Heroku
About Heroku
Heroku is a thriving start-up owned by Salesforce.com, based in SOMA, San Francisco. Our work environment is fun and flexible while also ruthlessly focused on technical excellence and customer success. Our growing group offers lots of opportunities for hyper talented, self- motivated, no-drama and no-nonsense individuals who share our belief that cloud architectures are dramatically changing web application development and deployment, and want to be part of the vanguard of this movement.
We think that San Francisco is the best place in the world to be a software developer. If you are not currently a US resident, we can sponsor your H1B visa. That said, we'd love to hear from anyone who would be a good fit.
Heroku Data Infrastructure Developer
We're looking for a talented developer who will join us in reinventing how databases are deployed, used, and protected.
The Department of Data is a small team that operates as an autonomous internal startup within Heroku, and provides performant data services in a highly dynamic (some would say chaotic) environment. We manage one of the largest collections of databases in the world, and you could have an impact on every part of that, whether it's designing simple, intuitive workflows for our users, contributing to projects like PostgreSQL, or building bulletproof administration and monitoring tools.
You should be excited to learn any of these skills you lack:
- Ruby command line tools
- RESTful API design and implementation
- Internal administration tool design
- Queueing and messaging (e.g. rabbitmq, beanstalkd)
- Databases (PostgreSQL, MySQL, and NoSQL databases)
- Horizontal scaling
- High availability systems
- Ruby, Python, and bash
- Unix tools
- Amazon web services (EC2, SDB, S3, et al.)
- Unix Filesystems and Networking
- Designing secure systems
- Ops or DevOps experience (this is a developer position, but it helps to know what it's like on the ops side of things)
A resume is good, but we'd like to get to know you. Here are some of the ways you can help:
- A link to your Github account or other source code you've worked on
- Two or three code snippets that you think represent your coding style
- Brief description of your skills, passions, and work style
- Link to your blog and/or other personal/hobby apps you’ve built
Heroku Platform Security Engineer
Heroku’s security team is responsible for the overall security of the Heroku platform and our infrastructure, and for compliance with established security policies. We’re looking for dedicated security engineers, who understand platforms and their unique security challenges, to join the team.
If you’re the right person for this job, you take a systematic approach to security. You deeply understand and automatically apply concepts such as defense in depth and the principle of least privilege, and know how to assess cost and risk to prioritize your work. You set a high standard in your own work, and also enjoy helping others with their security challenges.
Key responsibilities
- Audit infrastructure, software, and configuration to prevent and correct vulnerabilities
- Offer guidance to other engineering teams working in a variety of programming languages throughout the software development life cycle
- Respond to security vulnerabilities as they become known, assessing Heroku’s exposure and taking appropriate action
- Work with customers and partners to help them understand our security model and assess risk
- Bring emerging security technologies to development teams and help to integrate with existing systems
- Develop and operate infrastructure for high-volume auditing and logging of internal systems
- Constantly question existing security practices and routines, and update, replace or automate them
Key competencies
- Deep expertise in information security theory and practice, with specialization in at least one of:
- network security (esp. in an IaaS environment)
- web application security (esp. Ruby/Rails)
- sandboxing untrusted code
- Linux userland security
- Linux kernel security
- cryptography
- Able to work collaboratively across diverse engineering teams and products to meet organizational security goals
- Able to quickly understand and effectively analyze someone else’s code and patch vulnerabilities
- Capable of thoughtful and deliberate action in a crisis situation
Technologies
- Strong candidates will have worked with many of these and similar technologies:
- Linux - LXC, SELinux, IPsec, iptables, virtual networking, tunneling
- Amazon Web Services - EC2, S3, EBS, ELB, etc.
- Languages - Ruby, Python, Java, Go, Shell
- PostgreSQL, and NoSQL Databases such as Redis and Cassandra
- Directory - LDAP and LDIF
- Logging - Syslog and Splunk
- SSL/TLS - Familiarity with cipher-suites and recent attacks
- Secure Shell (SSH) - Agent forwarding and protocol internals