Experience as a contributor in the Wikipedia or Wikimedia project communities\n\n* Experience contributing to a consensus-based open source project\n\n* Experience developing, maintaining, or administering authentication systems\n\n\n\n\nAbout the Wikimedia Foundation\n\nThe Wikimedia Foundation is the non-profit organization that supports and hosts Wikipedia and its sister free knowledge sites. Wikipedia consists of nearly 40 million articles across hundreds of languages. Every month, more than 80,000 volunteer editors contribute to Wikipedia. Based in San Francisco, California, the Wikimedia Foundation is an audited, 501(c)(3) non-profit that is funded primarily through donations and grants. It currently employs over 240 staff members.\n\nAt the Foundation, we build technology to help people everywhere access Wikipedia, across devices and in nearly 300 languages. We engineer privacy for our readers and editors so they can safely and securely explore Wikipedia. We create programs and initiatives to make Wikipedia freely available to more people in more parts of the world. We build new tools for the community of editors so they can continue to improve and grow Wikipedia. Roughly a quarter of our budget goes to supporting the community that make the site possible, including through grantmaking programs that enable volunteers and enrich the information on the sites.\n\nBenefits & Perks\n\n\n* Fully paid medical, dental and vision coverage for employees and their eligible families (yes, fully paid premiums!)\n\n* The Wellness Program provides reimbursement for mind, body and soul activities such as fitness memberships, massages, cooking classes and much more\n\n* The 401(k) retirement plan offers matched contributions at 4% of annual salary\n\n* Flexible and generous time off - vacation, sick and volunteer days\n\n* Pre-tax savings plans for health care, child care, elder care, public transportation and parking expenses\n\n* For those emergency moments - long and short term disability, life insurance (2x salary) and an employee assistance program\n\n* Telecommuting and flexible work schedules available\n\n* Appropriate fuel for thinking and coding (aka, a pantry full of treats) and monthly massages to help staff relax\n\n* Great colleagues - diverse staff and contractors speaking dozens of languages from around the world, fantastic intellectual discourse, mission-driven and intensely passionate people\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Senior, Engineer, JavaScript, PHP and Linux jobs that are similar:\n\n $65,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nPhreesia is look for a Senior Information Security Analyst, Incident Detection and Response to join our growing team!\n\nThe Senior Information Security Analyst, Incident Detection and Response serves as the first line of defense in identifying attacks against Phreesia’s people, critical business processes, and information assets. This position will manage and expand robust incident detection, analysis, and response capabilities to defend Phreesia’s assets. \n\nOur Central Information Security Team are highly hands-on and you will have many opportunities to gain intimate knowledge of Phreesia’s users, customers and architecture. Your solutions will impact the health of millions of people. You will get to work withDevOps, Development and IT teams at Phreesia.\n\nWho we want: \n\nAre you up-to-date in the world of incident detection and response?   \n\nAre you excellent in designing technical solutions from idea to execution?   \n\nDoes the idea of collaborating with passionate and curious team members, while working with modern technologies and tools excite you?   \n\nRead further!   \n\nWhat you will do: \n\nWorking as a key member of Phreesia’s Information Security team, the Sr. Information Security Analyst wears multiple hats: Product Manager, Security Engineer, and Security Analyst. \n\n\n* Identify top security threats to Phreesia’s assets and reduce security monitoring and incident prevention blind-spots \n\n* Identify, automate collection of, and analyze threat information from security monitoring tools, distribution lists, and intelligence feeds \n\n* First responder and lead to investigate information security events, incidents, and breaches \n\n* Develop log sources, alerts, searches, and dashboards to identify security incidents  \n\n* Provide coverage as part of 24x7 incident response rotation and respond to emergencies \n\n* Manage Security Product roadmaps to elevate Phreesia’s defenses \n\n* Conduct Incident Response table-top exercises and tests, incorporating lessons learned from incidents \n\n* Collect and publish weekly and monthly qualitative and quantitative key risk indicators (KRIs) and related key performance indicators (KPIs) \n\n* Develop and maintain response procedures and processes for security incidents that occur (ex. malware remediation)  \n\n* In partnership with operational teams, configure and administer security systems and tools \n\n\n\n\nWhat you will need: \n\n\n* 7+ years progressive experience leading incident detection and response or security operations \n\n* Experience building and maintaining SIEM queries, SQL, alerts, and dashboards \n\n* Experience with server and network configuration and management \n\n* Knowledge and experience with scripting languages (Python, PowerShell, JavaScript) \n\n* Highly developed prioritization, triage, and communication skills \n\n* Excellent knowledge of Information Security principles, frameworks, and technologies \n\n* Engineering, computer science, or other technical undergraduate degree \n\n* In-depth experience with SumoLogic tools a plus \n\n\n\n\nWho we are: \n\nAt Phreesia, we’re committed to helping healthcare organizations succeed in a fast-changing landscape—and we need smart, passionate people to help us do it. Our innovative SaaS platform offers our clients a suite of applications to manage the intake process, giving them the tools to engage patients, improve efficiency, optimize staffing and enhance clinical care. Our solutions are in all 50 states, and we check in 70 million patients a year! \n\n Basically, what you are doing here matters and hard work does not go unnoticed. Not only does Phreesia care about our clients - we also care about our employees. We are proud to say that we have grown 40% each year and consistently continue to do so. If you crave working with driven and engaged colleagues, a structured sales process, consistent recognition, a defined career path, and working in revamped new areas, this may be the right opportunity for you. \n\nBenefits and Perks: \n\n\n* Variety of health plan options, dental/ vision coverage, and short/long-term and life insurance plans \n\n* 401k (USA) or RRSP (Canada) plan\n\n* Flexible working hours \n\n* Unlimited vacation \n\n* Unlimited snacks and drinks in our offices \n\n* Mobile phone stipends, monthly subway pass reimbursement and Internet reimbursement \n\n* 100% paid maternity leave to our U.S. employees, as well as a generous maternity benefit to our employees in Canada. \n\n* Tuition and certification reimbursement, as well as other professional development opportunities \n\n\n\n\nWe strive to provide a diverse and inclusive environment and are an equal opportunity employer.  \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Senior, Sales and SaaS jobs that are similar:\n\n $65,000 — $115,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

\nInVision is the Digital Product Design platform used to make the world’s best customer experiences. We provide design tools and educational resources for teams to navigate  every stage of the product design process, from ideation to development.\n\nToday, more than 3.5 million people use InVision to create a repeatable and streamlined design workflow; rapidly design and prototype products before writing code, and collaborate across their entire organization. That includes more than 80 percent of the Fortune 100, and organizations like Airbnb, Amazon, HBO, Netflix, Slack, Starbucks and Uber, who are now able to design better products, faster.\n\nInVision is a fully distributed company with employees in 25 countries around the world. The company has raised more than $235 million in funding from leading investors including Accel, ICONIQ, FirstMark, Tiger Global, Battery Ventures, and Spark Capital. Visit us at InVisionApp.com andInVisionApp.com/blog.\n\nOur development flow is designed and built for maximum speed and velocity.As such, we have an engineering security team heavily focused on identifying and remediating application vulnerabilities.You will be part of a team that has an opportunity to work across a wide range of products and services, working with and communicating across all teams in technology and responding to internal and external stakeholders.You will have an opportunity to identify security enhancement and cutting edge features that are attractive and desirable to our customer base.\n\nYou will contribute to an environment that enables you to do your best engineering work, and you’ll do it with new web standards and frameworks like ES6, React, MongoDB, NodeJS, Go, and Docker. We empower engineers by being laser focused on maximum developer velocity through automation of tests, builds, deploys and tight customer feedback loop to continuously improve the product.\n\nBuilding and shipping something this amazing and owning it from prototypes and specifications to release requires constant collaboration with the brightest people in the organization. Whether you’re at a beach house in Hawaii or a coffee shop on the East Coast, you’ll have the support of brilliant developers at your fingertips to get you through and keep the workday challenging and fun.\nAs Part of The Team:\n\n\n* Secure our code.  Identify emergent vulnerabilities in our application source code.  \n\n* Bake security into our product.  Work with InVision engineers to evolve, design, implement security measures.\n\n* Help us be compliant.  Design and implement strategies and solution to maintain industry compliance requirements.\n\n* Be a security advocate.  Every day offers a variety of work, exciting new challenges, opportunities to contribute new ideas (your voice will be heard and valued), and the ability to share your knowledge across the engineering organization. \n\n* Evolve security.   Help evolve InVision’s vulnerability remediation process and response efforts. \n\n* Build security stuff.  Work with product and engineering teams to build new application security features.  Interface with other Product Engineering teams and Platform Service teams to take advantage of and incorporate their services and tools into your product.\n\n\n\n\nWhat You’ll Need to Join Us:\n\n\n* Proficiency in NodeJS and Golang.  \n\n* Advance working knowledge of application vulnerabilities. OWASP top 10 is a good place to start but understanding that there are over 600 distinctly different types of coding vulnerabilities.\n\n* Ability to debug full-stack problems; debug a web application problem single-handedly all the way from the browser, through transport, to the application servers/databases. Not afraid of logs and core dumps.\n\n* Use of continuous integration and delivery technologies at an expert level and ability to teach others best practices.\n\n* Experience designing and building high volume, scalable SaaS applications from end to end.\n\n* Curiosity to iterate and improve on solutions; you view unknowns as challenges and enjoy them.\n\n* Motivation to understand the business and our users, their requirements, and deliver results.\n\n* Passion for continued learning and achieving personal goals through developer community involvement and contributions.\n\n\n\n\nAlso Good To Have:\n\n\n* Multi-lingual is your language.  You can spot vulnerabilities in code for various language (React, Java, Kotlin, Swift)\n\n* You know mobile.  Be it iOS or Android you understand mobile development, security, testingstrategy, and interfaces.  Mobile experience is a strong, strong PLUS!!\n\n\n\n\n\n\nBenefits\n\nInVision offers an incredibly unique work environment. The company employs a diverse team all over the world. In the United States we have team members throughout 40+ states including New York, San Francisco, Austin, Portland, and Boston. Each InVision team member is given the freedom and tools to do their best work from wherever they choose. The benefits we offer in the United States include competitive health plans and a 401k plan.\n\nSome InVision-wide benefits offered to all employees across the globe include a flexible vacation policy, monthly coffee shop stipends, annual allowances for books related to your profession, and home office setup & wellness reimbursements. InVision is an international employer so some benefit offerings will vary from country to country.  Please ask our recruiting team about the benefits and perks package available in your country.\n\nInVision is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. If you have a disability or special need that requires accommodation, please let us know. \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Senior, Engineer, Developer, Digital Nomad, Android and SaaS jobs that are similar:\n\n $60,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n

Why work at Doximity?\n\nDoximity is the leading social network for healthcare professionals with over 70% of U.S. doctors as members. We have strong revenues, real market traction, and we're putting a dent in the inefficiencies of our $2.5 trillion U.S. healthcare system. After the iPhone, Doximity is the fastest adopted product by doctors of all time. Our founder, Jeff Tangney, is the founder & former President and COO of Epocrates (IPO in 2010), and Nate Gross is the founder of digital health accelerator RockHealth. Our investors include top venture capital firms who've invested in Box, Salesforce, Skype, SpaceX, Tesla Motors, Twitter, Tumblr, Mulesoft, and Yammer. Our beautiful offices are located in SoMa San Francisco.\n\nThis position is for an experienced DevOps engineer, to own Security efforts for our entire application stack, to join our 8 person DevOps team. We’re looking for someone with a strong track record in building infrastructure, maintaining high level of uptime and optimal security. You will be supporting and building products alongside our 50+ person engineering team used by hundreds of thousands of people.\n\nSkills & Requirements\n\n-Minimum of 5 years of Linux/UNIX systems engineer & administrator experience.\n-Minimum of 5 years of relevant web application security experience\n-Extensive AWS experience\n-Experience writing application security penetration tests with an open source framework.\n-Automation experience with configuration management tools such as Chef, Ansible, or Puppet.\n-Intermediate to advanced experience administering and securing an RDB (MySQL or Postgres a plus)\n-Proficient in bash shell scripting (sed + awk) and one of Ruby or Python.\n-Experience automating application deployments with Capistrano or Jenkins.\n-Ability to work in a proactive manner and manage your own queue.\n-Experience with Hashicorp tools, Neo4j, Elasticsearch, Kibana, Grafana is a big plus.\n\nTypical Tasks\n\n-Develop, schedule, and execute automated security audits on infrastructure using industry standard security frameworks and tooling.\n-Write penetration tests for applications and services.\n-Periodically audit and rotate access credentials.\n-Document current and future security procedures and policies in the wiki.\n-Lead security/policy related audits such as SOC2 Type II (annual renewal).\n-Work with sales and client services teams to answer infrastructure related security questions and concerns that clients inquire about.\n-Remediate and write post-mortem reports on security-related issues.\n-Active involvement in design, implementation, and maintenance of the development, staging, and production infrastructure security.\n-Work on automating tasks using Jenkins.\n-Troubleshoot system issues (such as high-load, memory, CPU usage, etc.) and come up with temporary/long-term solutions based on the root cause.\n-Work with developers to deploy applications ready for production (Terraform, Consul, Vault, Upstart, NGINX, Sensu). We believe in infrastructure as code and follow it.\n-Write Chef cookbooks (using "Berkshelf Way") to automate configuration management.\n-Participate in a 1-week on 7-week off, 24/7 on-call rotation.\n-Hands-on maintenance on our Ruby on Rails and Go (Golang) applications.\n-Troubleshoot issues across the whole stack: hardware, software, and network.\n\nA few facts about us\n\n-We deploy our applications to production on average 25 times per day.\n-We have over 250 private repositories in Github, ranging from forks of gems, our own internal gems as well as auxiliary applications.\n-Our production stack is hosted on AWS and QA clusters on DigitalOcean.\n-Hundreds of thousands of healthcare professionals will utilize the products you build.\n-We host unstructured "hack days" periodically, which is time reserved for you to scratch a code itch.\n-A couple times a year we run a co-op where you can pick a few people you'd like to work with and drive a specific company goal.\n-Every new engineer ships code to production on day one. Our mentorship program ensures you're immersed in the team's culture early on.\n\nAbout the Technical Stack\n\nDoximity's web applications are built primarily using Ruby, Rails, Javascript, and a bit of Go. Our applications are used by hundreds of thousands of Physicians and Healthcare professionals, and we also have a suite of mobile applications for iOS and Android. We like to think pragmatically in choosing the tools most appropriate for the job at hand. More details about our engineering stack on the Doximity engineering blog. \n\nPlease mention the words **FIGURE GHOST LANGUAGE** when applying to show you read the job post completely (#RMjE2LjczLjIxNi4xMQ==). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to DevOps, InfoSec, Elasticsearch, Python, Ruby, Senior, Engineer, Linux, Ansible, Grafana, Mobile and Sales jobs that are similar:\n\n $70,000 — $125,000/year\n

\nWe are seeking an exceptional person to join our Security team. This person must be passionate about security and enjoy investigating tough security problems and analyzing risks. The ideal candidate will have a “hacker” like mindset. The individual must be a leader with the ability to troubleshoot complex problems with little guidance and also be able to mentor other team members. As a senior member of the team, you'll be responsible for assisting in the planning, implementation and support of all of our corporate, application, data center and network infrastructure security. Brightcove runs a co-located physical infrastructure with additional heavy presence in AWS. Experience securing a hybrid cloud SaaS platform is required.\n\nWe are a growing team with a lot of future growth opportunities.\n\nWe operate globally so this role is very important to the health our company. You must be able to work in a DevOps environment. We strongly believe in collaboration!\n\nPerformance is measured on individual as well as team results. Candidates must be highly motivated, proactive, organized, detail-oriented, possess outstanding communication and work well in a team environment.\n\nWorking for Brightcove will give you a unique opportunity to join a growing, publicly held company, and play an integral role building products and online services that promise to transform the media industry and change the way people all over the world watch video.\n\n\nAbout the role: \n\n\n* Plan and implement security mechanisms to protect our network and company assets\n\n* Work and collaborate with Operations and Development teams to help solve security issues, risks and concerns for applications and infrastructure\n\n* Monitor and troubleshoot security issues, audit logs, access control, key encryption and rotation\n\n* Collect and report on security metrics based upon monitoring\n\n* Create, test and implement disaster recovery plans to ensure the implementation is secure and works successfully, free of security vulnerabilities\n\n* Perform and address threat and risk assessments, not limited to the network, applications, database, etc.\n\n* Work with Operations to address and implement security patches as the apply to our systems\n\n* Work with Development teams to help guide and monitor that application security guidelines are being adhered to and application security scans are run and analyzed\n\n* Analyze and help remediate vulnerability and penetration test results through working with 3rd party vendors and development teams\n\n* Participate in on-call rotation in order to address security issues\n\n* Address customer security assessments, audits and questions as needed\n\n* Provide mentoring to other junior team members\n\n\n\n\n\nAbout you: \n\n\n* 8-10 years of Network Security\n\n* Experience with Intrusion Detection Systems is a must\n\n* Strong knowledge of securing and working with firewalls, routing and switching\n\n* IP networking (TCP/IP and packet analysis)\n\n* Knowledge of remote access and dual factor authentication methods\n\n* Familiarity with SSAE-16 and auditing\n\n* Understanding of penetration and vulnerability testing\n\n* Excellent oral and written skills are required\n\n* BS in Computer Science, or comparable experience\n\n\n\n\n\nLocation: \n\nThis position is based in our Headquarters at the Atlantic Wharf building located directly on the waterfront at 290 Congress St, one block from Boston's South Station. Brightcove Inc. is global with offices in New York, San Francisco, Seattle, Tokyo, London, Paris, Hannover, Barcelona, Singapore, Sydney, Dubai, and Seoul.   \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to InfoSec, Senior, Engineer, DevOps, Cloud, Junior and SaaS jobs that are similar:\n\n $70,000 — $120,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n