Twitter is what’s happening, and what people are talking about right now. For us, life's not about a job, it's about purpose. We believe real change starts with conversation. Here, your voice matters. Come as you are and together we'll do what's right (not what's easy) to serve the public conversation.

The Vulnerability Management team is a critical group focused on building state-of-the-art solutions to prevent malicious actors from compromising Twitter’s infrastructure and data. We aspire to build high-quality systems that enable a secure-by-default infrastructure while minimizing overhead in system performance and developer productivity.

You will be responsible for building and scaling systems that prevent and minimize security risk for Twitter’s infrastructure and data.

Specifically, as a Senior Software Engineer, you will:

• Design, build, and deploy automation to scale infrastructure vulnerability discovery, tracking, reporting, and remediation across Twitter’s ecosystem

• Build integrations with third party vulnerability scanners and configuration management solutions

• Code using primarily Python

• Mentor junior engineers

• Conduct design and code reviews

• Provide actionable security guidance to asset owners to drive vulnerability remediation

• Work closely with security engineers who manage infrastructure policies to ensure proper security controls

• Develop key performance indicators around vulnerability, patch, and secure configuration management for communication to leadership

• Collaborate with other teams to harden our clients, servers, and networks against exploits

• Create long-term project roadmaps and prioritize project objectives

We are looking for an engineer who is excited about growing and improving security at Twitter by building systems and promoting security throughout the company. Ideally, you meet most of the following:

• Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience

• 6+ years of software development experience

• Experience designing, implementing, and deploying large distributed systems

• Experience leading large cross functional efforts across teams and with external partners

• Solid experience with a high level programming language (e.g., Python, Go, Java, Scala, C#, C++, etc.)

• Comfortable building and managing database schemas and writing complex queries

• Ability to see the big picture and build out concise, comprehensive, yet realistic project plans

• Ability to communicate ideas, designs, and proposals concisely

• Ability to balance short term engineering tradeoffs with long-term investments

• Dedicated to improving systems and processes around you. You leave code better than you found it!

• Prior mentorship experience

Bonus if you have:

• Experience designing, implementing, and delivering security services at scale

• Proficient with Python

• Experience building APIs using GraphQL

• Experience operating vulnerability scanners (e.g., Tenable, Qualys, Rapid7, etc.) at scale or integrating them into an application security pipeline

• Experience deploying services on major cloud service providers (e.g., AWS, GCP, etc.)

• Experience with configuration management systems (e.g., Puppet, Chef, Ansible, SaltStack, etc.)

• Experience with infrastructure as code and cloud native technologies (e.g., Terraform, containers, Kubernetes)

• Experience identifying, promoting, and executing a practical balance between user experience, security needs, and business needs

• Proven track record demonstrating impact across several teams, organizations, and/or security areas

• Prior front-end web development experience, especially with React and TypeScript

We care about making work happy and productive for everyone, with the option to work from home and remotely when you need, wellness benefits, six months of parental leave, and unlimited vacation that we believe you should be taking. 

We love sharing knowledge and ideas. Within our team, we have regular lightning talks. We regularly get together with the other Twitter engineering teams for tech talks. In addition, there are many study groups and interest groups you can join.

A few other things we value:

• Ethics - Ethical behavior means that we expect our team to work within their limits, ask for assistance, keep conclusions fact-based, and respect all of their professional responsibilities.

• Challenge - We solve some of the industry’s most challenging problems. Come to be challenged, learn, and thrive as an engineer.

• Diversity - Diversity makes us a better organization and team. We value diverse backgrounds, ideas, and experiences. 

• Work, Life, Balance - We work hard, but we believe that hard work should come with balance.

• Collaboration - There’s that saying, “If you want to go fast, go alone. If you want to go far, go together.” We want to go far.

• Variety - We encourage team rotations that allow you to work with and learn from other teams at Twitter.