Overview

We are looking for an engineer who will proactively improve the security of our codebase, our product, our cloud, and our customers’ on-premise deployments. You will be one of the early security team hires at Sourcegraph, where everyone contributes to our shared goals, from writing code to running vulnerability scans. Together, we will collaborate to build a world-class security culture and product.

Qualifications
Experience developing software as an engineer (i.e., writing code and contributing directly to applications)
Experience running security tools / vulnerability scans
Experience measuring, monitoring, and analyzing software vulnerabilities
Experience working in a startup environment
You are high agency
You communicate effectively in writing and documentation
You are able to directly contribute to our codebase and infrastructure (Go, TypeScript, Kubernetes, GCP)
Learn more about us
To create a product that serves the needs of all developers, we are building a diverse all-remote team that is distributed across the world. Sourcegraph is an equal opportunity workplace; we welcome people from all backgrounds and communities.

We provide competitive compensation and practical benefits to keep you happy and healthy so that you can do your best work.

Learn more about what it is like to work at Sourcegraph by reading our handbook.

Interview process
You apply here.
You speak with the Security manager for 30 minutes. To prepare:
Read through our handbook to learn more about how we operate and to find answers to common questions that you might have.
You write a short security assessment, taking less than 1hr of your time, explaining a security vulnerability sample problem.
We schedule remote interviews over video chat across multiple days.
1h Security concepts: We give you an open problem statement and you walk us through how you would solve the problem.
Will interview with 2 of the following:
At least one member of the security team
Any engineer mentioned in this document.
1h Technical experience: We ask you about your past work and accomplishments.
Will interview with 2 of the following:
Thorsten Ball
Eric Fritz
Asdine El Hrychy
Ryan Slade
Dax McDonald
1h Team collaboration: We ask you about how you work and communicate in a team setting, and how you handle tricky situations.
Will interview with 2 of the following:
Christina Forney
Rob Rhyne
Eric Broody-Moore
Pooja Jain
Dan Adler
If we have at least one of the above, the second interviewer can be any engineer on the security team or any engineer mentioned in this document.
30m VP Engineering
30m CTO
30m CEO
We check your references.
We make you a job offer.
We want to ensure Sourcegraph is an environment that suits your working style and empowers you to do your best work, so we are eager to answer any questions that you have about us at any point in the interview process.