Application Security Engineer
Duo is on a mission to end the era of passwords and democratize advanced security technologies to protect everyone, not just the Fortune 500s. We're solving the biggest security challenges in the industry and want you to join us for the ride!
Security is critical for us - it's in the name, after all - so we're looking for an Application Security Engineer to help us continue to securely develop the best-in-breed platform for 2FA, endpoint security, and beyond!
Responsibilities include:
- Training developers and other staff on security best practices
- Developing in-house tools and frameworks to prevent the introduction of common vulnerabilities
- Staying on top of the latest threats and trends that are relevant to our product offering and tech stack
- Building process improvements to ensure security is top-of-mind throughout our software development lifecycle
- Coordinating - and sometimes performing - architecture reviews and code audits
- Triaging and responding to reports of product security issues
- Participate in engineering solutions to protect our production environments
Our ideal candidate has experience systematically building security culture in a chaotic, rapidly-growing software engineering team - and has built secure systems (but also enjoys breaking them) across a variety of environments. If you're coming up short in these areas, but think you could still knock it out of the park, convince us why!
Qualifications:
- Deep understanding of modern web security concepts like XSS, CSRF, SQLi, XXE, hunter2, ...
- Experience building high-quality software in a variety of languages (e.g. Python, JavaScript, Objective-C, Java, PHP) and environments (Web, Mobile, DevOps, etc.)
- Passion for building systematic - but pragmatic - security culture within an organization
- Strong written and verbal communication skills, and a drive to teach
- Ability to work individually and in small teams
You also:
- Are ready to take on just about anything, and figure things out one way or another
- Care about contributing to an amazing work culture and environment
- Are comfortable with the rapid, unpredictable nature of a tech startup
- Prefer trying and failing to getting it perfect the first time
- Enjoy hacking the planet
Excited? We can't wait to hear from you!