Staff Software Engineer, Vulnerability Management Engineering

GitHub is seeking a highly talented and motivated software engineer to drive initiatives that affect the security of millions of developers around the world. The role involves designing, building, and supporting the vulnerability management services and tools that allow GitHub to deliver the best developer experience to its internal employees and the rest of the world. The ideal candidate will share a passion for engineering solutions to complex security problems.

Responsibilities:

• Develop and implement appropriate and effective vulnerability management solutions to help mitigate threats and risks
• Implement automated and proactive security measures
• Support consistent vulnerability management / patch management process
• Pick new work autonomously and code solutions, working to unblock yourself when stuck either by reaching out for help or finding other solutions in an asynchronous, remote, distributed culture
• Write clear documentation, tests, and recommendations for technical problems
• Collaboratively define, scope, prioritize, and estimate work
• Review code and provide thoughtful, constructive feedback during code reviews
• Provide compassionate technical mentorship, pairing opportunities, and code reviews to encourage the growth of others
• Deliver complex code/features with quality and supportability

Qualifications

We hire developers that have a track record of caring deeply about shipping software that helps people with their work. So whether you meet all the qualifications or a partial set, we want to hear from you.

Minimum Qualifications:

• Ability to engineer solutions using Python, Ruby or Go
• Strong written communication skills
• High degree of empathy
• Familiarity with Git
• Understanding of how software is built, tested, and delivered
• Ability to learn and think critically about both system design and software engineering concepts and blend those perspectives pragmatically based on project needs

Preferred Qualifications:

• Experience designing, building, and maintaining scalable data pipelines
• Experience working on a remote, distributed team
• A proven track record of taking technical requirements, developing proof of concepts, and developing mature systems.
• Operational experience with Nessus, Qualys or similar scanning tools
• Experience with container solutions such as Anchore Engine / Grype, Twistlock, Trivy, Clair or Dockle

Who We Are:

GitHub is the developer company. Over 40 million people use GitHub to build amazing things together across 100 million repositories. We make it easier for developers to be developers: to work together, to solve challenging problems, to create the world’s most important technologies. We foster a collaborative community that can come together - as individuals and in teams - to create the future of software and make a difference in the world.

Our Principles:

• Customer Obsessed
• Trust by Default
• Ship to Learn
• Own the Outcome
• Growth Mindset
• Global Product, Global Team
• Anything is Possible
• Practice Kindness

Why You Should Join:

At GitHub, we constantly strive to create an environment that allows our employees (Hubbers) to do the best work of their lives. We’ve designed one of the coolest workspaces in San Francisco (HQ), where over half of our Hubbers work, snack, and create daily. The other half of our Hubbers work remotely in 18 countries across the globe.

We are also committed to keeping Hubbers healthy, motivated, focused and creative. We’ve designed our top-notch benefits program with these goals in mind. In a nutshell, we’ve built a place where we truly love working, we think you will too.

GitHub is made up of people from a wide variety of backgrounds and lifestyles. We embrace diversity and invite applications from people of all walks of life. We don’t discriminate against employees or applicants based on gender identity or expression, sexual orientation, race, religion, age, national origin, citizenship, disability, pregnancy status, veteran status, or any other differences. Also, if you have a disability, please let us know if there’s any way we can make the interview process better for you; we’re happy to accommodate!

*Please note that benefits vary by country, if you have any questions, please don’t hesitate to ask your Recruiter!

(Colorado only*) Minimum salary of $118,100 to a maximum $250,600 + bonus + equity + benefits.

Who We Are:

GitHub is the developer company. We make it easier for developers to be developers: to work together, to solve challenging problems, and to create the world’s most important technologies. We foster a collaborative community that can come together—as individuals and in teams—to create the future of software and make a difference in the world.

Leadership Principles:

Customer Obsessed - Trust by Default - Ship to Learn - Own the Outcome - Growth Mindset - Global Product, Global Team - Anything is Possible - Practice Kindness

Why You Should Join:

At GitHub, we constantly strive to create an environment that allows our employees (Hubbers) to do the best work of their lives. We've designed one of the coolest workspaces in San Francisco (HQ), where many Hubbers work, snack, and create daily. The rest of our Hubbers work remotely around the globe. Check out an updated list of where we can hire here: https://github.com/about/careers/remote

We are also committed to keeping Hubbers healthy, motivated, focused and creative. We've designed our top-notch benefits program with these goals in mind. In a nutshell, we've built a place where we truly love working, we think you will too.

GitHub is made up of people from a wide variety of backgrounds and lifestyles. We embrace diversity and invite applications from people of all walks of life. We don't discriminate against employees or applicants based on gender identity or expression, sexual orientation, race, religion, age, national origin, citizenship, disability, pregnancy status, veteran status, or any other differences. Also, if you have a disability, please let us know if there's any way we can make the interview process better for you; we're happy to accommodate!

Please note that benefits vary by country. If you have any questions, please don't hesitate to ask your Talent Partner.

#LI-POST