Helping organizations around the world secure their software supply chains and achieve new visibility into the technology they build and buy.
Software is the only thing we buy without having any idea what’s inside of it.
Manifest is a venture-backed cybersecurity startup, helping organizations around the world reduce their supply chain risk, and build/buy more secure software. We are a first-mover and leader in the software supply chain space, specifically around how organizations generate and operationalize software bills of material (SBOM).
Vulnerability analysts/SOC teams identify and respond to software vulnerabilities hidden in their supply chain. With Manifest, the 12-week hair-on-fire Log4j response could have been shortened to minutes, and repeated for the next major supply chain vulnerability.
Product/Application Security teams easily generate and manage SBOMs, and quickly reply to SBOM requests.
Governance, Risk, and Compliance teams streamline the process of evaluating and buying new tech (from printers to apps to medical devices), giving them more quantitative data to answer the question: “How risky is this asset we want to purchase?”
The impact you’ll have
Manifest is seeking to hire an experienced Lead Platform Engineer will own technical leadership of Manifest’s DevOps / infrastructure processes and systems. You will build the program from the ground up, ensuring that our pipelines are fast, secure, performant, and scalable. By dogfooding Manifest’s core products, you will also be closely involved with Product and driving the direction of our product roadmaps.
As our Lead Platform Engineer, you will
Design, implement, and maintain Cloud Native build and release pipelines
Dogfood our own software supply chain product
Provide architectural guidance and leadership on best practices regarding security in software development, shared services, user interface design frameworks, high performance messaging solutions, server side development, integrations, tools and technologies
Research and use the latest in open-source tools to help build and secure our development pipeline
Contribute to Manifest’s open-source work and other security tooling
Implement and improving logging, monitoring, and alerting within our applications and infrastructure
Preferred: infrastructure security experience
Securing clouds (AWS), containers, and kubernetes
Securing SDLC pipelines (e.g. using SCA/SAST/DAST tools)
Who we’re looking for
Manifest is looking for a Lead (Staff/Principal/Senior) Platform Engineer with the following experience:
Experience in containers (Docker), orchestration (Kubernetes), IaC (Terraform) and cloud architectures (AWS)
Previous experience maintaining a medium or large-scale production system or COTS products using Infrastructure as Code (IaC)
Broad experience with Cloud products (AWS preferred)
Significant experience in one or more of the following areas: Cloud Infrastructure, Unix/Linux, Windows, Scripting, or Security
Significant experience with scripting (shell, bash, python) or backend development (Golang, python)
A security-oriented mindset, being able to think in terms of attack surfaces and reducing them. You don’t need to be a security expert, but you do need to be able to think critically about your decisions.
Excellent written and real-time communication skills, technical and otherwise
Ability to pick up and learn new development and operations skills
Experience with SBOM generation tools, including Syft, Trivy, CycloneDX generators, and related vulnerability scanners like Grype and Trivy.
Experience with open-source software security
We're a lean team, so your impact will be felt immediately and opportunities for growth are abundant at our scaling company. If this all sounds like a good fit for you, why not join us?
Manifest is proud to be an equal opportunity workplace and employer. We’re committed to equal opportunity regardless of race, color, ancestry, religion, gender, gender identity, parental or pregnancy status, national origin, sexual orientation, age, citizenship, marital status, disability, or veteran status.
Do the right thing
Cooperation & collaboration
Diversity, equity, and inclusion
Users come first
Lead with empathy
Empower our team to grow and succeed
Benefits of working @ Manifest
🔍 Help organizations get new-found visibility into their software, and be more secure!
🌎 Fully remote work (with potential for hybrid co-working for folks in the same place)
🌴 Unlimited PTO (which we take seriously)
🏥 100% medical/dental/vision insurance coverage for you and your dependents!
💵 Competitive salary & meaningful stock options
⚒️ Help get in at the ground floor of a well-funded, early stage startup!
🦄 Additional benefits to come (retirement, holiday gifts, etc.)
How to Apply
Just email us at email@example.com to learn more!