Discord is looking to advance its mission of empowering people to find belonging in all kinds of communities by protecting the systems used to create Discord, making the "secure way" the "easy way", and reducing security risk across Engineering.
Requirements
- 5+ years of experience building and operating production systems or infrastructure
- 3+ years of experience writing software in a general-purpose programming language (we mainly use Python, Typescript, and Rust)
- 3+ years of experience securing systems with millions of users
- Experience designing and building software for customers (internal or external) beyond your immediate team
- Experience securing multi-cloud environments (e.g. GCP, Cloudflare, AWS)
- Experience defining and orchestrating containers (e.g. via Kubernetes, Docker, Distroless, OCI)
- Understanding of modern authentication and authorization concepts (e.g. RBAC, OAuth, Zero Trust network architectures, mTLS)
Responsibilities
- Own software engineering projects end-to-end on a highly-autonomous and horizontally-integrated team with a lot of leverage.
- Develop and apply best-in-class secure baselines for cloud infrastructure.
- Secure first- and third-party software supply chains, from the dev environment through CI/CD and into production.
- Build and operate identity and access management (IAM) systems that are user-friendly and promote least privilege.
- Manage infrastructure vulnerabilities while supporting rapid growth for Engineering.
- Consult on risk assessments, architectural designs, threat models, code reviews, and more—pragmatically balancing security with other business considerations.
- Support IAM with scalable platform solutions
Other
- Bachelor's, Master's, or Ph.D. degree in a relevant field
- Ability to work in a highly-autonomous and horizontally-integrated team
- Excellent communication and collaboration skills
- Ability to balance security with other business considerations
- Commitment to inclusion and diversity
