Requirements
- 5+ years of experience as a software engineer, ideally with focus on security or privacy
- Ability to work effectively in a modern web application – ours is mostly PHP and JavaScript
- Driving technical quality and operational excellence by defining and reinforcing standards in testing, observability, and system reliability;
- Comfortably and autonomously creating proofs of concept, writing design documents, and breaking down complex projects into actionable tasks to support less experienced team members
- Experience in developing secure software or security and privacy-related product features
- A strong interest in working with a talented security team and learning more specialist security skills such as exploiting and mitigating application-level vulnerabilities
- Ability to explain complex security issues and their implications on privacy and risk to non-technical audiences
- Sensitivity to the security and privacy challenges faced by participants in a large, international project
- Experience working in a remote, distributed team
Nice to Have
- Experience working on anti-abuse mechanisms, such as detecting bots or coordinated activity
- Previous experience building security countermeasures against attacks on technologies at the web, backend, and database level
- Experience finding and fixing security bugs and reviewing code for security gaps
- A working knowledge of threat modeling, secure design patterns and privacy by design
- Prior experience with MediaWiki or Wikimedia projects
- Contributions to open-source software
Work Arrangement
Remote (Worldwide)
Additional Information
- We neither ask for nor take into consideration the salary history of applicants. The compensation for a successful applicant will be based on their skills, experience and location.
- If you are a qualified applicant requiring assistance or an accommodation to complete any step of the application process due to a disability, you may contact us at recruiting@wikimedia.org or +1 (415) 839-6885.
