Software Engineer, Security Automation

at  Grammarly Inc

Grammarly is excited to offer a remote-first hybrid working model. Grammarly team members in this role must be based in Germany and, depending on business needs, they must meet in person for collaboration weeks, traveling if necessary to the hub(s) where their team is based.
This flexible approach gives team members the best of both worlds: plenty of focus time along with in-person collaboration that fosters trust and unlocks creativity.

THE OPPORTUNITY

User trust is at the heart of everything we do. To achieve our ambitious goals, we’re looking for a Software Engineer to join our Security Automation team. This person will substantially impact maintaining the trust of the millions of users who rely on Grammarly product offerings every day. They will drive security improvements across the entire stack, from the UI to the back-end to the underlying server infrastructure.
Grammarly’s engineers and researchers have the freedom to innovate and uncover breakthroughs—and, in turn, influence our product roadmap. The complexity of our technical challenges is growing rapidly as we scale our interfaces, algorithms, and infrastructure. You can hear more from our team on our technical blog.

In this role, you will:

• Design and implement solutions to identify and mitigate security risks across our product and infrastructure.
• Work horizontally across all code repositories.
• Work closely with the product and engineering teams to integrate reproducible security practices into the product development lifecycle.
• Develop, deploy, and maintain a comprehensive security architecture to autocorrect when deviations or new issues are discovered.
• Educate and mentor team members on best practices in security and automation.
• Keep up-to-date with the latest security systems, standards, authentication protocols, and products.
• Represent Grammarly’s security engineering team both within and outside of the company.

QUALIFICATIONS

• Has some experience with the following:
• AWS or other cloud offerings (GCP, Azure, etc.).
• Continuous Integration/Continuous Deployment (CI/CD) systems (e.g., GitLab or GitHub)
• Infrastructure as Code (IaC) tools like Terraform or CloudFormation
• Container orchestration platforms such as Kubernetes
• Has an interest in cybersecurity threats, vulnerabilities, and mitigations.
• Is familiar with programming languages such as Python, Go or Java.
• Is knowledgeable about cloud security best practices and technologies.
• Demonstrates perseverance when faced with challenging technical issues.
• Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
• Is inspired by our MOVE principles: move fast and learn faster; obsess about creating customer value; value impact over activity; and embrace healthy disagreement rooted in trust.
• Is able to meet in person for their team’s scheduled collaboration weeks, traveling if necessary to the hub where their team is based.

• Design and implement solutions to identify and mitigate security risks across our product and infrastructure.
• Work horizontally across all code repositories.
• Work closely with the product and engineering teams to integrate reproducible security practices into the product development lifecycle.
• Develop, deploy, and maintain a comprehensive security architecture to autocorrect when deviations or new issues are discovered.
• Educate and mentor team members on best practices in security and automation.
• Keep up-to-date with the latest security systems, standards, authentication protocols, and products.
• Represent Grammarly’s security engineering team both within and outside of the company