Senior JavaScript Engineer -Security Expertise- Top Open Source Software


In this role you will collaborate with bright people who share your knowledge of web security and JavaScript, and have a desire to take on new challenges.

Please include a short note as to why you are a fit for the role and why working at Elastic interests you :)

Do you want to work on an extensible platform for data exploration that impacts the lives of millions of people? Are you a creative JavaScript engineers with security experience who lives to tackle meaningful problems? Do you enjoy working on security-related architecture and features in Kibana?

If so, we'd love to talk.

If you read this far and think, “that's me!” then you probably won't need to read any further and we should have a conversation. But if you are in any doubt the type of experiences we expect you to have then the following should help clarify;

Engineering philosophy

We believe that engineering complex, pluggable software for the web that is built to last the test of time is both tricky and exciting. Doing so requires a team of diverse individuals, with sharp minds and the ability to empathize with our users, working together with mutual respect and a common mission.

We care deeply about giving you full ownership of what you're working on. Our company fundamentally believes great minds achieve greatness when they are set free and are surrounded and challenged by their peers, which is clearly visible throughout our organization. At Elastic, hierarchy does not determine how decisions get made. We feel that anyone needs to be in the position to comment on anything, regardless of their role within the company.

These are the kinds of problems you will work on

  • Design and implement internal security mechanisms to secure individual Kibana servers
  • Implement access control for APIs, saved objects, and UI functionality
  • Build multi-layer solutions for safely executing server-side plugin code with node.js sandboxing and seccomp
  • Advocate for secure coding principles
  • Develop different single sign-on integrations
  • Support our support engineers with harder security problems

Skills & requirements

  • 7+ years building secure software for the web with JavaScript
  • Experience in penetration testing of web services and applications
  • Experience supporting and analyzing security incidents in production web services and applications
  • Experience writing and a deep appreciation for automated testing
  • Excellent verbal and written communication skills
  • A phenomenal teammate with strong analytical, problem solving, debugging and troubleshooting skills

Experience in these areas is a plus

  • Operational logging and monitoring
  • Running a popular open source project
  • Previous experience in a globally distributed team
View this job on