Sr. Security Engineer

| Greater NYC Area
Join our Engineering Services team
Our engineering services team works closely with business customers in tech, defense, and finance on quick-response feature development, bug fixes, and integration of the tools they depend on for endpoint detection and response, event log aggregation, secure software updates, and security testing.
We leverage the best of open-source software for our work, and regularly contribute enhancements to these projects as a result. In this way, we plan to bring osquery, Santa, Omaha and StreamAlert to parity with the leading proprietary alternatives.
Role Description
You will develop software solutions with a focus on security – custom tools for security operations, automated bug-finding systems, and secure software engineering – using modern practices such as regular code reviews, test-driven development, and milestone-tracked issue tasking.
We are hiring experienced Software Engineers with professional backgrounds in developing systems software, desktop applications, mobile, or cloud software. The primary tool that our team works on is osquery, an open-source, multi-platform endpoint agent written in modern C++.
This position is not a fit for you if your experience is primarily front-end, web, or if you don't have a background or strong interest in security. The ideal candidate is proficient in either C++ or Python, having spent at least 2 years developing it professionally.
You will work in a small (2-4 people) team of engineers on 4-8 week development cycles, reporting to the Engineering Services Lead. With the exception of maintaining core hours of availability and attending meetings, you will have a results-focused work schedule that works best for you.

Responsibilities

  • Interpret customer requirements and make engineering estimates
  • Work in your favorite IDE to develop and extend open-source software
  • Learn about the technology stacks being used to secure systems at scale
  • Communicate and present your accomplishments in small group meetings
  • Write helpful and complete documentation for technical end-users
  • Work with the open-source developer community to guide and support the adoption of our contributions
  • Code review the work of your peers to assure quality, security, and performance
  • Write about and present your accomplishments to the community
  • Travel within the US to customer locations is an occasional opportunity, but not required

Requirements

  • Experience working on a professional software engineering team
  • Attracted to learning new technologies and codebases
  • Quick to collaborate and participate in discussions
  • Share our interest in secure software development
  • Comfortable settings your own goals and taking charge of your projects
  • Familiar with the Git (and Github) workflow for development
  • Proficient in one or both of the most needed programming languages: C++, Python. Experience with Go-lang is a plus, but not required.
  • Comfortable contributing to cross-platform software and supporting multiple operating systems
  • Able to design and implement practical solutions that balance usability, maintainability, and performance
  • Adept at writing and interacting with customers. We highly encourage all engineers to get regular face-time with customers, to write company blog posts about their accomplishments, and to deliver presentations to the technical community.

Benefits

  • Our workforce is 50% remote. Many employees choose to work from home. As long as you keep delivering good work, we keep our hands off your personal style and let you manage your work day as you work best.
  • Liberal expense policy for acquiring the equipment and software that help you do your job. If we need hardware, we buy it. Everyone has rack space and corporate cards.
  • We can tell you exactly what projects you'll work on and the people you'll work with. If it's not what you want, no need to initiate a lateral transfer, we can shift your work without an issue.
  • Every year, we pay for the best in conference training, technical training, and managerial classes for our team. Everyone is encouraged to identify additional opportunities for personal professional growth.
  • We routinely highlight the work our employees are specifically paid to do via our blog, product offerings, and conference talks. We talk about more than just side projects.
  • We're at the forefront of a number of markets and have the internal expertise and the ambition to capitalize on those opportunities. See your work in use and valued by many others.

Benefits for Eligible US Employees

  • Multiple generous health, vision, and dental insurance plans including no-monthly-premium options supporting individuals and families through JustWorks
  • Ancillary benefits including life and disability insurance, pre-tax commuter benefits, free Citi Bike membership, access to a HealthAdvocate, a healthcare Flexible Spending Account (FSA), and a free One Medical membership
  • 3-4 months paid parental leave
  • 401k with 5% company matching through Betterment
  • Moving expenses: $5k one-time
  • Charitable donation matching up to $1,000
  • Bonuses for recruiting, public speaking, tool releases, blog posts, academic posters, proposals, and whitepapers, and end-of-year bonuses based on company, team, and personal performance
  • 14 company holidays and four weeks of Paid Time Off (PTO)

Benefits for Eligible Canadian Employees

  • Premium health, vision, and dental insurance plans
  • Life/AD&D Insurance options, as well as short- and long-term disability insurance plans
  • RRSP plan with 5% company matching
  • Charitable donation matching up to USD$1000
  • Bonuses for recruiting, public speaking, tool releases, blog posts, academic posters, proposals, and whitepapers, and end-of-year bonuses based on company, team, and personal performance
  • 14 company holidays including provincial statutory holidays and select US holidays
  • 2 weeks of Paid Time Off (PTO) and 2 weeks of sick time per year
Read Full Job Description

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • PythonLanguages
    • InVisionDesign
    • TrelloManagement
    • WordpressCMS
    • PipedriveCRM
    • MailChimpEmail

Location

We're located in the heart of the Financial District, with ample commuting options including MTA, Path, and ferries.

An Insider's view of Trail of Bits

What’s the vibe like in the office?

Our offices are very easy going. Since half our employees are remote, we’re a remote-first company that just happens to have 20 people working in NYC. This gives us the benefit of a flexible remote culture but also have a place to get away from home and socialize with coworkers without rigid hours.

Ryan

Principal Security Engineer

How do you collaborate with other teams in the company?

Half of Trail of Bits is remote, so online collaboration and communication keeps us running. We make heavy use of Slack, Google Docs, Github, Trello, and video calls. Each project has its own Github repository and Slack channel, where most project communication occurs. A weekly video call provides high-level updates to the whole company.

Artem

Principal Security Engineer

What makes someone successful on your team?

Successful people at Trail of Bits are self-motivated and committed to doing their best work. They are team players that are willing to participate and be involved with projects across the company. They are curious, embody a growth mindset, and actively watch out for new opportunities to help the company grow and thrive.

Mark

Senior Security Engineer

How would you describe the company’s work-life balance?

Trail of Bits makes it really easy for each of us to create the work-life balance that works for us as individuals. There is a lot of flexibility around when and where we work, and our tools and workflows make collaboration easy in a variety of settings.

Amelia

Operations Manager

What are Trail of Bits Perks + Benefits

Culture
Eat lunch together
Open door policy
Team owned deliverables
Team based strategic planning
Diversity
Documented equal pay policy
Unconscious bias training
We work with LifeLabs once per year to deliver an unconscious bias training to our employees.
Diversity manifesto
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Choose between premium MetLife or Aetna dental plans, at no cost to the employee.
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
We maintain a flexible work schedule that cares more about results than time in the office.
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Relocation Assistance
Our relocation assistance plan offers a maximum reimbursement of $5000.
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Acme Co. offers employees professional development opportunities like The ability to attend job related conferences and seminars.
Lunch and learns
We regularly host team reviews of new academic research publications.
Cross functional training encouraged
Promote from within
More Jobs at Trail of Bits5 open jobs
All Jobs
Dev + Engineer
Product
Developer
new
New York
Developer
new
New York
Product
new
New York
Developer
new
New York
Developer
new
New York