About the Position
As a Senior Software Engineer on the PHP agent team, you will work with a small group of software engineers focused on building our deep instrumentation agent-based solution for detecting, reporting, and blocking security vulnerabilities. You must be able to work independently (remotely) while still collaborating with other technical team members and product stakeholders. Working on our PHP agent is a team sport where you will be called on to provide deep technical insights about the PHP ecosystem and build WordPress and Druple plugins to test our product’s capabilities. You will be tasked with reviewing pull requests and troubleshooting customer issues. While working in this position, you will develop expertise in AppSec, Interactive Application Security Testing (IAST), Run-Time Self Protection (RASP), and Software Composition Analysis (SCA).
Responsibilities
- Working with a team of engineers to research and design PHP instrumentation strategies for a Contrast PHP agent
- Building, shipping, curating, and iterating on features supported by the agent
- Improving the accuracy, reliability, and resilience of the agent
- Work with architecture, design, and product teams to build amazing, jaw-dropping features
- Implementing security rules designed to detect and defend against common attack patterns and security anti-patterns
- Investigating third-party web frameworks and servers to derive and implement instrumentation approaches
- Building many variations of simple to complex PHP web servers to provide robust testing of our agents
- Enhancing acceptance criteria for the agents, including performance, integration test, unit test, and code coverage metrics
- Performing forensic investigations when the agent negatively impacts the performance or functionality of instrumented web applications
Qualifications
- You develop code in PHP and/or other interpreted languages (like Python) and have at least five (5) years of industry experience as a software engineer
- You have experience with writing and compiling C99 programs
- You have experience with using Git or similar code management, tooling
- You are obsessive about writing unit and integration tests to maintain our code quality
- You have experience developing code with Continuous Integration and automated deployment
- Experience with Apache, Docker, and running containerized web servers
- You are comfortable developing on MacOS and running apps in Linux containers
- You approach problems from a product perspective, thinking through how the user will interact with what you're building
- You are a good communicator. You ask questions, let others know when you need help, and tell others what you know
- You are a problem solver. You believe the best work is the result of finding the simplest solution to complex challenges
- You see the big picture. You understand how the code you write interacts with systems and services, both internally and externally
While not requisite, it’d be helpful if you have experience with some of the following:- Developing code in PHP web frameworks and platforms
- Experience with C and developing PHP plug-ins
We are focused on building a diverse and inclusive workforce. If you’re excited about this role, but do not meet 100% of the qualifications listed above, we encourage you to apply.
What We Offer
- A fun and dynamic environment where you work with other like-minded people on products which make a real difference to the security of our customers
- Flexible paid time off
- The onboarding, training, and tools to allow you to excel from day one
- A team who are generous with their knowledge and time, who work collaboratively and provide each other a platform to succeed
- A competitive salary package that includes stock options
#LI-MA007 Apply for this job