Senior Software Engineer - Security Team

Why CAST AI?

CAST AI is the leading Kubernetes cost optimization platform for AWS, GCP and Azure customers. The company is on a mission to deliver a fully automated Kubernetes experience. What’s unique about CAST AI is that its platform goes beyond monitoring clusters and making recommendations; it utilizes advanced machine learning algorithms to analyze and automatically optimize clusters, saving customers 50% or more on their cloud spend, improving performance and reliability, and boosting DevOps and engineering productivity.

To date, the company has raised $73M from investors including Cota Capital, Creandum, Uncorrelated Ventures, and Vintage Investment Partners. CAST AI has more than 120 employees globally and is headquartered in Miami, Florida.

However, this is merely the beginning. Our product roadmap is filled with exciting innovations that are yet to come. We are searching for intelligent, motivated, and self-reliant people to help us fulfill this ambitious mission.

Core values that hold us all together

PRACTICE CUSTOMER OBSESSION. Focus on the customer journey and work backwards. Strive to deliver customer value and continuously solve customer problems. Listen to customer feedback, act, and iterate to improve customer experience.

LEAD. Take ownership and lead through action. Think and act on behalf of the entire company to build long-term value across team boundaries.

DEVELOP AND HIRE THE BEST. Strive to raise the performance bar by continuously investing in yourself, the team and by hiring the best possible candidates for every position. Drive towards personal development and professional growth, and mentor others to raise the collective bar.

EXPECT AND ADVOCATE CHANGE. Strive to innovate and accept the inevitable change that comes with innovation. Constantly welcome new ideas and opinions. Share insights responsibly with unwavering openness, honesty, and respect. Once a path is chosen, be ready to disagree and commit to a direction.

What does the Runtime Security Team do?

The goal of the Runtime Security Team is to develop part of a Kubernetes Security Posture Management (KSPM) product that acts as a last line of defense for our customers, detecting any malicious activity going on in our customers' Kubernetes clusters, notifying the customer, and also blocking this activity.

While most other parts of the Cast AI KSPM product look for potential threats based on current configuration, runtime security analyzes what is actually happening in the cluster to surface malicious activity. For example, runtime security detects these indicators of compromise:

• Crypto miners or known hacking tools being executed
• Container drift
• Unexpected writes to sensitive files such as /etc/passwd

The Runtime Security Team is responsible for their part of the product end-to-end, including developing an agent that audits Kubernetes workloads using eBPF on the Linux kernel layer, designing and implementing new detections for malicious activity, collecting and processing vast amounts of data from the customers clusters to enable these detections, and surfacing the most valuable insights from all of this collected data.

We are looking for a Senior Security Engineer to join our Security Product team. In this role, you will propose new ideas and improvements, collaborate with peers on the architecture, and implement new software solutions for container and network security.

Responsibilities:

As a Senior Software Engineer, you will work in a highly skilled team and collaborate throughout the full development lifecycle.

• Participate in feature brainstorming, requirement gathering, and customer needs solving
  
• Design and architecture software, leveraging your experience to ensure scalability, maintainability and performance
  
• Write clean, maintainable and documented code using best practices and coding standards
  
• Ensure software reliability through test coverage and local testing
  
• Contribute in maintaining CI/CD pipelines, monitoring and alerting stack
  
• Respond to incidents to resolve customer issues or service disruptions.

Here are some of the tools we use daily:

• GoLang is our main language
  
• eBPF for tracing workload execution
  
• ClickHouse and PostgreSQL for persistence
  
• GCP Pub/Sub for messaging
  
• gRPC for internal communication
  
• REST for public APIs
  
• Kubernetes, which our product is evolving around
  
• AWS, GCP, and Azure cloud providers, which are currently supported in our platform
  
• We use GitLab CI with ArgoCD as our GitOps CD engine
  
• Prometheus, Grafana, Loki, and Tempo for observability.
  

Requirements for Senior Software Engineer:

• You have to be physically in any of the European countries GMT 0 to GMT +3
• Experience building products in the CyberSecurity Domain
• Strong software engineering skills

• CI and git knowledge
• Strong experience with Linux Containers
• Experience with network security and networking technologies
• Thorough understanding of the latest security principles, techniques, and protocols
• Experience Policy enforcement engines, writing policies and rules

• Strong analytical, problem-solving, and troubleshooting skills
• Strong verbal and written communication skills
• Ability to work independently or with a group
• A “yes we can” attitude.

We are offering:

• Team of highly skilled professionals to work with and learn from
• Very technically challenging domain with unique problems
• Time to focus on work with a minimum overhead of meetings, bureaucracy, etc.
• Flexible working location
• 10% time to focus on self-improvement or personal pet projects
• Monthly salary up to 9000 € depending on the level of experience.