Warby Parker is on the lookout for someone with a broad knowledge of security and application system design, as well as AWS application. The ideal candidate will have experience across a range of technical disciplines including secure application design, information security (hardening, detection/response, etc.), and systems (e.g., SRE). We’re looking for someone who likes to dream up and implement creative solutions to a wide variety of real-world technical issues. Sound a lot like you? Read on!
What you’ll do:
Champion application security by working alongside both engineering and product teams to develop super secure products
Master our cloud security by ensuring our AWS infrastructure is well protected
Assess the risk of applications and architectures through threat modeling, building attack trees, and communicating potential vulnerabilities relative to business impact
Collaborate with the engineering teams to improve our tools and strategies, promoting a security-first mindset
Review third party services and integrations (and, of course, the risk impact associated with their use)
Become a collaborative resource for information security for both technical and non-technical colleagues
Monitor, detect, respond to, and investigate security breaches
Who you are:
Backed by 5+ years of experience (or equivalent knowledge) in a security role, with at least 2 years of hands-on AWS experience
Deeply knowledgeable of AWS IAM, least-privilege access, security groups, VPCs and AWS networking best practices, and web applications security practices
Passionate about DevSecOps and promoting security culture across the company
Curious about technology, with a deep understanding of a variety of security-oriented systems such as Linux and Cloud
Equipped with a knowledge of application security best practices and encryption
Experienced with Bash and Python (both the system and application)
Familiar with application security (OWASP Top 10, SANS 24, CERT) issues and tooling such as static, dynamic, and/or software component analysis
Not on the Office of Inspector General’s List of Excluded Individuals/Entities (LEIE)
Pertinent AWS Certifications
Experience with e-commerce security
Familiarity with HIPAA compliance
Warby Parker was founded with a lofty objective: to offer designer eyewear at a revolutionary price while leading the way for socially conscious businesses. By circumventing traditional channels and designing our frames in-house, we’re able to offer top-quality glasses and sunglasses (plus an uncommonly delightful shopping experience) at a fraction of the traditional going price.
Since starting out in 2010, we’ve set up headquarters in New York City and Nashville, built our own optical lab, and opened retail locations all around the U.S. and Canada. As we grow, we’re committed to proving that businesses can scale and be profitable while doing good in the world. For every pair of glasses we sell, a pair is distributed to someone in need—to date, that’s over five million pairs.
Of course, all work and no play makes a dull workplace. Who likes that? At Warby Parker, you can look forward to company outings, volunteering and learning opportunities, and just great company. Teammates can also connect around common interests, backgrounds, and identities, no matter their home base, through our various employee resource groups. (We’re happy to say that the Human Rights Campaign has named us a Best Place to Work for LGBTQ+ employees!) That sense of community keeps us excited to walk through the door every day. Good work, good people.
Some benefits and perks of working at Warby Parker:
Health, vision, and dental insurance
Flexible “My Time” vacation policy
Retirement savings plan with a company match
Parental leave (non-birthing parents included)
Cell phone plan reimbursement
A health-and-wellness stipend
Free eyewear, plus discounts for friends and family