What will your role be?
You will work on maintaining and improving the security of our infrastructure and applications. You will also help us respond to immediate threats and vulnerability reports, assess them, and either implement solutions yourself or design how they could be implemented. You are familiar with OWASP and related security terminology.
Summarized, your tasks will include (but will not be limited to) the following:
- Hardening and securing our internal and external systems;
- Reviewing PRs from other teams from a security perspective;
- Teaching other developers about security best practices;
- Reviewing bug bounty submissions and assessing their severity;
- Improving and maintaining our monitoring and alerting systems;
- Ensuring technical compliance with regulations such as the GDPR;
- Occasional internal pentesting;
- Developing new tools that help us improve and run our infrastructure.
If you want to read more about our development adventures, check out our tech blog: https://tech.channable.com/
You can also take a look at some of our open-source work at https://github.com/channable to get a feeling of how we work together and what our code looks like.
Who are we looking for?
Ideally, you have extensive experience in (web) application security and Linux security. You should be interested in operations and in keeping a complex distributed application running and secure at all times. And you can identify yourself with our core values. In more concrete terms, we expect you to have the following:
- Committed to high engineering standards;
- Knowledgeable on OWASP best practices and principles;
- Familiar with cryptographic primitives (Hashing, symmetric- and asymmetric encryption, PKI, etc.);
- Good understanding of networking concepts and protocols (SSH, DNS, SSL/TLS, HTTP, etc.;
- Knowledge of secrets management technologies, such as Hashicorp Vault;
- Security-awareness and familiarity with concepts like defense-in-depth and the principle of least privilege;
- Solid programming skills (preferably in either Python or Haskell).
And then there are some things that are ‘nice to have’:
- Experience in managing infrastructure with either GCE, AWS, or Azure;
- Familiarity with infrastructure as code tooling, such as Ansible and Terraform.
- Knowledge of other Hashicorp tools, e.g., Consul;
- Having used a functional programming language like Haskell or Scala;
- Experience using the Nix package manager;
- Hands-on experience with distributed systems.
Candidates of all levels are encouraged to apply. Our preference is to hire a candidate with at least a few years of experience, but we’re also open to applications from recent graduates.
- EU citizenship or a work permit, preferably already living in The Netherlands;
- Available for at least 4 days a week, preferably full-time.