Automated security and compliance without security theater
Please only apply directly to this job posting. Messages sent outside of this platform will not be considered.
At Oneleet we provide a platform that makes it easy for our clients to become secure and compliant. To accomplish this we integrate with a large number of services to verify whether they have configured their services and applications properly and to provide feedback to our clients about their services’ security posture.
As our client base is rapidly expanding we find ourselves in a position where integrations are increasingly a bottleneck.
We need to build more integrations, deepen and expand the ones we already have (more security checks) and we need to build better infrastructure to monitor whether our integrations are properly functioning.
One of the most common complaints we get from clients is that our integrations break, so bringing on someone with experience making integrations scalable, robust and reliable is very important for us at this time.
As a security platform for startups, we integrate with a bunch of third-party APIs and services to ensure that customer’s are set up in a secure way. For example, when using a cloud provider, we monitor to make sure customer’s aren’t accidentally exposing their storage buckets to the world and ensure they are using modern encryption.
You will come up with new ideas to extend Oneleet's integration framework, and then implement those ideas as reusable interfaces and components. You'll be the driving force and owner behind scope, design, and implementation of integrations between our SaaS platform and various third-party systems. You’ll integrate numerous solutions like penetration testing, vulnerability assessments, awareness training, static code scanning, and endpoint monitoring.
As a seed stage start up, you'll have the opportunity to collaborate with the founding team to understand business/customer needs and contribute to building the core technology that powers the Oneleet platform.
Build fast, scalable, easy-to-maintain integrations to perform compliance monitoring and other security automation through APIs
Develop and improve APIs that enable seamless data exchange and communication between our platform and external applications
Ensure external data is structured and all input is validated when entering our system, even when consuming sparsely documented or inconsistent APIs
Create comprehensive documentation for integrations, setup guides, and troubleshooting resources
Manage integration versioning and compatibility resulting in smooth transitions and updates when integrating with new or updated third-party APIs
Monitor integration performance and proactively address any issues that may arise. Provide technical support to customers and internal teams for integration-related inquiries
Improve engineering standards, tooling, and processes
Experience with strongly typed compiled languages like Go, Java, C#, C++, or Rust. We strongly prefer Go experience.
3+ years of development experience, ideally with a focus on backend APIs, integrations, or networking
Experience with SQL
Experience building, architecting, or maintaining SaaS platforms
Experience integrating with REST APIs, implementing solutions based on documentation, or parsing data from sources like spreadsheets
Bonus: Experience in the information security field
Bonus: Knowledge of authentication methods like OAuth 2.0, OIDC, SAML and API security best practices
Bonus: Experience with integration testing and debugging tools
Bonus: Bachelor's or Master's degree in Computer Science or related field
At Oneleet we value individuals who are passionate and motivated to make a large impact in the cybersecurity ecosystem. We are looking for rebels with a growth mindset who love to take ownership, who exhibit excellent communication skills, and who have a "can-do" attitude towards technical challenges and innovation.
A rebel’s mindset — we’re frustrated with the state of the cybersecurity industry, and believe that a rebel mindset is key to changing it. Opinionated (but not obstinate) — we believe that having an opinion is better than having no opinion, and helps us move quicker.
Our mission at Oneleet is to make effective cybersecurity as painless as possible.
Oneleet is home to a team of ambitious, kind-hearted hacker rebels. We're opinionated, yet open-minded and always ready to learn. We thrive on moving swiftly, yet responsibly. We're driven to disrupt stagnant business models and build a company that values user experience and easy-to-use, efficient products.
We're serious about our aspiration to become a decacorn. If our mission resonates with you and you're eager to join our band of rebels, we'd love to hear from you!
Oneleet is a Y Combinator-funded cybersecurity startup that aims to make effective cybersecurity easy and painless for companies. The company provides a full-coverage cybersecurity platform through which companies can build, manage, and monitor their cybersecurity management program.
The core product is a roadmap for companies that helps them become secure and build trust with their partners, which requires the implementation of numerous solutions like penetration testing, vulnerability assessments, awareness training, static code scanning, endpoint monitoring, and more.