Evernote lets you capture, organize and visually search for your thoughts, ideas, snapshots, audio notes, and files from virtually any device, wherever you happen to be.
Fueled by ease of use and its availability on every major desktop and mobile platform, Evernote is growing at a rapid pace, adding nearly one million users per month. Currently, there are over 40 million people around the world who use Evernote to help them remember everything.
About 15,000 developers have requested access to the service, and partners have released more than 1,500 products that integrate with Evernote to date!
The Evernote Operations team is seeking an experienced security engineer to be the subject matter expert for all things security related to the Evernote service. This position focuses on the production systems and networking infrastructure and other critical business services. This person will need to work with the rest of the Operations team to analyze and implement new security defenses and methodologies as the Evernote service grows. This is a hands-on technical role focused on practical security applications supporting a fast growth internet service.
Requirements and Skills
Solid understanding of web application architecture, TCP/IP, HTTP, and standard network security technologies.
Experience designing and implementing network security technologies to protect systems and network infrastructure.
Deep understanding of Network Security, Firewall design, VPN, access control, application and threat management.
Experience with file integrity and host hardening techniques and resources like grsecurity, Tripwire, Suhosin, and OSSEC/Samhain.
Experience with medium- to large-scale Linux production environments, preferably as part of an online service provider environment
Knowledge in Linux/UNIX operating systems, open source applications (e.g.: MySQL, Tomcat, Java) and scripting.
Excellent verbal and written communication skills and high attention to detail
7 years minimum technical experience and at least 5 years in Information Security
Preferred Knowledge and Skills
Experience with vulnerability management, penetration testing, and Incident Response.
Use of tools such as Splunk, Nmap, BackTrack, and Metasploit.
Ability to understand the details of a technology project while still keeping an eye on the big (risk) picture
Ability to present and communicate information security-related concepts to both technical and non- technical end users
Experience with virtualization technologies is a plus (e.g.: Xen, etc.)
Experience with open source monitoring and alerting systems (e.g. nagios, cacti, etc.)
Working at Evernote:
We are a dynamic team with a start-up feel. We have open, collaborative offices in Redwood City, CA and Austin, TX.
At Evernote, we promote an entrepreneurial spirit and perspective and engage a management style that encourages the free exchange of new ideas and rewards self-motivation. Our engineering team works in small teams of up to three, collaborating closely with product management and our quality engineering group.
Benefits & Perks:
We offer a very competitive salary package including generous equity in form of RSU’s and full benefits (medical, dental, vision, life & disability insurance, 401K). Our employees gather daily to enjoy a selection of delicious daily lunches delivered to the office (we love food, and every day is different!). We offer paid public transportation (i.e. Cal Train) and break rooms packed with a variety of snacks and drinks. Our Redwood City office is within walking distance from the Caltrain station.