Senior Security Engineer – Node.js Proactive Defense

Backend EngineerSoftware EngineerFull TimeRemoteSeniorTeam 51-200Since 2009H1B No SponsorCompany SiteLinkedIn

Location

Poland

Posted

53 days ago

Salary

0

Seniority

Senior

Job Description

Senior Security Engineer – Node.js Proactive Defense

CloudLinux

• Design and ship a Node.js runtime agent that hooks into the V8/Node lifecycle to trace and block malicious behavior patterns (child_process spawn chains, eval / Function constructors, prototype pollution exploitation, unsafe deserialization, SSRF, path traversal, fs writes to sensitive locations, malicious require() / dynamic import chains, supply-chain poisoning at load time). • Define the detection model: which behaviors are policy-blockable by default, which are signal-only, and how rules are authored, distributed, and versioned alongside our existing Proactive Defense rule pipeline. • Integrate the agent with the rest of the on-host Imunify security stack so that Node.js detections, blocks, and incidents flow into the same telemetry pipeline, the same backend event store, and the same admin UI as our other layers (WAF, host-IDS, brute-force protection, malware scanner, patch management). This ships as a first-class layer of Imunify360, not a standalone tool. • Make it production-safe on shared hosting: low overhead, tenant-isolated, compatible with CageFS / LVE, and resilient to hostile tenants who will try to disable or evade the agent. • Build the pipeline that turns CVE write-ups and threat-intel feeds into shipped detections. The system — not a human — ingests advisories, extracts the exploit primitive, generates and tests rule candidates against a corpus, and rolls them out with the right signal-only / blocking posture. • Own the closed feedback loop from production blocks (true positives, false positives, evasions) back into the next generation of rules.

Job Requirements

  • Must have:**
  • Security engineer mindset:** thinks in attack surfaces, exploit primitives, and defense-in-depth - not just in OWASP checklists. Can read a CVE writeup and reconstruct the primitive, not just the patch.
  • Runtime/exploitation knowledge across languages:** prototype pollution, deserialization, command injection, SSRF, path traversal, supply-chain poisoning - knows why these primitives exist, not just that they have names.
  • Systems-level development:** Linux daemons, systemd, privileged processes, IPC, namespaces/cgroups, file-descriptor and signal hygiene.
  • Low-level / instrumentation instinct:** has hooked, traced, or intercepted something in production - LD_PRELOAD, eBPF, ptrace, JVM agents, Python sys.settrace, language-runtime preload, kernel modules. The specific tech doesn't matter; the instinct does.
  • Nice to have:**
  • Shared-hosting / multi-tenant Linux experience: LVE, CageFS, control-panel ecosystems, or analogous tenant-isolation work.
  • Comfort working from a CVEs and threat-intel feed as primary product input.

Benefits

  • A focus on professional development.
  • Interesting and challenging projects.
  • Fully remote work with flexible working hours, that allows you to schedule your day and work from any location worldwide.
  • Paid 24 days of vacation per year, 10 days of national holidays, and unlimited sick leaves.
  • Compensation for private medical insurance.
  • Co-working and gym/sports reimbursement.
  • Budget for education.
  • The opportunity to receive a reward for the most innovative idea that the company can patent.

Related Job Pages

More Backend Engineer Jobs

Full TimeRemoteTeam 201-500Since 2008H1B Sponsor

• Design and build high-quality API and services for our subscribers and payment infrastructure— experiences that are safe, intuitive, and genuinely useful. • Work with AI (Claude Code) as a first-class collaborator — your primary workflow involves orchestrating agents to create specs, generate code and tests, verify results, and perform reviews. • Help define and codify AI-Native engineering practices for the Growth team, establishing playbooks the broader org can adopt. • Build across the full stack as needed — shipping polished, performant, and reliable experiences to tens of millions of users. • Collaborate closely with product managers and designers to turn complex user problems into elegant, scalable engineering solutions. • Contribute to architectural decisions, code reviews, and a culture of craft and continuous improvement. • Participate in on-call rotation and incident response. • Use agentic workflows to dramatically increase the delivery of strong outcomes — moving faster without sacrificing quality. • Mentor team members and contribute to team processes, technical standards, and help evolve the team's AI-native engineering practices. • Support performance, reliability, and accessibility across the features you own.

United States
$148K - $216K / year
Oddball logo

Back End Engineer, Go

Oddball

Oddball is a software development company that focuses on designing and building tools for enterprises and institutions. The company delivers services, includin

Backend Engineer53 days ago

• Develop, enhance, and maintain backend services and APIs in Go supporting tools for plan comparison, provider and drug coverage information, and local enrollment help • Design and build REST APIs that power consumer-facing and internal healthcare marketplace features across a diverse set of consumers • Maintain consistent, well-documented API interfaces with a focus on reliability and backward compatibility • Write clean, well-tested code with a focus on performance, maintainability, and security • Support ongoing operations and maintenance of existing digital products alongside new feature development • Collaborate with frontend engineers, product managers, and stakeholders to deliver scalable backend solutions • Contribute to code reviews and help uphold engineering standards across the team

United States
$90K - $125K / year
Kraken Digital Asset Exchange logo

Senior Software Engineer – C++

Kraken Digital Asset Exchange

We put the power in your hands to buy, sell, and trade digital currency 🌏

Backend Engineer53 days ago
Full TimeRemoteTeam 1,001-5,000Since 2011H1B No Sponsor

• Develop and maintain core framework and key software components for the Kraken trading engine, with a fous on the Aeron-based messaging transport layer • Design and implement low-latency, high-availability messaging solutions across unicast, multicast, and IPC transport paths • Tune and profile the full system stack — CPU pinning, NUMA topology, kernel bypass, receive buffer sizing — to squeeze latency out of production infrastructure • Build and extend Aeron Archive integrations for durable message replay and stream persistence • Build and design solutions that mitigate risk, implement security, and protect both systems and data • Write reusable, testable, and efficient code • Collaborate with cross-functional teams and contribute to product roadmap accomplishment • Work collaboratively on a distributed team, leveraging soft skills to effectively communicate and engage with stakeholders

United Kingdom
Job Closed
Gympass logo

Senior Backend Software Engineer – AI Engine

Gympass

Bringing movement to the world, one employee at a time.

Backend Engineer53 days ago
Full TimeRemoteTeam 1,001-5,000Since 2012H1B Sponsor

• Design and ship AI-powered features end to end. You own quality, latency, and cost. • Build backend services and APIs that hold up under real load. • Instrument what you ship, watch the numbers, fix what's wrong. • Review code and designs critically. Push back when something doesn't add up. • Help taking prompt, retrieval, and agent changes from experiment to production. • Live the mission: inspire and empower others by genuinely caring for your own wellbeing and your colleagues. Bring wellbeing to the forefront of work, and create a supportive environment where everyone feels comfortable taking care of themselves, taking time off, and finding work-life wellness.

Brazil