Proticom is looking for a talented Senior Security Engineer to join our client's Product Security team. The right person will build new security technologies to protect client and their other projects. This is a very hands-on engineering role working alongside our client's other security team members to design and code new features to protect and reassure our users and to ensure the platform remains resilient against attacks.
If you are a smart developer with experience building security features in large-scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passionate. They do (almost) everything publicly and the work they do touches thousands of editors every day.
You will be working primarily on a client platform which powers the organization. As a top 10 website, they must meet stringent performance standards while addressing new security challenges such as supporting modern authentication technologies, detecting and preventing platform abuse from bots, and planning and rolling out improvements to their security architecture by defending against emerging security threats.
You are responsible for:
- Help design and build security capabilities.
- Review and deploy security features developed by the Foundation and community members.
- Work with other development teams to ensure that they make safe architectural and implementation choices.
- Perform security maintenance and address technical debt in security-critical components.
- Provide support for application security incidents and operations.
Skills and Experience:
- Strong software engineering experience with a focus on security
- Ability to work effectively in a modern, object-oriented PHP code-base.
- Experience developing client-side JavaScript.
- Experience in developing secure software or security-related product features.
- A strong interest in working with a talented security team and learning more specialist security skills such as exploiting and mitigating application-level vulnerabilities.
- Patience in explaining security issues and their implications on privacy and risk to non-technical audiences.
- Sensitivity to the security challenges faced by participants in a large, international project.
- Experience using Linux at the command line for tasks related to web application development and deployment.
- Ability to maintain focus when working remotely.
Additionally, we'd love it if you have:
- Experience working on anti-abuse mechanisms such as CAPTCHA and bot detection.
About the Client:
They are a charitable, not-for-profit organization.
The anticipated annual pay range of this position for applicants based within the United States is US$ 100,000 to US$ 160,000 with multiple individualized factors, including cost of living in the location, being the determinants of the offered pay. For applicants located outside of the US, the pay range will be adjusted to the country of hire. We neither ask for nor take into consideration the salary history of applicants. The compensation for a successful applicant will be based on their skills, experience and location.
*End Client is currently able to hire in the following countries: Australia, Austria, Bangladesh, Belgium, Brazil, Canada, Colombia, Costa Rica, Croatia, Czech Republic, Denmark, Egypt, Estonia, Finland, France, Germany, Ghana, Greece, India, Indonesia, Ireland, Israel, Italy, Kenya, Mexico, Netherlands, Nigeria, Peru, Poland, Singapore, South Africa, Spain, Sweden, Switzerland, Uganda, United Arab Emirates, United Kingdom, United States of America and Uruguay. Non-US employees are hired through a local third party Employer of Record (EOR)