Kibana – Senior Software Engineer

At Elastic, we see endless possibility in a world of endless data. And we use the power of search to help people and organizations turn that possibility into results. Elastic is the leading platform for search-powered solutions. With solutions in Enterprise Search, Observability, and Security, we help improve customer and employee search experiences, keep critical applications running smoothly, and protect against cyber threats. Elastic enables organizations worldwide to use the power of Elastic, including Netflix, Uber, BBC, Microsoft, and thousands of others.

Elastic was built on a foundation of being free and open, which trickles down to how we work. We’re a distributed organization and have been from the beginning. Being distributed isn’t just a way of doing business—it’s a mentality that is at the core of our culture.

You will act as a hands-on developer of the Kibana Platform Security team, which is responsible for the authentication mechanisms, access control & auditing systems, user-centric services, and security hardening in Kibana. You will work on many key projects and initiatives while collaborating closely with engineers on and off the team. You will be responsible for delivering the team’s roadmap, reinforcing quality and secure coding practices, managing technical debt, and providing support for the other Kibana engineering teams.

What you will be doing:

• Implement access control mechanisms for APIs, data access, and UI functionality.
• Enhance support for our single sign-on integrations.
• Contribute to our vulnerability management process.
• Aid our support engineers with harder security problems.
• Build platform services to enable personalized user experiences.
• Write comprehensive tests, including unit tests, service-level, HTTP-level, UI component, and browser-level integration tests that provide confidence in the stability and function of Kibana.
• Collaborate with other experienced developers both in Elastic and our community, including code and technical design reviews.

What you bring along:

• Demonstrated ability building secure and scalable applications with JavaScript or TypeScript.
• Understanding of at least one modern JS framework such as React.
• Experience writing and maintaining Node.js applications.
• A deep appreciation for automated testing.
• Strong analytical, problem solving, debugging and troubleshooting skills.
• Excellent verbal and written communication skills.

Bonus points:

• Experience supporting and analyzing security incidents in production web services and applications
• Knowledge of common security-related protocols (SSL, TLS, IPSec, etc.), cryptographic encryption algorithms, key exchange algorithms, hashing algorithms, PKI, etc.
• Experience with Seccomp, or other mechanisms of restricting access to OS capabilities
• Previous experience in a globally distributed team
• Experience with a statically typed language (e.g. TypeScript, Flow, Go, Java, etc)
• Record of inheriting existing medium- to large-scale scale projects
• Experience using or managing the Elastic Stack and Kibana.