Senior Security Software Engineer, Trust & Safety
GitLab
Software & Data
Job Summary
Trust & Safety team members are the builders and maintainers of the anti-abuse operations at GitLab.com. The primary mission of the team is to protect the GitLab platform and its users from abusive activity and eradicate any content that violates our Policies. The Trust and Safety team develops the tools and manages the workflows that are needed to monitor, contain, mitigate, remove and report on abusive activity; these are the essential parts of our goal to ensure Gitlab is used as it is intended. The primary focus of the Security Engineer includes developing automation and creating tools to detect and mitigate abusive activity on GitLab.com, as well as processing operational workflows in the team and responding to Security Incidents.
- Minimum Qualification: Degree
- Experience Level: Senior level
- Experience Length: 5 years
Job Description/Requirements
As an SRE you will:
- Develop software to detect and mitigate abusive activity on GitLab.com
- Design automated Trust and Safety tooling/systemsÂ
- Lead the production and tuning of anti-abuse detection and mitigation tooling
- Assess and integrate new tools and technologies, particularly open-source
- Identify new abuse vectors and communicate them to the relevant stakeholders
- Utilize log ingestion platforms for analyzing and identifying the tactics, techniques and patterns of abusive users
- Assist with operational tasks like processing abuse reports, mitigating active and/or ongoing abusive activity
- Triage and respond to issues and incidents
- Participate in the Trust and Safety Team on-call rotation
- Contribute to the creation of documentation and runbooks
- Interview security candidates during the hiring process
What you’ll bring:Â
- Proficiency in Ruby (Ruby on Rails) and SQL
- 5+ years of demonstrated experience in Software Engineering with some experience in web or cloud security or abuse detection
- At least 1 year of experience in a security-focused role, or a desire to develop defensive security skills (i.e. incident response and security operations)
- Working knowledge of Google Cloud Platform (GCP), and/or AWS
- Experience using log analysis platforms such as ELK, bigquery, etc
- Professional experience using modern CI tools such as Gitlab CI, etc.Â
- Experience with Docker and Kubernetes in production use cases
- Technical knowledge of application development and architecture
- Experience with operating system internals, web applications and browser security
- Experience with designing and implementing processes and tools to improve incident handling and resolution
Important Safety Tips
- Do not make any payment without confirming with the Jobberman Customer Support Team.
- If you think this advert is not genuine, please report it via the Report Job link below.