Senior Security DevOps Engineer
San Francisco
Applications have closed
Amplitude
Build better products by turning your user data into meaningful insights, using Amplitude's digital analytics platform and experimentation tools.Our infrastructure consists of over 2,000 servers on AWS and is continuing to grow. As a member of our Cloud Engineering team, you will be responsible for keeping our infrastructure secure. You will work on our deployment, automation, and monitoring systems. You will also work closely with our development team to implement the necessary processes to keep our platform highly available, efficient and secure. Your work will touch many technologies including AWS, SaltStack, Docker, Threatstack, Consul, Redis, Kafka, and Postgres.
Responsibilities:
- Work closely with our internal InfoSec team and be the primary engineering contact related to all things security.
- Own and manage our security vulnerability monitoring and intrusion detection systems. Ensure we are proactively fixing issues raised. Manage the interactions with the company’s outsourced SOC, and the WAF.
- Develop internal tooling for automatic deployment of security patches to our production infrastructure.
- Build out, test and maintain disaster recovery solutions and tabletop exercises.
- Architect and implement solutions necessary to address security audits and compliance efforts. Knowledge of SOC2 and ISO27001 and PCI a plus.
- Work with external security testing vendors to coordinate pen testing of our platform and network. Coordinate any necessary fixes with the engineering team. Support the outsourced bug bounty program.
- Work closely with the applications and infrastructure engineering teams to ensure we are considering security when architecting and building new systems. Ensure that security solutions are architectured with developer velocity and efficiency in mind. Identify and develop tools to aid this process.
- Develop tools to automate the ongoing security auditing of IAM permissioning and other AWS configurations
- Participate in an on-call rotation with the engineering team.
Skills and Experience:
- B.S., M.S., or Ph.D. in Computer Science or another technical field
- 3+ years of experience working in a Software Engineering role
- 3+ years of experience working in a DevOps role
- 3+ years of experience working in a Security role handling cloud infrastructure
- Experience securing AWS deployments.
- Experience turning feedback from security analysis tools (Threatstack, Amazon Inspector, etc) into infrastructure improvements
- Familiarity with Docker and container orchestration tools like Kubernetes
- Experience managing and automating large AWS deployments (100+ machines)
- Strong foundation in programming, algorithms, and software application design
- Passion for solving challenging problems and iterating quickly
Who We Are
The Company: Amplitude is filled with humble, life-long learners who are eager to help one another and the company succeed. Our values of growth mindset, ownership, and humility are core to the way we work: we’re tenacious in the face of challenges, we take the initiative to solve problems that drive our shared success, and we operate from a place of empathy and openness, seeking to understand many points of view.
We care about the well-being of our team: along with excellent health insurance, we offer flexible time off, a monthly wellness stipend, delicious in-office lunch, dinner, & snacks, commuting benefits, a 12-week parental leave, a generous Learning & Development stipend, and a full 10 year window to exercise your stock options.
The Product: Amplitude is the world's #1 product intelligence platform– we empower teams to use customer data to build great product experiences for growth. We’re super proud of what we’ve built and continue to build on: a platform that enables companies to thrive.
Other fun facts about Amplitude:
- Our extraordinary founders were accepted into Y Combinator back in 2012– since then, we’ve opened offices in San Francisco (HQ), New York, Amsterdam, London, Paris, and Singapore.
- Our Leadership Team is 43% women–well above the Silicon Valley average
- Our fearless mascot is the datamonster, our fearless leader is CEO & co-founder Spenser Skates
- In December 2018, we raised $80 million in Series D venture funding led by Sequoia Capital at a valuation of $850 million
- We’re backed by incredible partners: Sequoia Capital, IVP, Battery Ventures, Benchmark Capital, and Y Combinator
- Over 30,000 teams and 20 of the Fortune 100 use Amplitude to improve conversion and retention
Amplitude provides equal employment opportunities (EEO). All applicants are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, or sexual orientation.
Amplitude’s D&I Commitment: Amplitude believes that diversity enables creation of better products, ability to solve complex problems, and drive more powerful solutions. In order to make diversity possible, we commit to striving to create an environment of inclusion: an environment focused on psychological safety, empathy, and human connection, which will allow employees of all backgrounds to feel the care they need to thrive.
Tags: Audits Automation AWS Cloud Compliance Computer Science DevOps Docker IAM Intrusion detection ISO 27001 Kubernetes Monitoring Pentesting PostgreSQL Redis Security analysis SOC 2
Perks/benefits: Career development Equity Flex hours Flex vacation Health care Insurance Parental leave Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs