Software Security Engineer

Created on 30-05-2018

Location Palo Alto

CLOSED VACANCY Apply now

Save for later

Description

About Houzz

Houzz is the leading home renovation and design platform in the world. We have a highly engaged community of more than 40 million unique monthly users who leverage our technologies to find inspiration for their next home project, connect with over 2.3 million home design and remodeling professionals and discover products in the Houzz Shop.

About the Role

Houzz is looking for a self-motivated infrastructure security engineer to join our entrepreneurial, world-class engineering team. As a large online community and eCommerce website, it is important that we continue to employ industry best practices in security design throughout our platform. As a security engineer, you will have the opportunity to take part in all aspects of security for a rapidly growing company.

What You'll Do

Proactively identify and fix security vulnerabilities in the platform and network through audits and penetration testing

Responsible for security initiatives in the infrastructure group

Design and build new features that make users and data more secure

Automate security policy analysis and error detection

Automate spam detection and blocking of malicious activities

Establish and lead a security response team in case of crisis

Engage with the security community and employ industry best practices and learnings into our platform

Perform tasks that are often unstructured and addressing issues that may not be well defined or requiring new perspectives and creative approaches

Consult with engineering teams on developing practical solutions to mitigate risk

At a Minimum, We'd Like You to Have

Strong foundation and in-depth technical knowledge of security engineering, authentication, and communication protocols

Understanding of web application architecture

Experience with implementing and scaling host based and network based firewall and intrusion detection systems, and continuously monitor for suspicious activity

Knowledge of system and network security protocols

Strong scripting and/or programming skills in languages such as Python, Ruby, or Shell

Experience with automating and securing cloud environments such as AWS

Ideally, You'll Also Have

Deep knowledge about security protocols such as IPSEC, VPN, TLS, etc.

Past contributions to the security community

Willingness to learn new technologies and take initiative