Senior Software Engineer, Security at Webflow

| San Francisco
!Sorry, this job was removed at 9:02 a.m. (PST) on Friday, March 27, 2020
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Webflow is a visual web development platform that empowers non-coders to create incredible experiences for the web. 

We’re looking for a Senior Software Engineer, Security to join the Systems and Infrastructure team to help us secure our next-generation web publishing platform. Work with our team of talented engineers to protect our customers and ensure best security practices are being followed. As the first security engineer hire, you will help define what security looks like at Webflow and will be able to have a very large impact in a growing team by providing technical guidance on software design from a security perspective. You will support our cloud infrastructure by developing tools, building services, and providing consultative services to our engineering teams. You will also work closely with developers to diagnose, document, and remediate application security vulnerabilities as well as educate and mentor engineers as they build and maintain existing services. 

About the role
  • Location: San Francisco HQ or remote (anywhere in Western Hemisphere)
  • Full-time

As a Senior Software Engineer, Security you’ll … 

  • Work on new product security features to help make our platform more secure and support our customer’s security needs
  • Help us achieve and maintain security compliance and certification
  • Help build, manage, and maintain an AWS architecture that meets accepted best practices for security, reliability, and maintainability 
  • Conduct threat modeling tied to security services
  • Take a leadership role in driving security initiatives at Webflow
  • Establish, advocate, and enforce security policies and best practices among our team members.
  • Lead efforts to keep our customers' data and company assets safe.
  • Collaborate with colleagues across a variety of teams to architect & ship projects securely
  • Investigate security-related reports from customers and security researchers, own our bug bounty program, and help prioritize remediation efforts
  • Understand offensive techniques/tactics and be able to prioritize mitigation techniques or technologies accordingly.
  • Work on a highly technical platform that empowers hundreds of thousands of people, and serves millions of page views an hour

That said, these role responsibilities are just the start! At Webflow, we encouraged you to contribute wherever your interests take you — and shape your role accordingly. 

And this isn’t just a philosophical bent: we actually give you 4 hours a week (10% of the work week) to tackle passion projects directly related to Webflow. 

About you

You’ll thrive as Security Engineer if you:

  • Are an experienced software engineer, preferably a generalist or a specialist with an interest in all aspects of security
  • Have a solid understanding of OSI model, TCP/IP, HTTP and TLS
  • Experience supporting and maintaining Node.js applications and APIs
  • Prefer automating work over manual processes - we love automation and would love you to build your own tools for automating processes
  • Have extensive experience working in an AWS environment
  • Have some familiarity with many of the tools we use: Kubernetes, Docker, Terraform, node.js, mongodb
  • Are able to make pragmatic security decisions, understanding the tradeoffs between alternative approaches.
  • Are very comfortable behind a linux terminal
  • Comfortable with using Git

However, even if you don’t meet 100% of the above qualifications, you should still seriously consider applying. Studies show that meeting just 50% of a role’s requirements puts you in the running. 

About us 

At Webflow, we believe that our success will not only be defined by what we do — but by how and why we do it. So, here is the Webflow “why” and our “how”: 

Our dual missions — one for the world, one for us

  1. For the world: To empower everyone to create for the web and spark an unprecedented wave of digital innovation.
  2. For ourselves: Lead fulfilling, impactful lives.

Our core behaviors (how we act)

  1. Start with customers
  2. Practice extraordinary kindness
  3. Be radically candid
  4. Move intentionally fast
  5. Just fix it
  6. Lead by serving others
  7. Dream big
Our commitments to you 
  • We’ll pay you! This is a full-time, salaried position that includes equity
  • We’ll invest in your physical and mental well-being with health, dental, and vision benefits and a monthly stipend for health and wellness expenses 
  • We’ll pay you to take a vacation … seriously. We’ll give you a $1,000 bonus for taking your first vacation with us that is more than 5 days 
  • We offer flexible parental leave for moms and dads
  • We provide remote employees with the equipment they need to create a great remote work environment 
  • We will offer you the support you need to help you grow as an impactful Senior Software Engineer, Security and a healthy human being 
Ready to apply?

If you share our values and our enthusiasm for empowering the world, we’d love to hear from you!

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Sales & Marketing
    • JavascriptLanguages
    • GraphQLLanguages
    • ReactLibraries
    • Node.jsFrameworks
    • MongoDBDatabases
    • DockerDatabases
    • TerraformDatabases
    • HubSpotCRM

Location

398 11th St, San Francisco, CA 94103

What are Webflow Perks + Benefits

Webflow Benefits Overview

3 weeks PTO (4 weeks after 2 years, 5 weeks after 5 years) + 8 national holidays
• Bonus extra PTO week we call "winter recharge" between Christmas and New Years Day. Employees can also elect to "flex" the holidays and take 5 flex observance days in place of the bonus week.
• $1,000 bonus the first time you take a vacation that's 5 days or longer
• We cover 99% of our health plan (which is a Platinum-level plan that has a $0 deductible) for you and any eligible dependents.
• $1,000/year Health Reimbursement Account funded by Webflow (can be used on a bunch of health-related things, jumps to $3,000/year if you have dependents).
• We provide family leave (including adoption) to all parents. All parents receive 8 weeks paid no matter their location, and birth givers receive up to 8 additional weeks for medical recovery. After leave, you can arrange for flexible hours, or even use some days from your leave after you return to work.
• 10% time (4 hours a week) to spend on special projects or learning - the only caveat is that it should somehow benefit the company, even if it means you're learning some new skill that you think might be applicable to our team or will improve our culture.
• $380/month in Webflow-paid commuter benefits (can be used for parking and transit if you commute to a workspace)
• Remote team members who do not receive a commuter benefit receive a $380 allowance toward their remote office, coworking space or to create their own home office of their dreams.
• $1000/yr (or more, we've been very flexible) in skill development reimbursements (things like books, Egghead.io classes if you want to learn how to code, conferences, etc)
• 401k plan (though no match yet)
• The latest gear (Macbook Pro, Standing Desk, etc) to be productive
• Yearly team retreat (Mexico, Portugal, and San Diego) and HQ visits
• BTO - Birthday Time Off!
• $200 monthly health and wellness stipend.

Culture
Friends Outside of Work
Eat Lunch Together
Team-Owned Deliverables
Team-Based Strategic Planning
Group Brainstorming Sessions
Open Office Floor Plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly Diverse Management Team
Unconscious Bias Training
Diversity Manifesto
Someone's Primary Function is Managing the Company's Diversity and Inclusion Initiatives
Health Insurance & Wellness Benefits
Dental Benefits
Vision Benefits
Health Insurance Benefits
Acme's health insurance policy covers up to 99% of out of pocket expenses.
Life Insurance
Wellness Programs
Retirement & Stock Options Benefits
401(K)
Company Equity
Child Care & Parental Leave Benefits
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Generous PTO
Sabbatical
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Free Daily Meals
Game Room
Stocked Kitchen
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Promote from Within
Continuing Education Stipend
We offer $1000 annualy for continuing education.
Time Allotted for Learning
Acme Co. allows employes to set aside 10% of working hours for learning.
More Jobs at Webflow6 open jobs
All Jobs
Finance
Dev + Engineer
Content
Finance
new
San Francisco
Finance
new
San Francisco
Developer
new
San Francisco
Content
new
San Francisco
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView Webflow's full profileSee more Webflow jobs