Senior Software Engineer - Vulnerability Management
- Full-time
Company Description
Twitter is what’s happening, and what people are talking about right now. For us, life's not about a job, it's about purpose. We believe real change starts with conversation. Here, your voice matters. Come as you are and together we'll do what's right (not what's easy) to serve the public conversation.
Job Description
The Vulnerability Management team is a critical group focused on building state-of-the-art solutions to prevent malicious actors from compromising Twitter’s infrastructure and data. We aspire to build high-quality systems that enable a secure-by-default infrastructure while minimizing overhead in system performance and developer productivity.
You will be responsible for building and scaling systems that prevent and minimize security risk for Twitter’s infrastructure and data.
Specifically, as a Senior Software Engineer, you will:
Design, build, and deploy automation to scale infrastructure vulnerability discovery, tracking, reporting, and remediation across Twitter’s ecosystem
Build integrations with third party vulnerability scanners and configuration management solutions
Code using primarily Python
Mentor junior engineers
Conduct design and code reviews
Provide actionable security guidance to asset owners to drive vulnerability remediation
Work closely with security engineers who manage infrastructure policies to ensure proper security controls
Develop key performance indicators around vulnerability, patch, and secure configuration management for communication to leadership
Collaborate with other teams to harden our clients, servers, and networks against exploits
Create long-term project roadmaps and prioritize project objectives
Qualifications
We are looking for an engineer who is excited about growing and improving security at Twitter by building systems and promoting security throughout the company. Ideally, you meet most of the following:
Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience
6+ years of software development experience
Experience designing, implementing, and deploying large distributed systems
Experience leading large cross functional efforts across teams and with external partners
Solid experience with a high level programming language (e.g., Python, Go, Java, Scala, C#, C++, etc.)
Comfortable building and managing database schemas and writing complex queries
Ability to see the big picture and build out concise, comprehensive, yet realistic project plans
Ability to communicate ideas, designs, and proposals concisely
Ability to balance short term engineering tradeoffs with long-term investments
Dedicated to improving systems and processes around you. You leave code better than you found it!
Prior mentorship experience
Bonus if you have:
Experience designing, implementing, and delivering security services at scale
Proficient with Python
Experience building APIs using GraphQL
Experience operating vulnerability scanners (e.g., Tenable, Qualys, Rapid7, etc.) at scale or integrating them into an application security pipeline
Experience deploying services on major cloud service providers (e.g., AWS, GCP, etc.)
Experience with configuration management systems (e.g., Puppet, Chef, Ansible, SaltStack, etc.)
Experience with infrastructure as code and cloud native technologies (e.g., Terraform, containers, Kubernetes)
Experience identifying, promoting, and executing a practical balance between user experience, security needs, and business needs
Proven track record demonstrating impact across several teams, organizations, and/or security areas
Prior front-end web development experience, especially with React and TypeScript
Additional Information
We care about making work happy and productive for everyone, with the option to work from home and remotely when you need, wellness benefits, six months of parental leave, and unlimited vacation that we believe you should be taking.
We love sharing knowledge and ideas. Within our team, we have regular lightning talks. We regularly get together with the other Twitter engineering teams for tech talks. In addition, there are many study groups and interest groups you can join.
A few other things we value:
Ethics - Ethical behavior means that we expect our team to work within their limits, ask for assistance, keep conclusions fact-based, and respect all of their professional responsibilities.
Challenge - We solve some of the industry’s most challenging problems. Come to be challenged, learn, and thrive as an engineer.
Diversity - Diversity makes us a better organization and team. We value diverse backgrounds, ideas, and experiences.
Work, Life, Balance - We work hard, but we believe that hard work should come with balance.
Collaboration - There’s that saying, “If you want to go fast, go alone. If you want to go far, go together.” We want to go far.
Variety - We encourage team rotations that allow you to work with and learn from other teams at Twitter.