Tech Stack

Description

You will collaborate with engineering and product teams to improve the security posture of ClickHouse Cloud and OSS, focusing on threat modeling, secure implementation, and vulnerability management. You'll drive security tool adoption, handle incidents, and develop automation to scale security processes.

Requirements

• Experience supporting engineering with threat assessments, assurance, and advisory across distributed systems (web, API, client/server)
• Strong knowledge of AWS, GCP, or Azure, plus Kubernetes, Cilium, Crossplane
• Experience with engineering security tools like Semgrep, Snyk, GitHub CodeQL
• Significant development and automation experience, ability to work with C++ code preferred
• Security as code mindset focusing on automation and scale

Responsibilities

• Collaborate with engineering and product on threat modeling and secure implementation of features
• Triage vulnerabilities from bug bounty, responsible disclosure, and GitHub Issues
• Improve security assurance activities like pentests, vulnerability assessments, and fuzzing
• Drive engineering security tools adoption: SAST, DAST, dependency checks, licensing compliance
• Handle information security events and incidents across products and services