Riskified is the AI platform powering the eCommerce revolution. We use cutting-edge technology, machine-learning algorithms, and behavioral analytics to identify legitimate customers and keep them moving toward checkout.
Merchants use Riskified to increase revenue, prevent fraud, and eliminate customer friction. Riskified has reviewed hundreds of millions of transactions and approved billions of dollars of revenue for merchants across virtually all industries, including a number of Fortune 500 companies.
About the Role
We are looking for a talented SecOps Engineer to join our Information Security team. As a SecOps Engineer, you will be working with our Developers, DevOps, and Security teams to assist with meeting requirements and maintaining oversight on our cloud infrastructure.
You will be a part of a bleeding-edge cloud and web application security team which enables the agile development of secure and reliable applications
What You'll Be Doing
Collaborate with development and operations teams to develop the standards for web application security, cloud security, and day to day best practices
Leverage DevOps tools to build, harden, maintain and instrument a comprehensive security orchestration platform to be integrated into our infrastructure
Develop automated security and compliance capabilities in support of DevOps processes in a large-scale AWS cloud computing environment
Identify potential threat vectors in software applications and cloud architecture that could be used by attackers and cause disruption or a potential data breach
3+ years of experience working with numerous aspects of Information Security and DevOps methodologies
Direct experience with technologies like Github, Kubernetes, CI / CD, Docker, and HashiCorp Terraform and Vault
Solid understanding of Amazon Web Services (AWS) including VPC, ELB, IAM, KMS, EC2, Config, CloudTrail, Lambda, Security Hub, GuardDuty and others
Hands-on experience with scripting and coding using one of the following languages : Python, Ruby, Go, Scala, Node.js
Strong Linux fundamentals with hands-on experience
Knowledge of modern web applications frameworks and their security requirements
Experience in application security, vulnerability management, and scanning solutions - advantage
Ability to self-manage assigned tasks and projects
Ability to work independently with minimal direction
A growth mindset and love of learning new technologies
Experience with OIDC and SAML authentication - advantage