Fullstack Engineer Secure Secret Detection
Job Description
As a part of the GitLab Secure:Secret Detection team, your role will center around enhancing the security of software development within GitLab. This dynamic team is committed to helping developers write better code and worry less about common security mistakes. We do this by helping developers easily identify common security issues as code is being contributed, and mitigate these issues proactively.
Requirement(s)
What You’ll Do: Conduct Code Review within our Code Review Guidelines and ensure community contributions receive a swift response. Recognize impediments to our efficiency as a team ("technical debt"), propose and implement solutions Represent GitLab and its values in public communication around specific projects and community contributions. Confidently ship small features and improvements with minimal guidance and support from other team members. Collaborate with the team on larger projects. Participate in Tier 2 or Tier 3 weekday and weekend and occasional night on-call rotations to assist in troubleshooting product operations, security operations, and urgent engineering issues. What you’ll bring: Professional experience working in Ruby on Rails and Vue.js. Experience building frontend web apps with REST and GraphQL. Experience writing automated tests (eg. Jest, Karma, Jasmine, Mocha, AVA, tape). Experience with Go, or motivation to learn. Knowledge of security concepts, vulnerabilities, mitigation techniques, and secure coding practices is preferred. Proficiency in the English language, both written and verbal - sufficient for success in a remote and largely asynchronous work environment. Experience with performance and optimization problems and a demonstrated ability to both diagnose and prevent these problems. Comfort working in a highly agile, intensely iterative software development process. An inclination towards communication, inclusion, and visibility.
