Founding Security Engineer
About the role
We are looking for our first security engineer to champion both our internal security posture and new security features for our users. Fundamentally, this role is a software engineering role: we are looking for someone who loves thinking about security in and around the cloud and is eager to roll their sleeves up and tackle these problems at every layer of the stack.
Responsibilities
- Found our Secure Engineering team, comprised of both security-focused engineers and non-security engineers rotating in project-by-project
- Drive our internal security roadmap and champion security best-practices to the rest of the team
- Ship security features to our customers
- Software engineering
- Proficiency in Go
- Testing (unit testing, integration testing)
- System architecture and design
- Database skills (SQL, etc)
- Building APIs and associated tooling
- Infra-as-Code
- Systems administration / operation
- Kubernetes
- Database admin
- Application security
- Authn/authz (especially as they apply to APIs)
- Vulnerability discovery/research - especially common web vulnerability (SQLi, XSS, etc)
- Secure development practices, particularly teaching/helping others adopt them
- Cloud/infra security
- Building/maintaining security logging systems
- AWS IAM and related tech
- General cloud security best practices
- Secret management
- Network security
- Container security
Requirements
- Experience with Amazon Web Services (AWS), Microsoft Azure, and Google Cloud
- Proficiency in Go
- Experience with testing (unit testing, integration testing)
- Experience with system architecture and design
- Experience with database skills (SQL, etc)
- Experience with building APIs and associated tooling
- Experience with infra-as-Code
- Experience with systems administration / operation
- Experience with Kubernetes
- Experience with database admin
- Experience with application security
- Experience with authn/authz (especially as they apply to APIs)
- Experience with vulnerability discovery/research - especially common web vulnerability (SQLi, XSS, etc)
- Experience with secure development practices, particularly teaching/helping others adopt them
- Experience with cloud/infra security
- Experience with building/maintaining security logging systems
- Experience with AWS IAM and related tech
- Experience with general cloud security best practices
- Experience with secret management
- Experience with network security
- Experience with container security
Qualifications
- 3+ years of experience in software engineering
Skills
- Amazon Web Services (AWS)
- Microsoft Azure
- Google Cloud
- Kubernetes
- Software Security
Benefits
- Top-of-market compensation that grows with the company
- Medical, vision, dental insurance
- 401k
- 6 weeks of PTO, 6 weeks of remote work
- Free lunch and office snacks
Pay
Salary range: $200K - $300K
Schedule
This role is in-person in NYC.
Porter
We are a Platform as a Service that runs in the user's own cloud. We allow users to deploy applications to their own AWS/GCP accounts by simply pointing at the code they want to run and automate devops from CI/CD to autoscaling. Under the hood, Porter runs on Kubernetes but abstracts away its complexity from the end user.
We are growing fast, small but formidable, and are at one of the most exciting juncture a startup can be at with the state of our growth. We've grown 8x in ARR since the beginning of 2022 and are profitable as of Q3 2022. We are building out a founding team in NYC who can share this journey with us. (Remote is also OK depending on circumstances - see the end of this job post)