Snap Inc. is a camera company. We believe that reinventing the camera represents our greatest opportunity to improve the way people live and communicate. Our products empower people to express themselves, live in the moment, learn about the world, and have fun together.
We’re looking for a Security Engineer to join our InfoSec organization as a member of the Application Security, Infrastructure Security, Corporate Security or Detection and Response team! Depending on final team allocation, you will conduct security assessments/ testing, harden our development life-cycle, build the security fabric of a modern massive scale infrastructure, build and understand threat models, and drive efforts to achieve holistic threat detection. Working from either Los Angeles (most teams), Mountain View (D&R, Spam & Abuse, Infrastructure Security, CorpSec), Seattle (AppSec), or Yverdon-les-Bains (Detection & Response, Client Hardening), you’ll collaborate with engineers across many disciplines to keep Snap’s user data, environments, and employees safe.
What you’ll do (depending on team allocation):
Conduct in-depth security reviews of applications, back-end services, and business integrations, as well as build tooling for a secure development lifecycle
Design and implement secure solutions for authentication and authorization, networking, orchestration, deployment configuration, logging, system hardening, threat hunting and debugging of cloud services
Investigate events, triage potential incidents, and work closely with multiple Snap Inc. teams during incidents to drive response efforts
Design, architect and implement security software and services
Be a champion for security and user privacy
Knowledge, Skills & Abilities:
Proven experience in one or more of the following areas: application security (security assessments, finding and mitigating vulnerabilities), infrastructure security (building security enforcement and orchestration for Cloud environments), detection and response (digital forensics, incident management, intrusion detection), corporate security (operating system and network hardening, corporate identity, vulnerability management)
Solid development skills in at least one of the following languages: Java, Python and/or Go
Security knowledge of one or more team-relevant domain and technologies: web security, mobile application security, cryptography, Kubernetes, Amazon Web Services, Google Cloud Platform, operating system internals (macOS, Windows, Linux)
Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
3+ years of experience in the field of security monitoring or related security role
Expertise in authentication protocols, embedded security or wireless protocols
Familiarity with cloud-based services and infrastructure (Google Cloud, GSuite, AWS, Etc)
Experience in designing and building identity and authentication systems in a Beyond Corp model
Demonstrated knowledge in threat hunting and developing logic to automate threat detection and incident response
Excellent verbal and written communication skills, with high attention to detail
Work record of collaborating with internal and external stakeholders at all levels of a company
At Snap, we believe that having a team of diverse backgrounds and voices working together will enable us to create innovative products that improve the way people live and communicate. Snap is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification, in accordance with applicable federal, state, and local laws. EOE, including disability/vets. If you have a disability or special need that requires accommodation, please don’t be shy and contact us at [email protected].