What are the responsibilities and job description for the Senior Software Engineer II, Infrastructure Security, SRE position at HubSpot Inc?
About the Team: The HubSpot Infrastructure Security team is responsible for security, privacy, and compliance for HubSpot's Cloud-based Infrastructure. Broadly, our mission is to provide world-class infrastructure as a service that empowers the product team to build, operate, and scale HubSpot's products in a secure way. We solve technical and security challenges in a way that keeps HubSpot fast and lean, making the best and easiest solution also the most secure one. To support that mission, we are building a security SRE function to help our product teams focus on delivering highly secure products. Working partly in an embed model, the team will provide support during security incidents and identify and initiate long term improvements based on trends. This includes building new automation, tools and monitoring to improve HubSpot's ability to detect and address future incidents better and faster.
What We're Looking For:
Experienced software developers with an understanding of application security, secure coding practices, and security incident handling.
Ability to design and implement security tools, systems, and processes that are efficient, scalable, and reliable and make the secure way the easy way for HubSpot developers.
Passion for automating processes and reducing manual interventions in security operations.
Commitment to continuous learning to stay ahead of evolving security threats.
8+ years of experience in software development, application security, or incident response
Responsibilities:
Lead development of enhanced security libraries and tooling that address vulnerabilities identified in incidents.
Provide consulting on secure design to ensure robust application security controls.
Provide support during security incidents, ensuring effective incident response and tracking recurring issues.
Analyze recent incidents to identify patterns and insights, grouping similar issues together, and lead projects to improve our incident response in similar scenarios.
Participate in post-mortem meetings to determine root causes and advocate for substantial improvements. Embed with product and infrastructure teams where needed.
Build tools to enhance Mean Time to Recovery (MTTR) for security incidents.
Create and maintain dashboards displaying key security metrics for strategic insights.
Salary : $186,000 - $280,000
