Security Developer
We're looking for a Security Developer to join us in the design, building, testing, and deployment of new tools and features that protect the confidentiality, integrity, and availability of our product. You'll be working with talented security developers to build high-quality tools that are scalable, testable, and extensible. As a member of the security development team, you will work closely with designers, product managers, and other stakeholders to define and execute Hootsuite's vision and values. This is a hybrid role and is open to applicants located within commuting distance of our Bucharest office in Romania. In this role you will report to the Senior Manager, Information Security.
WHAT YOU'LL DO:
- Work closely with software development staff to develop tools and practices to support Hootsuite’s Secure Software Development Life Cycle (SDLC) and controls framework
- Develop security engineering components from inception to production
- Support the technical components of our incident response team by executing operational runbooks as required
- Support and advise the Production DevOps teams in the design and implementation of a secure cloud hosting platform
- Recommend and deploy tooling to manage security in the delivery pipelines as well as production systems
- Conduct security assessments of applications by doing code reviews and provide mitigation recommendations
- Provide advisory on security bug remediation to development staff and other security staff
- Participate in Hootsuite’s security incident on-call rotation schedule
WHAT YOU'LL NEED:
- Considerable relevant development experience in a similar role, or in one or more of the following roles - application architect, system architect, software developer, system administrator
- Degree or Diploma in Computer Science or Engineering or equivalent experience developing and maintaining large-scale software.
- PHP, Scala and Golang experience is an asset
- Experience working in a cloud (preferably AWS) environment with CI/CD along with familiarity with Unix / Linux based operating systems
- Solid understanding of application and database security concepts and architectural principles around authentication, authorization, session management, configuration management, data handling, and cryptography
- Thorough understanding of web and mobile application security vulnerabilities, including but not limited to the OWASP Top 10 list of vulnerabilities
- Experience in providing solutions to and leading numerous security vulnerability remediation activities
- Collaboration and Teamwork: works with others to deliver results, meaningfully contributing to the team and prioritizing group needs over individual needs
- Creativity and Innovation: seek new and better ways of doing things, generates original and imaginative ideas, products, or solutions
- Customer Focus: demonstrates a desire to proactively help and serve internal/external customers to meet their needs
- Open Communication: clearly conveys thoughts, both written and verbally, listening attentively and asking questions for clarification and understanding
- Problem Solving: uses an organized and logical approach to find solutions to complex problems. Looks beyond the obvious to understand the root cause of the problem
- Challenges and supports others to create results but also to develop new capabilities. Successfully develops the capacity and capability of the team and individuals on the team
WHO YOU ARE:
- Tenacious. You are determined to succeed, and you are motivated by the success of customers, colleagues and the community.
- Curious. You are always learning and seeking ways to make things better.
- Conscientious. You keep your promises, taking your commitments to others seriously, and you have strong integrity.
- Humble. You lead with humility and empathy, respecting and learning from the perspectives of others.
In all we do, our six guiding principles light the way:
Step Up: Show the world what it looks like to live and work by these guiding principles. #StepUp
One Team: Make Hootsuite a place where everyone feels safe, welcome, valued, and empowered to do their best work without compromising who they are. #OneTeam #FreeToBeMe
Customer Obsessed: Focus relentlessly on helping our customers succeed. #CustomerObsessed
Go Fast, Be Agile: Widen our competitive advantage by committing to speed and simplicity over perfection and complexity. #GoFastBeAgile
Play to Win: Commit to building an incredible, profitable company for our customers, our employees, and our stakeholders. #PlayToWin #NoExcuses
Neighbours & Allies: Give back to our communities and be an ally. #SocialForGood #Allies
Accommodations will be provided as requested by candidates taking part in all aspects of the selection process.
#LI-BW1