Duo Security
Our mission is simple: democratize security by making it easy and effective for everyone to use.
Austin, TX

Application Security Technical Lead - Duo Security at Duo Security

| Austin
Sorry, this job was removed at 11:35 a.m. (CST) on Tuesday, May 19, 2020
Find out who's hiring in Austin.
See all Developer + Engineer jobs in Austin
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

The Application Security team is responsible for ensuring that each engineer at Duo Security is enabled & supported throughout the Secure Development Lifecycle (SDL) to build security-resilient software. Whether for internally built technologies that help to “engineer the business,” or to delight our customers with innovative products & services, Duo’s Application Security team provides its capabilities across the entire business unit to reduce overall risk.

What you’ll do…

  • Lead various types of Application Security technical initiatives to assist in furthering the maturity and security posture of Duo and its products.
  • Work closely with teams, people, and leaders outside of AppSec to build positive relationships.
  • Provide security guidance on feature designs and specifications
  • Work closely with engineers on identifying and providing guidance on risk by reviewing architecture and implementation artifacts.
  • Perform code reviews and audits of new and existing features.
  • Identify and implement new ways that we can validate the security of Duo products and its development practices at scale.
  • Support product security incident response escalations, coordinate 3rd-party security assessments, provide ad-hoc technical security expertise to product, sales, & engineering teammates.
  • Research, build and implement tools, libraries & frameworks that aid developers in writing secure code.

Skills you have…

  • You have a strong understanding of many vulnerability classes and how they occur across a variety of languages including Python, Javascript, Java, C, C#, and Objective-C. An expertise in one or more of those languages is highly desirable.
  • You’re comfortable manually auditing code for vulnerabilities and using both commercial and custom static & dynamic code analysis tools (e.g. burpsuite, bandit, dlint)
  • You are able to mentor and be mentored on security practices, controls and bring an influential flair to your audience whether it is one on one, during a presentation, or workshop.
  • You understand security engineering principles, and how to seriously consider when a “best practice” may not be, in fact, the best choice or positively impact actual security and our customers.
  • Have been a part of a PSIRT team or have a solid understanding of the concepts and methodology

4 Reasons why you should apply…

  • You’re excited to be part of building an ever-maturing application security program that covers the Security Development Lifecycle, from training through incident response.
  • You love to communicate in a friendly, encouraging manner with software engineers and product managers, helping to not only identify security issues, but also a mentor and advocate on solutions.
  • You’re passionate about security, but understand each control or process has a “cost” that must be thought about critically, and from the point-of-view of many stakeholders.
  • You want to continuously elevate your skills and the skills of your teammates.

4 Reasons why you SHOULDN’T apply….

  • You only find excitement in breaking software. This role requires a broad participation in realizing a world-class application security program that leverages many talents at once.
  • Getting work done quickly is more important than how you present that work. We pride ourselves in detail-oriented, well-written communications -- whether on reports or email.
  • You don’t enjoy self-management of many tasks of various priority levels that can shift day-to-day. We value accountability of work that spans across tactical & strategic goals.
  • You are a lone wolf and prefer not to work on a team where collaboration and insight focuses the team for success on a daily basis.

We are Duo, and we’re here to democratize security for everyone. Our mission is to protect the mission of our customers like Facebook, Twitter, and Etsy by making security simple.

We’re a diverse crew of makers and builders, skaters and coders, filmmakers and DJ’s, teachers and students brought together by a shared belief in adding value to the world. This diversity allows us to bring an empathetic approach to solve some of the most complex global business and security challenges we face today.

Duo is committed to cultivating and preserving a culture of inclusion and connectedness. We are able to grow and learn better together with a diverse team of employees. The collective sum of the individual differences, life experiences, knowledge, innovation, self-expression, and talent that our employees invest in their work represents not only part of our culture, but our reputation and Duo’s achievement as well. In recruiting for our team, we welcome the distinct contributions that everyone brings in terms of their education, opinions, culture, ethnicity, race, gender identity and expression, nationality, age, languages spoken, veteran’s status, religion, disability, sexual orientation and beliefs.

And if this role is exciting you, we encourage you to apply even if you don’t meet all 100% of the description or qualifications. Finally and most importantly, we are a proud Equal Opportunity Employer.

See More
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Where we are

Duo's Austin office is located in the heart of downtown.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • C#Languages
    • C++Languages
    • GolangLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • SwiftLanguages
    • D3JSLibraries
    • FluxLibraries
    • ReactLibraries
    • ReduxLibraries
    • AngularJSFrameworks
    • CaffeFrameworks
    • Ember.jsFrameworks
    • ExpressFrameworks
    • Node.jsFrameworks
    • CassandraDatabases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • Adobe Creative SuiteDesign
    • MarvelDesign
    • Aha!Management
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • TrelloManagement
    • WrikeManagement
    • SalesforceCRM
    • MarketoLead Gen
Previous
Next

What are Duo Security Perks + Benefits

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Someone's primary function is managing the company’s diversity and inclusion initiatives
Diversity Employee Resource Groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Family Medical Leave
Adoption Assistance
Company sponsored family events
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Perks & Discounts
Casual Dress
Company Outings
Stocked Kitchen
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Continuing Education stipend
Time allotted for learning
Online course subscriptions available

An Insider's view of Duo Security

How does your team reward individual success?

It can be as quick as some karma in Slack. We do team appreciations at the start of team meetings and Cisco has connected recognition which allows individuals to recognize the great work someone has done along with a monetary award, from $25 on up! We also celebrate life with team members, for example throwing a virtual baby shower!

Hector

Senior Engineering Manager

What's the biggest problem your team is solving?

Our cross-functional team of data scientists, software engineers, and designers, as well as product and security experts is building an intuitive adaptive authentication system. We’re moving past basic rule-based approaches to create a dynamic experience that people will love for keeping them secure while staying unobtrusive.

Brian

Head of Data Science and Engineering

What are some things you learned at the company?

Early on, I thought that success in the security industry was attributed solely to people's ideas or intellect. Since then, I've learned that the most important thing to have in any industry is empathy. Without empathy, you can't build a product that people will love or a place that people will want to work. Empathy is a foundation for success.

Olabode

Senior Data Scientist

What is your vision for the company?

My overall vision is to provide mechanisms for the business to build simple, safe and secure products that our customers and partners intrinsically trust. It is my belief that when we empower our teams and stakeholders to creatively work together instead of falling on process and procedure for the sake of it, our creativity opens to new heights.

Amanda

Head of Product Security

What makes someone successful on your team?

Success for us is taking the road less traveled to achieve better results, meaning we look for teammates who bring perspectives from all walks of life and who are not afraid to use their voice. We believe this combination results in good outcomes because we end up paving our path to success with a diversity of thought.

Amanda

Internal Communications Manager

Jobs at Duo Security
13

All Jobs
All Jobs
Data + Analytics
Design + UX
Dev + Engineer
Product
Sales
Tap to close

Manager, Security Engineering

Duo Security
Austin
1 day ago
+43
As a Manager of Security Engineering, you will lead the team responsible for the development and operation of internal tools to keep SBG and it’s customers secure. In this role, you will be responsible for empowering the Security Engineering team and contributing to and supporting the Security Engineering vision. 

Principal Product Designer - Duo Security

Duo Security
Austin
1 week ago
+43
Our team is creating meaningful impact in a world of data breaches and hacked passwords. We also have a lot of fun doing it. We love learning from our customers through our research practice. Our project work and design systems span mobile and web interfaces. The team is highly collaborative and works closely with engineers and product managers. We are at an exciting moment in our growth. Now, as part of Cisco (Duo was recently acquired) we have the resources and reach of a global company while we keep our super fun culture.

Senior Site Reliability Engineer - Duo Security

Duo Security
Austin
1 week ago
+43
As a Senior Software Engineer on our Site Reliability Engineering team, you will develop software and tools to empower Duo's product development teams to maintain software releases quickly and smoothly. You will collaborate with a wide range of internal partners to engineer automated solutions in an effort to remove toil and enhance stability for a variety of infrastructure, with an emphasis on scalability. You will face challenges that require an engineering mindset and a desire to automate everything possible.

Customer Solutions Engineer - Duo Security

Duo Security
Austin
1 week ago
+43
As a Customer Solutions Engineer, you'll partner with our Customer Success Managers to drive time-to-value for Duo’s strategic customers, specifically by leading technical implementations. As a trusted security advisor, you'll translate business requirements into specific configuration recommendations and resolve potential deployment blockers. Other responsibilities include:

Senior Software Engineer in Test - Duo Security

Duo Security
Austin
1 week ago
+43
As a Senior Software Developer Engineer in Test, you will write code to test our services for functionality and performance, towards our goal of making security of our Cloud products easy for our customers and users. You will do this in an environment where continuous integration is in place and code is released to production bi-weekly.

Sr Product Designer, Duo

Duo Security
Austin
1 week ago
+43
Our team is creating a meaningful impact in a world of data breaches and hacked passwords. We also have a lot of fun doing it. We love learning from our customers through our research practice. Our project work and design systems span mobile and web interfaces. The team is highly collaborative and works closely with engineers and product managers. We are at an exciting moment in our growth. Now, as part of Cisco (Duo was recently acquired), we have the resources and reach of a global company while we keep our super fun culture.

Senior Software Engineer (Backend APIs, Data Engineering) - Duo Security

Duo Security
Austin
1 week ago
+43
Build services that power machine learning models and deliver insights back to customers. Design APIs to translate Duo activity into Trust Engine predictions and insights. Architect solutions to productionize research and make organizations safer with less effort. Architect key components of the Trust Engine powering the future of authentication at Duo. Partner with data engineers and data scientists to deliver machine learning product features to millions of users at more than 21,000 Duo customers. Improve production data pipelines to support machine learning product goals.

Engineering Manager, Site Reliability - Duo Security

Duo Security
Austin
1 week ago
+43
As an Engineering Manager on our Site Reliability Engineering team, you will lead a team responsible for enabling our engineering teams to be able to easily monitor and track metrics within services at Duo. These services empower Duo's product development teams to run and maintain their services in production at a high level. You will collaborate with a wide range of internal partners to lead projects that automate solutions in an effort to provide the most accurate insight possible into our systems, remove toil and enhance our teams ability to react quickly to issues.

Software Engineer (Backend APIs, Data Engineering) - Duo Security

Duo Security
Austin
2 weeks ago
+43
You are an engineer who loves to learn and adapt quickly. You enjoy working as a member of a team but can also drive tasks to resolution on your own. You are passionate about building secure software. You continually find opportunities to improve your technical and professional skills. You are not afraid to take on complex issues, take the initiative to solve problems, communicate solutions, or raise issues.

Account Development Representative - Duo Security

Duo Security
Austin
2 weeks ago
+43
As an Outbound Account Development Representative (ADR) at Duo, you will rally alongside a team of highly motivated ADR’s to build qualified pipelines of potential customers. This includes prospecting customers by phone, email, LinkedIn or whatever it takes to get them excited and engaged with Duo. You will not only be responsible for outbound prospecting but will be expected to be a subject matter expert of all things Duo (since you will be the face of the company).

PRODUCT MANAGER.CX PRODUCT MANAGEMENT

Duo Security
Remote
2 weeks ago
+43
Our Customer Experience (CX) team is responsible for defining and driving the end-to-end customer success and technology adoption motion through the entire customer lifecycle. We're seeking a senior technologist in Cisco Security portfolio with the ability to understand customers’ business and technical challenges that prevent them from adopting Cisco Security including Secure Firewall, Secure X, Secure Network Analytics, Secure Endpoint, Security Web Appliance, Umbrella, Security Access by Duo and Identify Services Engine. In order to accelerate customer adoption and to remove these barriers, they will closely collaborate across other CX/Business Entity/Enablement teams, lead the strategy and execution of CX Success track, and customer success motions for CX Product Management for Cisco Secure.

Senior Security Engineer, Product Security

Duo Security
Austin
2 weeks ago
+43
Test and provide guidance that may include design reviews, threat modeling, code auditing, and security assessments on internally & externally developed software.  Automate product security testing techniques and tools including, but not limited to; static analysis, dynamic analysis, software composition analysis and container scanning.  Identify and implement new ways that we can validate the security of Cisco SBG products and its development practices.  Liaison with product, customer support, sales and engineering teams to provide ad-hoc technical security expertise.  Research, build and implement tools, libraries & frameworks that aid developers in writing secure code.  Conduct security research to further enable the addition of proactive security controls within internally developed software. 

Sr. Software Development Engineer in Performance Test - Duo Security

Duo Security
Austin
3 weeks ago
+43
The Senior SDET (Software Development Engineer in Test) with an emphasis on Performance Testing is expected to be an advocate for the customer and to provide an assessment of software performance and quality that is metrics-based and integrated into the Software development life cycle. We expect a strong development background as you will spend 60% or more of your day writing code. Ideal candidates will have strong experience with performance metrics collections and developing performance testing frameworks, combined with the ability to tune code, database queries, no sql optimizations, distributed tracing, and  operating system parameters. You will be responsible for building strong relationships with engineering teams, site reliability teams and stakeholders.