DevOps Engineer
Synack - San Mateo, CA
posted 3 days ago
About the position
Synack's Penetration Testing as a Service platform manages customers' attack surfaces by discovering new assets, pentesting for critical vulnerabilities and gaining visibility into the root causes of security risks. We are committed to making the world more secure by harnessing a talented, vetted community of security researchers to deliver continuous penetration testing and vulnerability management, with actionable results. Synack's PTaaS platform has uncovered more than 71,000 exploitable vulnerabilities to date, protecting a growing list of Global 2000 customers and U.S. agencies in a FedRAMP Moderate Authorized environment. We are looking for an awesome DevOps/Infrastructure Automation Engineer with expertise in automated infrastructure build tools such as Terraform, Ansible, and Salt. This role requires hands-on programming and iterative development for various infrastructure components including web stacks, database systems, security tools, and networking/cloud environment configurations. You have knowledge of Google Cloud Platform and Microsoft Azure and the networking/security constructs of their Public Cloud environments. You will work closely with the Engineering teams to ensure proper software support, monitoring, and security policies. We understand this is a complex role and do not expect all candidates to possess knowledge of every tool we use--but we do expect the motivation and ability to learn/adapt/overcome challenges with a winning attitude.
Responsibilities
- Leverage extensive knowledge and understanding across multiple infrastructure software automation projects and CI/CD pipelines while partnering with Engineering, Product Management, InfoSec, and QA to define and execute against technical designs following industry best practices
- Work as a member of feature teams to deliver on the infrastructure portion of the product
- Predict and deliver improvements across a diverse scope to our automated infrastructure components within a DevSecOps methodology
- Enhance monitoring and alerting across the Synack production application while creating new alerts and responding to issues as needed
- Tune automation to overcome systems performance and stability issues and devise solutions based on limited information and precedent to resolve issues
- Create automated tests around our infrastructure suite to improve reliability
Requirements
- 3+ years of experience deploying and supporting scalable and high availability infrastructure utilizing CI/CD tools
- 3+ years of experience supporting SaaS or PaaS in a GCP, Azure, or AWS production high-traffic environment (must have experience with GCP providers)
- 3+ years of scripting skills in Golang and/or Ruby preferred
- Experience with database technologies such as MySQL, Postgres, Redis
- Experience with message broker/queue technologies like PubSub or Kafka
- Strong background in Linux/Unix and networking concepts
- Experience with event monitoring and alerting tools such as Prometheus, GCP Operations Suite (Stackdriver/Cloud Trace), and Splunk
- Cloud automation experience using tools such as GitHub Actions, Terraform, Ansible, SaltStack
- Container Orchestration experience using Kubernetes
- Experience automating tasks with advanced scripting skills
Nice-to-haves
- Understand security in a systems environment (What does a kernel-based rootkit look like?)
- A technical degree in Computer Science or Software Engineering. To us, DevOps is a combination of great systems engineering and software engineering.
- Experience with side projects where you've learned to apply new technologies, frameworks or programming languages.
Benefits
- $100,000 - $160,000 Salary determined by a combination of factors including location, level, relevant experience, and skills
- Compensation package may include equity and benefits
