The security team at Spotify is a distributed team supporting autonomous development teams with a focus on raising security awareness, sharing responsibility, and building tools. We aim to constantly improve the security posture for our fast-paced, rapidly-changing environment in a manner that will keep up with our scale. We’re knowledgeable in many domains of security and are willing to teach (and learn) from anyone at the company.
What you will do:
Champion security with development teams to make their code more secure, primarily through manual code/architecture review
Design, build, and operate innovative tools to enhance our security
Be the first response and remediation for security-related incidents and participate in on-call rotation
Consult, evangelize, and teach theoretical and practical security to groups of varying sizes, disciplines, and experience levels
Continually improve your technical and collaboration skills
Engage and participate in the security community
Who you are:
You have worked in a software engineering or security role
You have experience in defending against attacks in several areas of security
You are knowledgeable in mobile, web security, or authentication schemas (a plus but not required)
You understand security in distributed systems at scale
You know how to code in at least one programming language
You have ability to read and break code in languages including Python, Java, C/C++ and PHP
We are proud to foster a workplace free from discrimination. We strongly believe that diversity of experience, perspectives, and background will lead to a better environment for our employees and a better product for our users and our creators. This is something we value deeply and we encourage everyone to come be a part of changing the way the world listens to music.