Wikimedia Foundation
Non-Profit β’ Free knowledge β’ Open Source Culture β’ Internet β’ Technology
501 - 1000
π° $2.5M Grant on 2019-09
Staff Software Security Engineer - PHP
September 25
πΊπΈ United States β Remote
π΅ US$129.3k - US$200.8k / year
β° Full Time
π΄ Lead
π Backend Engineer
π½ H1B Visa Sponsor
Wikimedia Foundation
Non-Profit β’ Free knowledge β’ Open Source Culture β’ Internet β’ Technology
501 - 1000
π° $2.5M Grant on 2019-09
Description
β’ The Wikimedia Foundation is looking for a Staff Security Software Engineer to join the Product Security team to build new security technologies to protect Wikipedia and our other projects. β’ This is a very hands-on engineering role working alongside our other security team members to design and code new features to protect and reassure our users and to ensure the platform remains resilient against attacks. β’ You will be working primarily on our MediaWiki platform which powers Wikipedia. β’ As a top 10 website, we must meet stringent performance standards while addressing new security challenges such as supporting modern authentication technologies, detecting and preventing platform abuse from bots, and planning and rolling out improvements to our security architecture by defending against emerging security threats. β’ Help design and build MediaWiki security capabilities β’ Mentor and lead a security development team β’ Review and deploy security features developed by the Foundation and community members β’ Work with other development teams to ensure that they make safe architectural and implementation choices β’ Perform security maintenance and address technical debt in security-critical components β’ Provide support for application security incidents and operations
Requirements
β’ +8 years of experience in the software engineering area with a focus on security β’ Ability to work effectively in a modern, object-oriented PHP code-base β’ Experience developing client-side JavaScript β’ Experience in developing secure software or security-related product features β’ A strong interest in working with a talented security team and learning more specialist security skills such as exploiting and mitigating application-level vulnerabilities β’ Patience in explaining security issues and their implications on privacy and risk to non-technical audiences β’ Sensitivity to the security challenges faced by participants in a large, international project β’ Experience using Linux at the command line for tasks related to web application development and deployment β’ Ability to maintain focus when working remotely β’ Experience working on anti-abuse mechanisms such as CAPTCHA and bot detection β’ Previous experience building security countermeasures against attacks on technologies at the web, backend, and database level β’ Experience finding and fixing security bugs and reviewing code for security gaps β’ A working knowledge of threat modeling and secure design patterns
Benefits
β’ U.S. Benefits & Perks
Apply NowSimilar Jobs
September 24
TCGplayer (an eBay company)
501 - 1000
Lead migration to microservices for TCGplayer's platform connecting hobbyists.
September 19
Abbott
10,000+
Working on a SaaS cloud platform for diabetes health management.
September 19
Abbott
10,000+
Lead data architecture for Abbott's diabetes care cloud platform.
September 17
FIS
10,000+
IT Architect Specialist for FIS core AP & AR enterprise applications.
πΊπΈ United States β Remote
π΅ $160.5k - $269.6k / year
β° Full Time
π΄ Lead
π Senior
π Backend Engineer
π½ H1B Visa Sponsor
September 17
Endpoint Clinical
501 - 1000
Develop and improve software architecture at Endpoint for life sciences.
πΊπΈ United States β Remote
π° $1.7M Debt Financing on 2010-03
β° Full Time
π΄ Lead
π Senior
π Backend Engineer
π½ H1B Visa Sponsor