DigitalOceanRemote
Staff Security Software Engineer
United States
Full-time
5 days ago
$183,000 - $229,000 USD
H1B Sponsor Likely
Key skills
JavaScriptPythonGoSQLLookerSnowflakeBigQueryRedshiftAirflowdbtgRPCKubernetesDockerGitHub ActionsElasticsearchPrometheusGitHubSaaSCommunication
About this role
DigitalOcean is a cutting-edge technology company focused on simplifying cloud computing. They are seeking a Staff Security Software Engineer to design, develop, and deploy security capabilities at scale while collaborating with product and engineering teams to implement secure architectures.
Responsibilities:
- Design, develop, and deploy resilient services and tooling that provide security capabilities at scale, primarily in Go, with some work in Javascript and Python
- Research and design automated approaches to detecting and actioning abuse and misuse of DigitalOcean products and services
- Work with product and engineering teams to design and implement secure architectures
- Design and build internal tools that enable our Security Operations Center to do more, faster
- Measure the efficacy of our services and tools, using logs, metrics, and audit records, to drive reporting and decision-making, leading to iterative and transformative security improvements as DigitalOcean scales. All while being mindful that security should be an efficiency enabler for the business, not an obstacle
Requirements:
- 8+ years of hands-on experience in software engineering projects, ideally with a security focus, in a complex, high-scale SaaS or IaaS environment
- Expert in writing robust code with good test coverage and demonstrated success in delivering projects
- Understanding of cloud-native services and infrastructure provisioning (e.g. compute, storage, networking)
- Deep familiarity with cloud services & infrastructure—compute, storage, network, managed services—and related abuse tactics, including DDoS, spamming, phishing, cryptomining, and bot networks
- Strong analytical and reporting skills, with proficiency in SQL and data warehouse querying (e.g., Snowflake, Redshift, BigQuery)
- A customer-first mindset—you aim to maximize abuse prevention while avoiding false-positives that could impact high-value customers
- Excellent communication and documentation skills; you can clearly articulate patterns, mitigation strategies, and tradeoffs to both technical and non-technical stakeholders
- Record of partnering with internal engineering teams and non-technical stakeholders to gather requirements and tackle security problems across an entire stack with empathy and creativity
- High integrity, strong judgment, and a track record of working independently on high-impact investigations and policy decisions
- Design, develop, and deploy resilient services and tooling that provide security capabilities at scale, primarily in Go, with some work in Javascript and Python
- Research and design automated approaches to detecting and actioning abuse and misuse of DigitalOcean products and services
- Work with product and engineering teams to design and implement secure architectures
- Design and build internal tools that enable our Security Operations Center to do more, faster
- Measure the efficacy of our services and tools, using logs, metrics, and audit records, to drive reporting and decision-making, leading to iterative and transformative security improvements as DigitalOcean scales
- Experience with microservice architectures, asynchronous and event-driven processing, and synchronous gRPC/HTTP-based requests
- Experience in building secure by default services and applications
- Familiarity with technologies such as gRPC, Docker, Elasticsearch, Prometheus/VictoriaMetrics, Kubernetes, and GitHub Actions
- Experience with Looker, Snowflake, dbt, and Airflow