Full-Time Senior Software Security Engineer (PHP)

Wikimedia Foundation is hiring a remote Full-Time Senior Software Security Engineer (PHP). The career level for this job opening is Expert and is accepting USA based applicants remotely. Read complete job description before applying.

This job was posted 2 months ago and is likely no longer active. We encourage you to explore more recent opportunities on our site. However, you may still try your luck using 'Apply Now' link below. We recommend focusing on newer listings available here.

Wikimedia Foundation

Job Title

Senior Software Security Engineer (PHP)

Posted

Career Level

Full-Time

Career Level

Expert

Locations Accepted

USA

Job Details

The Wikimedia Foundation is looking for a Senior Software Security Engineer to join the Product Security team to build new security technologies to protect Wikipedia and our other projects. This is a very hands-on engineering role working alongside our other security team members to design and code new features to protect and reassure our users and to ensure the platform remains resilient against attacks.

YOU ARE ...a smart developer with experience building security features in large-scale systems. You understand the importance of testing and documentation, and common pitfalls in developing secure web applications. You must have a passion for the WMF mission. We do (almost) everything publicly and the work we do touches thousands of editors every day.

You will be working primarily on our MediaWiki platform which powers Wikipedia. As a top 10 website, we must meet stringent performance standards while addressing new security challenges such as supporting modern authentication technologies, detecting and preventing platform abuse from bots, and planning and rolling out improvements to our security architecture by defending against emerging security threats.

You are responsible for:

  • Help design and build MediaWiki security capabilities
  • Review and deploy security features developed by the Foundation and community members
  • Work with other development teams to ensure that they make safe architectural and implementation choices
  • Perform security maintenance and address technical debt in security-critical components
  • Provide support for application security incidents and operations

Skills and Experience:

  • Strong software engineering experience with a focus on security
  • Ability to work effectively in a modern, object-oriented PHP code-base
  • Experience developing client-side JavaScript
  • Experience in developing secure software or security-related product features
  • A strong interest in working with a talented security team and learning more specialist security skills such as exploiting and mitigating application-level vulnerabilities
  • Patience in explaining security issues and their implications on privacy and risk to non-technical audiences
  • Sensitivity to the security challenges faced by participants in a large, international project
  • Experience using Linux at the command line for tasks related to web application development and deployment
  • Ability to maintain focus when working remotely

Additionally, we'd love it if you have:

  • Experience working on anti-abuse mechanisms such as CAPTCHA and bot detection
  • Previous experience building security countermeasures against attacks on technologies at the web, backend and database level
  • Experience finding and fixing security bugs and reviewing code for security gaps
  • A working knowledge of threat modeling and secure design patterns

FAQs

What is the last date for applying to the job?

The deadline to apply for Full-Time Senior Software Security Engineer (PHP) at Wikimedia Foundation is 9th of November 2024 . We consider jobs older than one month to have expired.

Which countries are accepted for this remote job?

This job accepts [ USA ] applicants. .

Related Jobs You May Like

Digital Identity Specialist (remote)

Lisbon, Portugal
1 day ago
Digital Identity
EIDAS Regulation
Mobile Development
Penguin Formula
Full-Time
Experienced

CSIRT ANALYST (M/F/D)

Munich/Augsburg (Germany) or Remote (from anywhere in Germany)
2 days ago
Cybersecurity
Digital Forensics
Incident Response
ADVENS
Full-Time
Experienced

Threat Intelligence Researcher

Indonesia
2 days ago
Malware Analysis
Python
Security Research
SecurityScorecard
Full-Time
Experienced

Embedded VSOC Analyst (Japanese Speaker)

Australia
3 days ago
Data Visualization
Geopolitical Analysis
Japanese Language
Sibylline Ltd
Full-Time
Experienced

Embedded VSOC Analyst (Korean Speaker)

Singapore, Singapore
3 days ago
Cyber Security
Data Analysis
Geopolitical Risk
Sibylline Ltd
Full-Time
Experienced

Embedded VSOC Analyst

Brazil
3 days ago
Data Analysis
Geopolitical Risk
Intelligence Gathering
Sibylline Ltd
Full-Time
Experienced

Security Architect

Worldwide
3 days ago
Azure DevOps
Jira
Zachary Piper Solutions, LLC
Full-Time
Experienced

Solutions Consultant ( Healthcare / DMV )

Washington , DC
3 days ago
Cloud Architectures
Cybersecurity Solutions
Network Security
Palo Alto Networks
Full-Time
Experienced
YEAR $198000 - $273000

Information Security Engineer - IoT

Chicago, Illinois
3 days ago
Cloud Security
Cybersecurity
IoT Security
Fortune Brands
Full-Time
Experienced
YEAR $115000 - $130000

DevSecOps Engineer

Novi Sad, Serbia
4 days ago
AWS
Azure
Cloud Security
Headhunte.rs
Full-Time
Experienced

Senior Penetration Tester & Reporting Specialist

Beograd, Serbia
4 days ago
Customer Interaction
Cybersecurity
Penetration Testing
Headhunte.rs
Full-Time
Experienced

Security Analyst

USA
4 days ago
Communication
SOC Assessment
Robert Half
Full-Time
Manager
YEAR $90000 - $115000

Looking for a specific job?