Posted in

Staff Software Engineer – Platform Security

Staff Software Engineer – Platform Security

CompanyDiscord
LocationSan Francisco, CA, USA, Remote in USA
Salary$248000 – $279000
TypeFull-Time
Degrees
Experience LevelSenior, Expert or higher

Requirements

  • 7+ years of experience building and operating production systems and infrastructure.
  • 5+ years of experience writing software in at least one general-purpose programming language (we mainly use Python and Rust).
  • 4+ years of experience securing systems with millions of users.
  • Experience as the tech lead for projects involving 3+ engineers and spanning multiple quarters.
  • Experience designing and building user-facing software for customers beyond your immediate team.
  • Experience securing cloud-based environments (e.g. GCP, Cloudflare).
  • Experience with technologies for defining and orchestrating containers (e.g. OCI, Docker, Distroless, Kubernetes).
  • Understanding of modern authentication and authorization protocols and concepts (e.g. RBAC, OAuth 2.0, OIDC/SAML, Zero Trust network architectures, mTLS).
  • Experience with build and CI/CD technologies (e.g. Bazel, Buildkite, Terraform).

Responsibilities

  • Guide strategy and lead software engineering projects on a small, highly-autonomous, horizontally-integrated security team with a lot of leverage.
  • Consult on risk assessments, architectural designs, threat models, code reviews, and more—pragmatically balancing security with other business considerations.
  • Develop and apply best-in-class secure baselines for cloud and bare-metal resources.
  • Secure our software supply chain, from a developer’s laptop through version control and CI/CD and into production.
  • Build and own IAM systems that are user-friendly and promote least privilege.
  • Manage third-party vulnerabilities while supporting rapid growth for Product Engineering.
  • Partner cross-functionally for security monitoring and incident response.

Preferred Qualifications

  • You have a system to discover industry tools that can multiply your team’s impact.
  • You have experience securing multi-cloud environments.
  • You have developed and debugged distributed systems atop GCP and Cloudflare.
  • You have built and operated a service mesh (e.g. Envoy, Istio, Linkerd).
  • You have managed and secured VMs and bare-metal hosts (e.g. Linux, Salt).
  • You have designed and applied Kubernetes security policies (e.g. OPA Gatekeeper, Kyverno).