\nDiscord is about giving people the power to create space to find belonging in their lives. Trusted by millions of people to keep their communications secure, private, and out of the hands of evildoers, security and privacy are necessary to Discord's success.\nWe are looking for a Senior Security Engineer, Platform Security reporting to the Platform Security Engineering Manager to join us in building a secure and private platform for Discord's users. If you are a Security Engineer with a passion for security and privacy, a deep sense of curiosity, and an endless desire to improve Discord, read on!\nWhat youโll do:\n\n\n* Perform reviews ranging from architectural design to threat modeling and source code level assessments, providing recommendations to make our platform and infrastructure more secure\n\n* Secure our software supply chain; all the way from a developerโs laptop, through version control, CI/CD, and into production\n\n* Work with our Detection and Response team to ensure that weโre adequately monitoring the security of the systems that Discord builds.\n\n* Develop automation to scale the capabilities of yourself and our team as we build.\n\n* Develop best-in-class secure baselines for cloud and bare-metal resources.\n\n* Partner with Anti-Abuse and Trust & Safety to improve our ability to yeet and delete bad actors from Discord\n\n\n\nExample Projects:\n\n\n* Build automated tooling to across our infrastructure for vulnerabilities including container images and infrastructure-as-code\n\n* Design and implement security controls for a next-generation developer platform for building apps and services at Discord\n\n* Partner with Engineering to design and build authentication in service-to-service communication\n\n* Expand our malware detection capabilities to build a safer Discord\n\n\n\nWhat you have:\n\n\n* You have 5+ years experience building and/or securing production systems and infrastructure.\n\n* You have 3+ years of experience as a Security Engineer working on systems with millions of users.\n\n* You have 3+ years of experience programming in at least one general purpose programming language (we mainly use Python and Rust, but your experience with other languages is great, too!)\n\n* You have experience building images for deploying code (e.g. Docker images)\n\n* You have experience securing cloud-based environments (we use Google Cloud).\n\n* You have experience with infrastructure-as-code tooling (we use Terraform).\n\n* You have experience with container orchestration technologies (e.g. Kubernetes).\n\n* You have experience with serverless technologies (e.g. Cloudflare Workers)\n\n\n\nBonus Points:\n\n\n* Experience building and operating a service mesh (e.g. Envoy, Istio, Linkerd).\n\n* Experience with or an understanding of modern authentication and authorization protocols and concepts (OAuth 2.0, OIDC, WebAuthn/FIDO2, Zero Trust, mTLS).\n\n* Experience building complex applications and services on top of Google Cloud Platform\n\n\n\n\n \n\nNew York City only: Minimum salary of $186,000/year + equity and benefits \n\n*Note: Disclosure as required by NYC Pay Transparency Law\n \nColorado only: Minimum salary of $148,800/year + equity and benefits \n*Note: Disclosure as required by sb19-085(8-5-20). \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Design, Scrum, Git, Typescript, Angular, Ruby, Senior, Digital Nomad, Python, Docker, Serverless, Cloud and Engineer jobs that are similar:\n\n
$70,000 — $120,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
\n\n#Location\nSan Francisco, California, United States
๐ Please reference you found the job on Remote OK, this helps us get more companies to post here, thanks!
When applying for jobs, you should NEVER have to pay to apply. You should also NEVER have to pay to buy equipment which they then pay you back for later. Also never pay for trainings you have to do. Those are scams! NEVER PAY FOR ANYTHING! Posts that link to pages with "how to work online" are also scams. Don't use them or pay for them. Also always verify you're actually talking to the company in the job post and not an imposter. A good idea is to check the domain name for the site/email and see if it's the actual company's main domain name. Scams in remote work are rampant, be careful! Read more to avoid scams. When clicking on the button to apply above, you will leave Remote OK and go to the job application page for that company outside this site. Remote OK accepts no liability or responsibility as a consequence of any reliance upon information on there (external sites) or here.
Frontpage
๐ Remote jobs
๐ Dark mode
๐ฉโ๐ป Hire remote workers
๐จ Post a remote job
๐ฑ Compact mode
โ๏ธ Remote work blog new
Health insurance for teams
Hacker News mode
Safe for work mode
