#1 of 2Say Media - Software Engineers, Full Stack Engineers, Senior Front End Engineer (San Francisco, Portland OR), DevOps (San Francisco, Portland, REMOTE), Engineering Manager (San Francisco)
Say Media is building a platform for digital magazines. This year we're scaling from 50 million page views to 500 million. Come help us do this.
Say is well funded and a fun place to work at, with great work/life balance. We're looking for good engineers who enjoy learning new technologies. Our platform is Python based with an Angular front end, but it's okay if you don't have experience with these yet.
I'm not a recruiter, just a programmer who enjoys working at Say. You can see our jobs at http://www.saymedia.com/jobs, or email your resume to me and I'll pass it to the right person (email in profile).
* Note: due to the wait for H1B visas we're not currently considering international candidates, except for remote devops.
* Note: we don't use 3rd party recruiters
#2 of 2Simple | Security Engineer | REMOTE or Portland, Oregon
Hey everyone, my name is Dylan and I'm on the security team at Simple. We're looking to hire a new security engineer. Simple is a subsidiary of BBVA Compass that seeks to add superior engineering and transparent policies to the banking world. We've been around since 2009 and we have about 260 employees.
Our security group is split into two teams - Security Operations and Security Governance. SecOps builds security software and features for our customers and employees (like two-factor authentication) and Security Governance performs security assessments on our existing and pre-release software. You would be joining me on the Security Governance team, doing web and mobile penetration tests, source code review and incident response.
In this role, you'll be working through different parts of our frontend, backend and internal software and breaking it any and every way you can. You'll be working closely with the software engineering teams as a resident security authority. You'll also be checking IDS logs and working with tools like ThreatStack, CrowdStrike, Suricata, etc. Prior experience with those exact tools is helpful but not necessary, we'll get you up to speed regardless. More important is the ability to find real security flaws in applications and spot problems with source code.
This is an ideal job for those who are technically competent and tired of working as a security consultant (however, you do not need to have been a consultant, we will consider virtually any background as long as you have solid skills).
Some report writing will be required for you to document and track vulnerabilities, but you will not be using pages and pages of methodology or vulnerability diagram boilerplate. Most reports are about a page with a much simpler template, and posted right to GitHub. You'll be doing more direct communication with engineers via IRC or Zoom about vulnerabilities you find than you will be writing a report about it.
Speaking of GitHub, we use it for everything. Even our HR and marketing teams use GitHub. We are a very engineering-heavy organization. We also offer a lot of support for remote employees - I work fully remote from NYC. We use a private IRC server and Slack for chat, Zoom for video conferencing and we even have two Double Robotics robots in our office to remote into.
You can see the full, slightly more HR'd job description here: http://banksimple.theresumator.com/apply/b9GKYw/Information-...
Feel free to shoot me an email at email@example.com, I'll be glad to talk more about the company or the role. If you'd like to apply, apply directly through the link above and I'll see your résumé.