Aptible's mission is to empower every developer to focus on their ideas, not their infrastructure.

Aptible aims to fundamentally transform how software developers interact with the cloud. Great people are necessary to achieve such an ambitious mission. But the people alone aren't sufficient to achieve: we must (and do) invest in and nurture a culture that not only empowers but, in fact, propels our team to do so. You can learn more about our culture here.

We believe that the next 10 years of cloud and software development will look markedly different than the last 10 years.

The historical focus has been on the mass lift-and-shift of old data center workloads into the cloud. The future focus will be on building higher level abstractions that allow developers to focus on application code without worrying about the underlying infrastructure. Consider:

  1. AWS, GCP, and Azure have not successfully invested in abstractions
  2. Database platform players like Snowflake and PlanetScale have effectively competed by providing a better developer experience and better scaling
  3. Vercel is hitting success by innovating on the DX for frontend engineering teams
  4. Similarly, there are application-focused platforms that developers are beginning to move to, but as of yet, no fullstack platform-as-a-service (PaaS) is both great to start and great to scale.

That's our opportunity: Aptible has already shown it's great to scale with, and in 2023 our priority will be making it great to start with. By doing so we believe we will provide a compelling alternative, not just to other PaaS solutions, but also to infrastructure-as-a-service (IaaS), for product-focused developers.

The macroeconomic environment has never been more conducive toPaaS : the increasing complexity of IaaS, slowing growth of engineering team sizes, and lack of investment in and poor strategic decisions by the incumbent PaaS platform (Heroku) all foreshadow the need for a new PaaS that's both great to start with and great to scale with for every developer and every team.

Our Platform and Roadmap

Aptible has developed its PaaS since 2013. To date, most of the focus has been on ensuring the platform was great to scale with for the hundreds of companies and thousands of developers who rely on it for production workloads.

In 2023, we are investing both in making Aptible easier to get started with and supporting increasingly sophisticated use cases while more efficiently managing resources and costs. We are already a good part of the way towards our "great to start" mission: Aptible Managed Databases provision in 97 seconds as compared to 15 minutes for RDS; Aptible Apps provision in less than 90 seconds as compared to 3-5 minutes for ECS. We think we can optimize both further.

Currently our platform today supports over 40,000 daily events like deployments and resource provisioning against the over 50,000 containers that run apps and databases for our customers. We expect these numbers to rapidly grow in 2023 as we invest in acquiring new customers faster through improvements to our product-led growth and marketing and developer relations strategies.

Our Team

Aptible is a fully distributed company, and we’ve been remote since 2013. Importantly, Aptible focuses on our company culture, probably more than most any other team of our size. Culture is how we shape our attitudes and behaviors, and live out our values in our day-to-day. It’s an alignment of our personal drives and needs to Aptible’s mission, and how we unleash our energy towards our shared purpose, in order to enable every single team member to thrive.

We invest in culture to ensure it evolves and grows into something we love, and something that will ensure we will achieve our mission.

Our Commitment to Diversity and Inclusion

We prioritize diversity within our team and value different perspectives, educational backgrounds, and life experiences. We encourage people from underrepresented backgrounds to apply.

 

About This Role

The Application Security Engineer will be responsible for ensuring the security and privacy of Aptible's software applications. This role requires a combination of technical skills and an understanding of current security threats and best practices. The ideal candidate should have a passion for security and experience in software development.

Responsibilities:

  • Design, implement, and maintain security controls for software applications
  • Conduct security assessments and vulnerability scans
  • Investigate and respond to security incidents
  • Stay up-to-date with the latest security threats and trends
  • Collaborate with software development teams
  • Ensure compliance with security standards and regulations
  • Provide guidance and training on secure coding practices
  • Perform security-focused code reviews
  • Support and consult with product and development teams on application security
  • Assist in reproducing, triaging, and addressing application security vulnerabilities
  • Support the bug bounty program
  • Lead both critical and regular security releases
  • Develop automated security testing to validate secure coding practices

Requirements:

  • A strong understanding of web application security and common security protocols
  • Understanding of network and web-related protocols
  • Experience with SAST and DAST security scanning tools
  • Familiarity with programming languages like Ruby, Python, and Go
  • Experience identifying security issues through code review
  • Ability to explain common security flaws and ways to address them
  • Basic development or scripting experience
  • Familiarity with common security libraries and tools
  • Strong understanding and experience with common security libraries and controls
  • Subject matter expertise in at least one technical area impacting the product's security
  • Excellent communication and collaboration skills
  • Strong analytical and problem-solving skills
  • Ability to work well with software development teams

Compensation:

We set compensation based on benchmarks for comparable companies and positions. Using this data, the target salary ranges for this position are

  • Senior: $211,000 - $233,000/year
  • Principal: $280,000 - $306,000/year

Our Benefits

  • 90th Percentile Compensation & Transparent Comprehensive Philosophy: Aptible believes that the only way to attract and retain great team members is to have a highly competitive and transparent compensation philosophy. Accordingly, Aptible endeavors to pay every employee a base salary in line with 90th Percentile total compensation for their personal market and Aptible's market. We provide the data so you can see exactly how we determined your compensation, and we automatically keep your comp up to date as the market changes. Read more about our Talent and Compensation Philosophy in the Aptible Handbook.
  • Work from Anywhere: Enjoy the flexibility of working from home, a local co-working space, or your favorite coffee shop.
  • Open Vacation Policy: We encourage you to take the time you need, when you need it — for any holiday or matter of personal importance.
  • Paid Parental Leave: We offer job-protected Paid Time Off — 14 Weeks, Fully Paid — for all parents to bond with a newly born, adopted, or fostered child.
  • Medical, Dental, and Vision Insurance: We offer comprehensive health care for employees, with 100% of premiums paid by Aptible.
    401(k) Plan via Vanguard.
  • Hardware & Software: We help you create your ideal office setup and provide any software you’ll need.
  • Company Travel: We come together in-person at least two to three times per year, in locations around the globe.

Our Interview Process

We seek to make the experience of interviewing with us as delightful, efficient, fair, respectful, and transparent as possible.
 
A typical process at Aptible might include the following steps, and can take up to 3 weeks to complete. Note that these steps may vary depending on your role, and details will be provided to you early on in the application process.
  1. An introduction to Aptible with the hiring manager (30 minutes via Zoom)
  2. A discussion-based interview with an Aptible team member (45-60 minutes via Zoom)
  3. A take-home work sample exercise (You will be compensated for completing this.)
  4. A discussion-based interview with an Aptible team member (45-60 minutes via Zoom)
  5. References (Ideally 3 former managers, Conducted asynchronously by Aptible)
We believe that the work sample exercise is an important part of the process, in that it gives you the opportunity to demonstrate your skills in a concrete way. We take the time to design these exercises such that they: a) give you a view into the actual work you'd do at Aptible, and b) are standardized, so every candidate is evaluated using the same criteria.
 
We try to move as quickly as possible, but if you have any time constraints, please let us know and we'll do our best to accommodate.
 
If you have a disability or special need that requires accommodation, please notify the hiring manager or coordinator for the role you are applying to, and we will reach out soon to see how we may be able to assist.

Apply for this Job

* Required
resume chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel
cover_letter chosen  
Dropbox Google Drive
(File types: pdf, doc, docx, txt, rtf)
Cancel

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Aptible’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Please reach out to our support team via our help center.