Duo Security
Our mission is simple: democratize security by making it easy and effective for everyone to use.

Security Engineer, Duo Product Security at Duo Security (Remote)

| Remote
Sorry, this job was removed at 7:50 a.m. (CST) on Tuesday, November 30, 2021
Find out who’s hiring remotely
See all Remote jobs
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
The Cisco Security Business Group (SBG) focuses on empowering the world to reach its full potential, securely through the Cisco Secure products. Within the SBG Security team, we support this mission by building thoughtful partnerships with our internal stakeholders to drive security strategy alignment across the SBG portfolio to deliver simple, effective security solutions for our internal customers that meet both market and industry expectations.
Our team's mission is to become our internal customers' most trusted partners by building best-in-class security programs that shape the market with our research, make it easy for our customer teams within Cisco to develop secure software, protect our most valuable information and customer assets, and enable SBG employees to work securely as they deliver Cisco Secure products including Duo, Umbrella, SecureX, Talos, Amp for Endpoints, StealthWatch, Tetration, and beyond.
#WeAreCisco, where each person is unique, and our team is our secret weapon. We run the spectrum from artists to analysts, low-key to high energy, and bring together a diversity of skill sets, experiences, and perspectives to solve the complex problems that come with securing a growing business. Together we build solutions that are easy, effective, trustworthy, and enduring.
We are looking for a Product Security Engineer to proactively identify and mitigate security risk to Cisco SBG- Duo.
What you will do:
  • Test and provide guidance that may include design reviews, threat modeling, code auditing, and security assessments on internally & externally developed software.
  • Implement product security testing techniques and tools including, but not limited to; static analysis, dynamic analysis, software composition analysis and container scanning.
  • Liaison with product, customer support, sales and engineering teams to provide ad-hoc technical security expertise.
  • Implement tools, libraries & frameworks that aid developers in writing secure code.

Skills you have:
  • You have a strong understanding of many vulnerability classes impacting a variety of languages, with an expertise towards Python, JavaScript, Java, C, C#, and Objective-C.
  • You're comfortable manually auditing code for vulnerabilities as well as crafting threat models to discover design issues.
  • You understand security controls on AWS or similar IaaS services.
  • You understand security engineering principles, and how to seriously consider when a "best practice" may not be, in fact, the best choice or positively impact actual security and our customers.

Reasons to apply:
  • You're excited to be part of building an ever-maturing product security program that covers the Security Development Lifecycle, from training through incident response.
  • You love to communicate in a friendly, supportive manner with software engineers, helping to not only identify security issues, but also a mentor and advocate on solutions.
  • You're passionate about security, but understand each control or process has a "cost" that must be thought about critically, and from the point-of-view of many stakeholders.
  • You want to continuously elevate your skills and the skills of your teammates.

Our team is committed to cultivating and preserving a culture of inclusion and connectedness. We are able to grow and learn better together with a diverse team of employees. The collective sum of the individual differences, life experiences, knowledge, innovation, self-expression, and talent that our employees invest in their work represents not only part of our culture, but our reputation and Cisco's achievement as well.
In recruiting for our team, we welcome the unique contributions that all potential candidates can bring in terms of their education, opinions, culture, ethnicity, race, gender identity and expression, nationality, age, languages spoken, veteran's status, religion, disability, sexual orientation and beliefs.
And if this role is exciting to you, we encourage you to apply even if you don't meet all 100% of the description or qualifications. Finally, and most importantly, we are a proud Equal Opportunity Employer.
U.S. Vaccination Requirements
Cisco requires all U.S. employees to be fully vaccinated or have an approved religious or medical accommodation. Candidates accepting an offer must provide proof of vaccination status on their first day. If someone anticipates requesting an accommodation for this requirement, they must receive approval before the start date. Candidates receiving an offer will receive additional information about the accommodation process at the time of the offer. All offers of employment are contingent upon complying with Cisco's vaccination policy.
See More
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Where we are

Duo's Austin office is located in the heart of downtown.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • C#Languages
    • C++Languages
    • GolangLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • SwiftLanguages
    • D3JSLibraries
    • FluxLibraries
    • ReactLibraries
    • ReduxLibraries
    • AngularJSFrameworks
    • CaffeFrameworks
    • Ember.jsFrameworks
    • ExpressFrameworks
    • Node.jsFrameworks
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • Adobe Creative SuiteDesign
    • MarvelDesign
    • Aha!Management
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • TrelloManagement
    • WrikeManagement
    • SalesforceCRM
    • MarketoLead Gen
Previous
Next

What are Duo Security Perks + Benefits

Duo Security Benefits Overview

We like to keep everyone happy and healthy. From financial security to personal growth, we're here to support you.

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Diversity Employee Resource Groups
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Mental Health Benefits
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Family Medical Leave
Adoption Assistance
Company sponsored family events
Vacation & Time Off Benefits
Generous PTO
Paid Volunteer Time
Paid Holidays
Perks & Discounts
Casual Dress
Company Outings
Stocked Kitchen
Home Office Stipend for Remote Employees
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Continuing Education stipend
Time allotted for learning
Online course subscriptions available
Customized development tracks
Paid industry certifications

An Insider's view of Duo Security

How does your team reward individual success?

It can be as quick as some karma in Slack. We do team appreciations at the start of team meetings and Cisco has connected recognition which allows individuals to recognize the great work someone has done along with a monetary award, from $25 on up! We also celebrate life with team members, for example throwing a virtual baby shower!

Hector

Senior Engineering Manager

What's the biggest problem your team is solving?

Our cross-functional team of data scientists, software engineers, and designers, as well as product and security experts is building an intuitive adaptive authentication system. We’re moving past basic rule-based approaches to create a dynamic experience that people will love for keeping them secure while staying unobtrusive.

Brian

Head of Data Science and Engineering

What are some things you learned at the company?

Early on, I thought that success in the security industry was attributed solely to people's ideas or intellect. Since then, I've learned that the most important thing to have in any industry is empathy. Without empathy, you can't build a product that people will love or a place that people will want to work. Empathy is a foundation for success.

Olabode

Senior Data Scientist

What is your vision for the company?

My overall vision is to provide mechanisms for the business to build simple, safe and secure products that our customers and partners intrinsically trust. It is my belief that when we empower our teams and stakeholders to creatively work together instead of falling on process and procedure for the sake of it, our creativity opens to new heights.

Amanda

Head of Product Security

What makes someone successful on your team?

Success for us is taking the road less traveled to achieve better results, meaning we look for teammates who bring perspectives from all walks of life and who are not afraid to use their voice. We believe this combination results in good outcomes because we end up paving our path to success with a diversity of thought.

Amanda

Internal Communications Manager

More Jobs at Duo Security