Become a part of the Tinfoil Team!

Be a part of changing the way security is done, while wearing many hats. We promise a fascinating adventure!

View Openings

Who is Tinfoil?

Tinfoil is a team of people always striving to learn something new every day. We’re a close-knit group, always finding something fun to do as a team. We strive for diversity and inclusion, while providing the best service possible.

At Tinfoil Security we're working to make the internet a more secure place. This means building things that have never been built before: you'll need to quickly learn new concepts and apply them to your work. We value speed, but we value stability more.

We write tools that are used to secure the largest web applications and APIs in the world. If you've ever watched a video or streamed music online, your data has probably been secured by code we've written. To date, our software has found and fixed over two million security vulnerabilities in the web.

We provide companies of all sizes with security tools that can be used by their developers and DevOps teams. Our goal is to reduce the time it takes to find and fix vulnerabilities and make it a part of the building process.  

We hook security into CI and testing frameworks and have security tests run alongside unit, regression, and integration tests. Using the same techniques as malicious hackers, we systematically test all the access points. As we find vulnerabilities we’ll stick them right back in front of developers, either in a simple checklist format or by integrating into their issue tracker of choice, instantly notifying developers when there's a threat and giving step-by-step instructions, tailored to their software stack, to eliminate it.

We’re not limited by technologies or software stacks. Be it a website or API driven mobile app or IoT device, we can secure it. Our customers have a lot to manage; we help manage their security.

Tinfoil Benefits

At Tinfoil, we strive for diversity and inclusion, which means providing unique benefits to encourage many different lifestyles. A high-level overview of things we provide our full-time employees are outlined below:

Healthcare — We offer medical, dental, and vision for employees and dependents.

FSA — Opt into an FSA with a 90 day grace period and a $500 rollover.

Family planning assistance (being implemented) — We believe in helping all of our employees to have peace of mind in creating a life they want. We’re implementing a system to financially assist with family planning, including IVF, egg freezing, adoption, and anything else we might be missing!

Education assistance (being implemented) — Some of the best security minds of our time haven’t graduated high school, let alone college. If you’re in this group and are hoping to get a degree, or have a degree and are interested in furthering your education, we have a program to assist!

Charity Match Program — We believe in making sure we support our community, embodying one of our Tinfoil values. As such, we’ll match up to $1,000 in charitable donations made by an employee.

Vacations & Holidays

Policy — Full-time employees follow an unlimited vacation policy. We believe that you should be able to travel and open your mind, no matter your tenure at Tinfoil.

Holidays — Tinfoil typically celebrates ~1 holiday per month. Feel free to be in the office on those days, but don’t expect anybody else to be! Holidays include some of the standard government days, but may also include more unique holidays like Pi Day!

Special Holidays — The best way to avoid burnout (common in a startup) is to do something out of the norm. To encourage this, we will reimburse up to a certain amount for some of the holidays we take off (4-5 holidays/year) for you to do something unique. Tinfoilers have spent this on kayaking, hiking, team outings, flights to Vegas... The world is your oyster!

Traveling with Tinfoil

Retreats & Workaways — We do a retreat (1 long weekend) in the winter and a work away (1 full week) in the summer. Retreats are typically within a 2-3 hour drive of the Bay Area, where we’ll all head out as a team for a long weekend for some fun! Work away is a week long trip, where we’ll typically fly away from the Bay Area and spend a week working on unique projects with focus we wouldn’t be able to get otherwise. The week is speckled with fun events like lobster nights, island trips, and escape the room games!

Company Anniversary — Our belief is that all small successes should be celebrated. Making another trip around the sun is a success! On or around June 24th each year, we go out as a team and do something exciting. We've learned to windsurf, gone to Santa Cruz, rafted the white waters of the American River, etc... it's always a blast.

The Tinfoil Office

Our office is located in Mountain View, CA. There’s plenty of parking available, and we're near the Caltrain (10-15 minute walk from the San Antonio stop) and bus stops. We’re often stocked with snacks and are close to many great taquerias!

Current Openings

Software and Security Engineer

At Tinfoil Security we're working to make the internet a more secure place. This means building things that have never been built before: you'll need to quickly learn new concepts and apply them to your work. We value speed, but we value stability more.

You'll be in charge of large projects, in many different domains. This might involve anything from distributed systems to static analysis or information architecture.

Our software stack is primarily Elixir, Ruby, and Go, but we're advocates of choosing the best tool for the job. If something like Elm is going to help you solve a problem more effectively then we want you to convince us of that.

Qualifications

  • A drive to learn and push your limits
  • An interest in security and an appreciation for privacy
  • Passion. We don't care in what, but we want you to make us excited about something you care about
  • A pride in your work. We treat our work as a craft, and aren't done with a new feature until we're proud of it

Bonus Points:

  • Experience in:
    • Ruby or Ruby on Rails
    • Elixir or Erlang
    • Javascript, Coffeescript
    • Knockout.js, AngularJS, React
  • Exposure to security concepts like:
    • Web Vulnerabilities (XSS, SQLi, CSRF, etc)
    • Cryptography
    • DevOps and the CI/CD process
  • DevOps Experience:
    • We use Docker, CoreOS, and Kubernetes
    • You've built and launched a project from start to finish
  • Other:
    • An interest in CTF (Capture the Flag). We help run the Samurai CTF team, and we've won at DEFCON!

Front-end Designer and Engineer

Our mantra is respecting our customers' time. That means clean interfaces, interactive reports, and attractive remedies for any vulnerabilities we find. The responsibilities of a front-end engineer would focus around improving our product with an eye for these types of issues.

You'll be in charge of large front-end engineering and/or design projects, and will be given the ability to take charge and make them your own.

Our software stack is primarily Elixir, Ruby, and Go on the backend, with Coffeescript and Knockout.js on the front-end, but we're advocates of choosing the best tool for the job. If something like Elm is going to help you solve a problem more effectively then we want you to convince us of that.

Qualifications

  • A fast learner, who can build a boat out of twigs, sand, and honey
  • A drive to learn and push your limits
  • An interest in web design and front-end engineering
  • An interest in information architecture
  • An interest in security and an appreciation for privacy
  • Passion. We don't care in what, but we want you to make us excited about something you care about
  • A pride in your work. We treat our work as a craft, and aren't done with a new feature until we're proud of it

Bonus Points:

  • Experience in:
    • Ruby or Ruby on Rails
    • Elixir or Erlang
    • Javascript, Coffeescript
    • Knockout.js, AngularJS, React
  • Exposure to concepts like:
    • Web Vulnerabilities (XSS, SQLi, CSRF, etc)
    • Cryptography
    • Usability Testing
    • Front-end Software Development
    • Graphic Design
    • DevOps and the CI/CD process
  • DevOps Experience:
    • We use Docker, CoreOS, and Kubernetes
    • You've built and launched a project from start to finish
  • Other:
    • An interest in CTF (Capture the Flag). We help run the Samurai CTF team, and we've won at DEFCON!

Account Executive and Relationship Builder

We believe in creating deep relationships with each of our customers. Our account executives are the first team members to interact with the outside world, and a good collaborative mindset is needed to take on this challenge.

You'll be trained directly under our founders in our unique approach to sales and relationship building. The approach we take is a complete collaboration between yourself and the rest of the team. If you have a proven track record in sales or technical sales, but didn't like the standard cutthroat sales culture, Tinfoil may be the right spot for you! You’ll interact directly with executives from companies both large and small. We have Fortune 500 companies, non-profits, and the smallest of startups as our customers. Each of them is important to our team.

Qualifications

  • A fast learner, who can build a boat out of twigs, sand, and honey
  • A drive to learn and push your limits
  • An interest in customer success
  • An interest in building strong relationships
  • An interest in security and an appreciation for privacy
  • Passion. We don't care in what, but we want you to make us excited about something you care about
  • A pride in your work. We treat our work as a craft, and aren't done with a new feature until we're proud of it

Bonus Points:

  • Experience in:
    • Engineering
    • Sales (of any kind!)
    • Sales and CRM tools
    • Sourcing leads and bringing them through the full sales process, through to invoice
  • Exposure to security and engineering concepts like:
    • Web Vulnerabilities (XSS, SQLi, CSRF, etc)
    • DevOps and the CI/CD process
    • Front-end Software Development
    • Web Design

Pitch us on a position
Think we need a position you can fill? Pitch us on what it is! We’re always looking to bring smart and exciting people into the fold. Though we may not have the bandwidth to jump on the opportunity immediately, we’re happy to chat about something interesting for now or the future :)
Have questions or want to apply? Email us at jobs@tinfoilsecurity.com!