Security Engineer, Cloud Security
OpenAI$279,000 - $385,000/year
Full Time
Mid-level (3 to 4 years), Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Database Systems, Cloud Computing, CybersecurityIndustries
Requirements
Candidates should have experience supporting engineering and product implementation efforts through threat assessments, assurance activities, and advisory work across distributed systems. Strong knowledge of cloud service providers like AWS, GCP, or Azure, Kubernetes, and Cilium is required. Experience implementing and operating engineering security tools such as static/dynamic code analysis, software composition analysis, SBOM, OWASP SAMM, and fuzzing tools is necessary. Significant development and automation experience, including the ability to work with C++ code, is essential, along with a security-as-code mindset. Bonus points include a BS/MS/PhD in Computer Science, contributions to open-source projects, and security/cloud certifications.
Responsibilities
The Product Security Engineer will collaborate with engineering and product teams to improve existing and build new product features focused on threat modeling, assurance, and secure implementation. They will identify security gaps and vulnerabilities in ClickHouse Cloud and OSS, triage reported vulnerabilities, and improve security assurance activities like pentests, vulnerability assessments, bug bounty programs, and fuzzing. The role involves driving the implementation and usage of engineering security tools, nurturing the engineering-security relationship, handling information security events and incidents, and developing processes, tooling, and automation to scale security processes and mitigate business risks.
Skills
Threat Modeling
Secure Implementation
Key Management
Passwordless Authentication
Vulnerability Assessment
Penetration Testing
Bug Bounty Programs
Fuzzing
Static Code Analysis
Dynamic Code Analysis
Dependency Checks
Code Licensing Compliance
Snyk
Semgrep
GitHub
Memory Issues
Heap Overflows
Buffer Overflows
API Security
Server-Client Security
Clickhouse
High-speed column-oriented database management system
About Clickhouse
ClickHouse provides a high-speed, column-oriented database management system designed for developers and businesses that manage large-scale data. Its primary product processes analytical queries quickly by storing data from the same columns together, making it significantly faster than traditional row-oriented databases, especially in Online Analytical Processing (OLAP) scenarios. ClickHouse stands out from competitors by offering a free, open-source database that can be deployed on local machines or in the cloud, along with a fully managed service on platforms like AWS, GCP, and Microsoft Azure. The company's goal is to deliver a cost-effective solution that simplifies data management for its clients, as evidenced by user feedback highlighting substantial cost savings.
San Francisco, CaliforniaHeadquarters
2021Year Founded
$291.8MTotal Funding
SERIES_BCompany Stage
Data & Analytics, Enterprise SoftwareIndustries
201-500Employees
Benefits
Health Insurance
Unlimited Paid Time Off
Flexible Work Hours
Remote Work Options
Stock Options
Home Office Stipend
Risks
Redpanda Serverless poses a competitive threat in real-time data processing.
Integration challenges with PeerDB may delay expected benefits.
Dependency on Supabase could pose operational risks.
Differentiation
ClickHouse's column-oriented design offers superior speed for analytical queries.
The open-source model allows flexible deployment across various environments.
Integration with Grafana enhances data visualization capabilities.
Upsides
Partnership with Alibaba Cloud boosts presence in the Chinese market.
Acquisition of PeerDB enhances real-time analytics capabilities.
Launch of ClickPipes improves data processing efficiency for real-time updates.
Related Jobs
RemoteRemoteSenior Application Security Engineer
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteDevSecOps Engineer
OddballSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSenior Software Security Engineer
Muon SpaceSalary not specified
- Full Time
- Senior (5 to 8 years)
RemotePlatform Engineer: Kubernetes
SupabaseSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemotePerformance Modeling Engineer
GroqSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSenior Software Engineer, Secure Agents
Cohere$150,000 - $220,000/year
- Full Time
- Senior (5 to 8 years), Junior (1 to 2 years)
RemoteSr Project Manager, Commercial Product - MSI
Foundation Risk PartnersSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteVulnerability Detection Engineer (Content) - Exposure Management (Remo…
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Intelligent Automation Engineer (Security)
NerdWallet$136,000 - $252,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSoftware Engineer (C++), Exposure Management (Remote)
CrowdstrikeSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteOpen Source Infrastructure Engineer
Arize AISalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Cloud Security Architect (R-00079)
True Zero TechnologiesSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSecurity Engineer, Product Security
Chainlink LabsSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)