Software Engineer, Security

SECURITY ENGINEER

We’re building cutting-edge solutions using the latest technological achievements at the intersection of blockchain, cryptography, distributed computing and network protocols. We’re looking for talented engineers, who can design elegant software architectures and execute on them with high degree of craftsmanship.

You will design, develop and support the Chronicled Network. You will be working with our CTO, product managers and engineering team to deliver mission-critical enterprise software that powers entire industries. Our team is constantly growing and evolving, so you will have plenty of opportunities to shape, develop and enhance it as a key contributor.

Responsibilities

  • Performing vulnerability assessments and code reviews/audits as well as developing tools to enhance & automate our security systems/processes and procedures
  • Define, develops, and manages cyber security management procedures, policies, standards, design, and support guidelines
  • Assessing application risks and partnering with development teams to recommend mitigation strategies
  • Responding to security incidents and developing operations to detect potential incidents
  • Monitor/tune intrusion detection, firewall, and vulnerability assessment tools.
  • Develop technical solutions to help mitigate security vulnerabilities by helping build upon our existing automation
  • Manages cyber security compliance activities and drives improvements where needed including bug bounty programs and 3rd-party consulting engagement
  • Conduct internal/external penetration testing and direct remediation efforts across all applications and products
  • Proactively develop security guidance for future projects and technologies
  • Promote awareness of security issues among management and ensure sound security principles are reflected in the organization's vision and goals
  • Evaluate, recommend and integrate new security technology and tools by conducting feasibility studies and proof of concepts

Skills and Qualifications

  • Familiarity with modern programming languages including Rust, Golang, Scala, Haskell, Erlang, Clojure, C, C++ or Python
  • Certification in highly technical application security or application security disciplines such as: CSSLP, CASS, GWEB, GWAPT, GPEN, CEH, CISSP
  • Understanding of the full Software Development Lifecycle & expert understanding of web application technologies
  • Experience protecting against and mitigating real world attacks (DDoS, XSS, session-hijacking, SQL injection, CSRF, etc.)
  • Well-versed in security protocols as well as in software security techniques
  • Strong experience in application-level vulnerability testing and code-level security auditing
  • Demonstrated experience with data security and physical security needs in a mission critical environment
  • Experience with security automation and/or DevSecOps (bonus)
  • Experience with embedded device security (bonus)
  • Experience with Bitcoin and Ethereum (bonus)
  • Background in applied cryptography (bonus)

TECHNICAL CAPABILITIES

  • Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks
  • Execute and mitigate: man-in-the-middle attacks, DNS Spoofing, ARP Poisoning, etc
  • Packet capturing and network sniffing and monitoring with SNORT/Wireshark/Tcpdump
  • Identify Memory leaks, Buffer-overflows, especially misallocation of heap
  • Perform and mitigate NoSQL and SQL injections for a variety of databases
  • General and functional knowledge of hardware and software products that enhance the security of systems such as Intrusion Prevention Systems (host and network-based), Firewalls, Security Event Management Systems, port scanning and vulnerability identification, monitoring and logging mechanisms, etc.
  • Must possess basic knowledge of network, desktop and distributed server hardware and software
  • Working with security infrastructure technologies
  • Experience in documenting and maintaining processes and procedures
  • Comfortable working on both Linux-based and MS Windows-based system platforms with a strong IT technical understanding and aptitude for analytical problem-solving.
  • Strong understanding of enterprise, network, system and application level security issues
  • Fundamental understanding of encryption technologies

Perks
  • Unlimited PTO
  • Company sponsored medical, dental and vision benefits, as well as a choice of providers
  • Daily Lunch
  • Commuter Benefits
  • 401(k) Savings Plan
  • 529 College Saving Plan
  • Membership to the Bay Club

Send resume and cover letter to careers@chronicled.com 


Want to apply later?

Type your email address below to receive a reminder

ErrorRequired field

Apply to Job

ErrorRequired field
ErrorRequired field
ErrorRequired field
Error
Error
insert_drive_file
insert_drive_file