Sicheng’s blog

The Sicheng's blog

工作内推 2022-02

上周和经理 1:1 的时候,他提到了还想在德国和爱尔兰招人的事情,问我有没有可以推荐的。我一来想赚内推费,二来希望和我同时区的同事多一点,这样我可以不用跨时区开很多会。于是就写了这篇文章。在博客首页能找到我的联系方式。

注意:虽然职位都是远程,但是由于税务法律的关系,我们组只考虑已经在德国或者爱尔兰的候选人。因为是小公司,HR 在英国,他们也不愿意提供 Visa sponsorship,因为不熟悉各个国家的法律政策。我们公司还有其他组在其他地区招人,也欢迎同我联系。

 

我们是谁

来自于维基百科:

Netskope is an American software company providing a computer security platform. The platform offers cloud-native solutions to businesses for data protection and defense against threats in cloud applications, cloud infrastructure, and the web. Netskope is considered a “leader in its field” status for its Cloud Access Security Brokers (CASB) product from Gartner.

用一句话说来,我们是一家做网络安全产品的公司,我所在的团队主要做的产品是 CSPM(Cloud Security Posture Management)。

 

什么是 CSPM

Cloud Security Posture Management (CSPM) is a market segment for IT security tools that are designed to identify misconfiguration issues and compliance risks in the cloud. An important purpose of CSPM programming is to continuously monitor cloud infrastructure for gaps in security policy enforcement.

总所周知,在云上,我们都是通过一系列服务来配置我们的云资源的。针对 AWS 来说,对于每个 EC2 实例,都会有相应的 Security Group 来配置这个实例开什么端口,能否被访问的 IP 段等等。一个最基本的例子,22端口一般都是不会打开的(SSH 协议的默认端口)。大的公司可能有几千个 EC2 实例,上百个 Security Group,如何保证这些配置都是安全的?这个时候就需要 CSPM 这样自动化的解决方案帮企业去随时监控云上的配置。

以上举得只是最简单的例子,实际上网络安全远比这个复杂,于是就有各种各样的组织来维护各种各样的安全规范。例如 AWS 本身就有一个安全规范叫做 CIS AWS Foundations Benchmark standard),欧盟有针对数据保护的的 GDPR (General Data Protection Regulation)。安全合规是企业在某些地区经营的硬性条件,所以他们也需要CSPM 这种工具来评估当前的 IT 设施是否已经满足某某规范。


工作体验

我加入我们组现在已经 9 个月了,总体的体验还不错,因为是新项目,所以技术债务基本没有。工作的挑战有技术上的(因为之前没有用过 Golang),也有产品和团队合作上的。因为是远程工作,时间安排灵活性比较大,不好的是有时候要兼顾其他时区的同事会需要下午 5 点以后还开会。团队小所以需要每个人有很强的 ownership,但是也是因为团队小公司小,很多流程规范化的东西没有建立起来,内部的 infra 也不咋地。

 

报酬和公司前景

据我自己的经历和数据,公司的报酬比德国互联网公司给的要高,可以参考 AWS 在柏林的薪酬吧。

数据来源于 level.fyi

另外因为是远程职位,如果你在德国有一间自己的房子单独作为办公室是可以去税务局申请退税的,比如物业费,垃圾费,水电,网费都能按照办公室占整体房子面积百分比退税。更加夸张的是,如果是你自己买的房子,房子的建筑成本(不含地)也能折算在退税里面。至于公司前景,公司最近的一轮融资在去年 7 月份,估值在 75 亿美元。最近比较利好的新闻是公司的 SSE 产品被 Gartner 魔力象限放在了 Leader 象限里面这篇文章提到了公司在 2022 上市的可能性。

 

Job Description

我之所以把 JD 放在最后,是因为我觉得 JD 其实不太重要,因为我面试的时候也没有考过八股文。而且我们用的主要的编程语言(Golang),主要数据库(CLickhouse),云服务(GCP)我都没有用过。但是我觉得一个好的工程师能够很快的学习,也能够很快的把之前的经验举一反三的应用到新事物上。



Job Overview

Within Netskope Engineering, the IaaS team is responsible for building cloud-scale CSPM that give enterprises visibility, compliance for critical workloads and DLP / Malware protection for critical data  running in public cloud infrastructures such as AWS, GCP, and Azure. We are currently looking for talented software engineers to join our team. As a member of the IaaS team, you will have the opportunity to develop innovative and scalable systems to protect the exponentially increasing amount of enterprise data and services being deployed in the public cloud.

Job Responsibilities

  • Design and build from cloud-based products and services with massive scale and reliability
  • Write clean and modular code primarily in Golang  to create multi tenant microservices capable of processing millions of notifications/files per hour, Petabyte scale data per month with SLA end to end latency and tenant fairness
  • Conduct architecture review, design within and across multiple engineering/research teams. Focus on conducting peer code reviews with a high bar.
  • Build CICD based software development model with end-to-end ownership of code delivery – starting from design/architecture, coding, automated functional/integration testing and operating/monitoring the service in production.
  • Use relevant technologies and cloud services like Kubernetes, Docker, SQS , Kafka,  Pulsar, Redis, Clickhouse, Mongo, RDF, SPARQL to build highly performant and scalable distributed systems
  • Design and develop data schema and access layer to optimally store and retrieve data
  • Work with Product Management to understand and improve product requirements
  • Stay up to date with the latest developments in cloud computing and incorporate relevant learnings to both product features and product architecture.

Preferred Qualifications

BS (MS Preferred) in Computer Science, Computer Engineering, Information Technology

Preferred Technical Skills:

  • 11 – 14 years of software development experience with enterprise-grade software.
  • Must have experience in building scalable, high-performance cloud services
  • Expert coding skills in Golang or Java or python backend
  • In Depth experience  in AWS and Azure or Google cloud APIs is mandatory
  • Expertise in building scalable event based  asynchronous systems based on the microservices architecture
  • Experience working with docker and kubernetes
  • Experience with databases such as MongoDB, Redis, Clickhouse, RDF, Graph DB, SPARQL etc.
  • Experience with messaging technologies such as Kafka, Pulsar, SQS
  • Must have expertise in building REST APIs
  • Strong object-oriented designing and programming experience
  • Proven analytical and problem solving, architecture and design skills required
  • Experience in cloud object stores:  S3, Cloud Storage, Blobs, etc.

Desired Technical Skills:

  • Open source committer in related areas like cloud technologies, kubernetes, database etc

Additional Skills

  • Great written and verbal communication
  • Ability to work geo distributed cross functional group
  • Demonstrated ability to innovate and build new product offering in greenfield areas
  • Demonstrated ability to own and deliver projects independently
  • Demonstrated ability of technical mentoring and coaching

 

 

Leave a Reply

Your email address will not be published.