Staff Security Engineer Operations @ Github

GitHub is looking for a Staff Security Engineer to join our Security Operations team. We are a hybrid team of traditional infrastructure engineers, site reliability engineers and security engineers, working together to create systems and tools that enable our fellow engineers to securely operate and scale the worlds largest platform for developer collaboration.

As a member of this team, you will design, and drive implementation of organizationwide capabilities such as secrets management, identity and access management, gateway access, secure provisioning, security telemetry and more. Youll always be challenged to solve interesting and novel problems that have real impact on how the world builds software.

The team is highly distributed and you must thrive in an environment of remote work and asynchronous communication. You will be expected to have strong written and oral communication skills and be able to develop effective relationships with coworkers in locations around the globe.

Responsibilities:

• Architect/develop, implement, and help maintain infrastructure security services.
• Mentor team members to uplevel technical and interpersonal security skills.
• Partner with teams across the organization (infrastructure, application engineering, data analytics, etc.) to ensure the security, availability and resilience of our infrastructure and services.
• Provide security guidance on new projects and technologies.
• Inform and influence updates to our security policies, standards, and procedures.
• Cultivate the open source projects developed by GitHub and build things you are proud to share.
• Participate in on-call rotations and respond to incidents as necessary.

Minimum Qualifications:

• Proficiency with the GNU/Linux operating system and shell scripting.
• Proficiency in at least one high level language such as Ruby, Python, Golang, etc.
• Experience with Azure or a similar cloud provider.
• Familiarity with configuration/orchestration management software such as Terraform, Puppet, Chef, Ansible, or Salt.
• A tenacious ability to diagnose and fix security, performance and reliability problems.
• Pragmatic and collaborative approach to decision making and system design.
• Familiarity with DevOps best practices such as continuous integration deployment.
• Understanding of production system monitoring observability and experience with telemetry systems/tools, like ELK, Splunk, Azure Data Explorer, and TICK stacks.
• Strong communication skills both written and verbal.