Security Engineer III

Overview

 

GitHub is changing the way the world builds software and we want you to help secure GitHub. We’re looking for a Security Engineer III to help accelerate that journey as we innovate and modernize core security processes.

GitHub operates thousands of servers, multiple networks, dozens of proprietary applications, and several third-party services that are critical to our business operations. With over 3000 employees, robust secrets management and perimeter security is fundamental to protecting all of it.

A global, remote-first team, Secure Access Engineering - Perimeter & Secrets enables and supports secrets management and access to internal infrastructure across GitHub. In this position, you will be responsible for maintaining and operating the security infrastructure and processes while identifying areas for improvement internally and through partnerships with our Security and Engineering teams.

We are looking for creative problem solvers and diverse thinkers - people who care about culture as well as customers and features. We believe that how we do things is as important as what we do. If you have a foundation in information security, large-scale web applications and infrastructure, as well as an ability to quickly learn and apply new concepts then this might be the gig for you.

Responsibilities

 

• Develop, implement, improve and maintain infrastructure & services covering SSH, VPN/Wireguard, secrets management.
• Automate tasks by consuming and building APIs while developing self-service tools and frameworks.
• Modernize incumbent security tools & processes optimizing for secure end-user experience.
• Partner with teams across the organization (infrastructure, application engineering, data analytics, etc.) to ensure the security, availability and resilience of our infrastructure.
• Cultivate the open source projects developed by GitHub and build things you are proud to share.

Qualifications

 

Required Qualifications:

• A few years professional work experience in systems and network security engineering, with a couple of years experience implementing commercial or custom authentication solutions.
• A couple of years professional experience with the GNU/Linux operating system and shell scripting.
• Several years professionally in at least one high level language such as Ruby, Python, Golang, etc.
• A Bachelors Degree or equivalent experience

Preferred Qualifications:

• Experience building highly available and secure systems at scale.
• Experience with Kubernetes and Docker.
• Experience with configuration/orchestration management software such as Puppet, Chef, or Ansible.
• Experience with the Hashicorp stack, specifically Vault.
• Experience with infrastructure services such as LDAP, SSH, VPN, HTTP proxies.
• Experience with Amazon Web Services, Microsoft Azure or a similar cloud provider.
• Ability to diagnose performance and reliability problems and suggest solutions.
• Pragmatic and collaborative approach to decision making and system design.