You will be a key member of the newly created Security Engineering Team, with a mission to keep Quora safe from security problems by building robust protections around our products, infrastructure and people. Our small engineering team works on challenging problems every day. We have a culture that's rooted in constantly learning and improving, and our engineers are encouraged to think big and experiment with new ideas.
What Weβre Looking For:
- Sweat The Right Details: you thrive in understanding the details but will also know to ruthlessly prioritize the critical issues.
- Right-Size The Solution: you recognize guidelines and framework do not always fit the problem and know how to adjust the solution for scalability not always at-scale.
- Ownership: you are outcome focused and can deftly navigate obstacles, decompose complexities, manage your time and can communicate your vision to peers and management.
An Ideal Candidate Wouldβ¦
...be a capable software engineer while also spiking in at least one of the following domain expertise:
- Web/Browser Security: You have a deep understanding of web and product security while also being passionate about the state of browser security and privacy. You have an unhealthy obsession around idiosyncrasies of different browsers and user-agents (you stalk/participate in w3c forums), are well versed in various web authentication frameworks and are passionate about cryptography.
- Linux/System Security: You are well versed in AWS infrastructure security but also are passionate about scalability, reliability and operational rigor. Beyond that, you know that root does not mean root and are passionate about container security, POSIX Capabilities, SECCOMP and have a favorite flavor of LSM. In your spare time, you love playing around with OSQuery and eBPF.
Responsibilities:
- Availability for meetings and impromptu communication during Quora's "coordination hours" (Mon-Fri: 9am-3pm Pacific Time)
- Design, develop, and deploy applications to monitor cloud Infrastructure security and detect intrusions
- Deploy open-source tools or develop in-house solutions for OS hardening, access logging & analysis
- Build features or tools to ensure strong security in Quora product
- Provide security guidance to engineering teams and work with the product engineer on securing customer data in compliance with regulations such as GDPR and CCPA
- Drive the definition and implementation of security policies and monitor in conformance to the policies
- Conduct initial incident triage; determine scope, urgency, and potential impact of security incidents; lead and coordinate the incident response process
At Quora, we value diversity and inclusivity and welcome individuals from all backgrounds, including marginalized or underrepresented groups in tech, to apply for our job openings. We encourage all candidates who share a passion for growing the worldβs knowledge, even those who may not strictly meet all the preferred requirements, to apply, as we know that a diverse range of perspectives can have a significant impact on our products and our culture.
Additional Information:
We are accepting applications on an ongoing basis.
Quora offers a wide range of benefits including medical/dental/vision coverage, equity refreshers, remote work reimbursement, paid time off, employee assistance programs, and more. Benefits are country-specific and may vary.
There are many factors that will determine the starting pay, including but not limited to experience, location, education, and business needs.
- US candidates only: For US based applicants, the salary range is $155,656 - $277,387 USD + equity + benefits.
- Canada candidates only: For Canada based applicants, the salary range is $188,229 - $283,374 CAD + equity + benefits.
Ready to apply for this role?
Apply Now β
