Staff Security and Privacy Engineer

<h3><strong>Staff Security and Privacy Engineer</strong></h3> <p>Remote</p> <h3><strong>About Brave</strong></h3> <p>Brave is on a mission to protect the human right to privacy online. We’ve built a free web browser that blocks creepy third-party ads and trackers by default, a private search engine with a <em>truly</em> independent index, a browser-native crypto wallet, and a private ad network (opt-in!) that directly rewards you for your attention. And we’re just getting started. Already 110+ million people have switched to Brave for a faster, more private web. Millions more switch every month.</p> <p>The internet is a sea of privacy-harmful ads, hackers, and echo chambers. Big Tech makes huge profits off our data, and tells us what’s true and what’s not. Brave is fighting back. Join us!</p> <h3><strong>Summary</strong></h3> <p>We are hiring a staff engineer on the Brave security and privacy team! You will help keep our users safe across Brave’s products, including Brave browser and Brave Search. Responsibilities include:</p> <ol> <li>Security and privacy reviews of Brave browser and Brave Search</li> <li>Triaging and fixing security reports</li> <li>Working closely with other teams to design privacy-preserving protocols</li> <li>Designing and implementing new security and privacy features</li> </ol> <p>Brave is <a href="https://www.pcmag.com/picks/stop-trackers-dead-the-best-private-browsers">widely-recognized</a> as one of the best browsers for security and privacy, doing industry-leading work with a team that’s a fraction of the size of Big Tech-supported browsers.</p> <h3><strong>Required qualifications</strong></h3> <ul> <li>At least 5 years experience (or equivalent) in security or privacy engineering</li> <li>Experience in penetration testing and/or security auditing</li> <li>Strong proficiency in C++, both implementing and reviewing</li> <li>Strong familiarity with the Web security model</li> <li>Understanding of data protection fundamentals</li> <li>Very comfortable working and communicating async with a geographically-distributed software development team</li> <li>Be comfortable diving into an extremely large, unfamiliar and complex codebase</li> <li>Be comfortable with Git and collaborating on GitHub</li> </ul> <h3><strong>Preferred qualifications</strong></h3> <ul> <li>Experience contributing to large open source codebases and/or participating in open source communities</li> <li>Proficiency in Web technologies (HTML, CSS, JavaScript)&nbsp;</li> <li>Proficiency in Go and Rust</li> <li>Contributions to other Web browsers</li> <li>Familiarity with Chromium's architecture, especially security</li> <li>Ability to write clear technical documentation and less technical writing for blog posts or public communication.&nbsp;</li> <li>Be excited about privacy, anonymity, and censorship resistance!</li> </ul> <p><strong>Working at Brave</strong></p> <ul> <li>Industry-leader in privacy, with an award-winning security and privacy engineering team that’s innovating everyday to keep people safer online and beat Big Tech</li> <li>Unlimited PTO in the US, 20 days + your birthday in Canada and similar PTO policies in countries where we have a presence</li> <li>Highly competitive salaries &amp; benefits</li> <li>Generous home-office stipends</li> <li>Fully remote team (no office, no commute) with a very-low-meeting culture</li> <li>Welcoming, humble, ridiculously smart teammates, and a truly flat org structure</li> <li>Opportunity to get in early at a hyper-growth company, and revolutionize the web</li> <li>Oh, and did we mention Brendan Eich, our CEO &amp; co-founder, <em>invented</em> JavaScript?</li> </ul> <p>Check us out <a href="http://www.brave.com">www.brave.com</a>!</p>