Security Compliance Development Engineer

At Lacework, we strive to provide a supportive, collaborative environment where people are empowered to do the best work of their careers.

Our team members enjoy solving complex problems, big sky thinking, and obsess over getting the details right—all while building bonds of teamwork and friendships that last a lifetime. We love what we do and are proud of our work to secure clouds and container environments for thousands of users worldwide.

Cloud computing is revolutionizing IT and forcing organizations to rethink their approach to cloud security. Lacework is at the forefront of this transformation. We enable security teams to effectively secure public and private clouds – AWS, Azure, GCP or colocations – by eliminating repetitive, manual and labor-intensive security tasks. Using Lacework, security teams operate security at the same pace as DevOps, which relies on automated tools to publish daily updates to the cloud.

Lacework is led by an experienced team who have built large scale systems at Google, Paraccel (Amazon Redshift), Pure Storage, Oracle, and Juniper networks. Lacework is well funded by a tier one VC firm and is based in Mountain View, CA.

Why Lacework Needs You

Our team is growing, and we are looking for an Engineer with a passion for ensuring our customers are able to maintain a great security posture and helping improve the overall Lacework platform for customers and internal teams alike.

You will help develop security compliance policies in line with security best practices and existing benchmarks from organizations such as the Centre for Internet Security. As part of this you’ll be building out infrastructure as code using Terraform, exercising Cloud and Kubernetes APIs, creating and maintaining pipelines in tools such as Codefresh and getting to know your way around Snowflake databases.

If you’re inquisitive and enjoy improving processes and automating as you go, we’d like to meet you. To succeed in this role, you should have a problem-solving attitude along with the desire to produce high quality testing and documentation.

Your Opportunity:

• Automation. Automation. Automation.
• Build state of the art threat detection systems
• Write scalable, maintainable, and testable code along with automated testing pipelines to ensure CI/CD is a reality
• Develop security policies to help our customers stay compliant and monitor their Cloud and Kubernetes infrastructure
• You will identify problems, develop and maintain solutions and processes that will help drive improvements towards engineering and customer productivity
• Evangelize good code and solid engineering practices
• Ensure accuracy of process documentation (wikis, knowledge-base articles, etc) related to Compliance Engineering

Responsibilities

• Work with security and data specialists to design and develop new security products and content
• Write scalable, maintainable, and testable code along with automated testing pipelines to ensure CI/CD is a reality
• Actively engage with other teams across the company to identify security scenarios where detection and policy-as-code can be used and guide the development of solutions to these problems.
• Write clear concise documentation to illustrate designs and functionality that has been implemented
• Develop infrastructure as required to monitor and scale for the companies needs - using IaC and automation

Minimum Qualifications

• 4+ years of experience in software development and/or test engineering - preferably in a security focused environment
• Experience developing or creating test frameworks with Python, GoLang or similar
• Experience with AWS, Azure or GCP
• Experience with relational database engines like MySQL, Postgres, SQLServer, Oracle etc and comfortable creating SQL queries and scripts
• Experience creating project plans, communicating progress, and tracking to completion
• Experience with Infrastructure as Code - Terraform, CloudFormation or similar
• Experience with Continuous Integration systems is a plus (e.g., Jenkins,  GitHub, Codefresh, Dockerhub)
• Bachelor’s degree or higher in Computer Science, or equivalent experience

We'd love to hear from you if these kinds of challenges excite you, and you want your work to make a positive difference in the world!

Lacework is an Equal Opportunity Employer. It is the policy of Lacework to provide equal employment opportunity to all persons, regardless of age, race, religion, color, national origin, sex, political affiliations, marital status, non-disqualifying physical or mental disability, age, sexual orientation, membership, or non-membership in an employee organization, or on the basis of personal favoritism or other non-merit factors, except where otherwise provided by law