As the world’s leading provider of cloud-based software and technology solutions delivered by managed service providers (MSPs), Datto believes there is no limit to what small and medium businesses can achieve with the right technology. Datto offers Unified Continuity, Networking, and Business Management solutions and has created a one-of-a-kind ecosystem of MSP partners. These partners provide Datto solutions to over one million businesses across the globe. Since its founding in 2007, Datto continues to win awards each year for its rapid growth, product excellence, superior technical support, and for fostering an outstanding workplace. With headquarters in Norwalk, Connecticut, Datto has global offices in the United Kingdom, Netherlands, Denmark, Germany, Canada, Australia, China, and Singapore. Learn more at datto.com.

The Datto Networking group is seeking an accomplished Software Security Champion preferably with networking experience. This person will work with a talented Engineering team gearing towards delivering ground-breaking technologies in the software defined networking (SDN), network virtualization and network automation.  We want a passionate leader who loves to code, solve innovative problems and can take ownership in their area of focus to build great products.  This individual will be a security champion, working closely with other Datto security experts providing guidance to Engineering and Product teams on how to build secure products. Collaboration and teamwork are at the foundation of our culture and we need engineers who will bolster this foundation.

This team provides networking and security services managed in the cloud. Datto’s Networking products span from cloud managed devices like Access Points, Switches and Routers to providing services in the cloud for example security. We are looking for an experienced Product Security Engineer who is an out of the box thinker,  passionate about solving security problems and open to new ideas. This is your chance to apply your skills to improve the security of our products on a daily basis in a thriving security setting.

A Look Inside The Job:

  • Partner with the Datto Security team to champion security throughout the software development lifecycle
  • Collaborate with the Product, Engineering and Security teams to prioritize security related work
  • Design and implement fixes for vulnerabilities identified by security scanning tools or uncovered by our pentest team. 
  • Participate in design and code reviews with security as your primary focus
  • Design and implement security specific automated testing
  • Mentor team members on secure coding practices
  • Contribute to the continual improvement of the architecture and codebase
  • Performs other related duties as assigned
  • Limited on-call support is required

About You:

  • B.S. or M.S. in Software Engineering, Computer Science, or a related field (or equivalent experience) 
  •  5+ years of architecture and software development experience
  • Experience with Golang and PHP strongly preferred.  Or Java, Python, C++, or C#
  • AWS or Azure certifications preferred
  • Experience with API development; RESTful, JSON-RPC
  • Experience navigating relational and non-relational databases and messaging infra like  MySQL, Cassandra, Redis, AWS SQS,  Kafka and Elasticsearch
  • Experience with distributed version control software (e.g. Git, Subversion, etc.)
  • Familiarity with continuous integration, testing tools, workflows  and source code management tools (git).
  • Strong Computer Science fundamentals in data structures, design patterns, and algorithms
  • Proficient with Linux and shell scripting
  • Must enjoy learning and be self-motivated with the ability to switch contexts as the needs of the business evolve 
  • Familiarity with Agile/Scrum software development processes and methodologies.
  • Has experience developing new user-facing features with security in mind

Bonus Points:

  • Security+ , CISSP or similar security certification
  • Familiar with vulnerability scoring frameworks such as CVSS
  • Understanding of authentication and authorization frameworks/standards
  • Experience developing and supporting of network security equipment and systems, such as L2/L3 firewall, DPI, IDS/IPS, SD-WAN, SD-Security, SSL/VPN
  • Experience with Microservices or container-based development (Docker, Kubernetes) 
  • Understanding of networking protocols (e.g. DNS, HTTPS, IPSEC, 802.11ac/ax, QoS, etc.)
  •  Understanding of the OSI model, TCP/IP protocol stack, HTTP, DNS, and other related protocols
  • Familiarity with SDN (Software Defined Networks)/NFV (Network Function Virtualization) and cybersecurity concepts a plus.

Benefits:

  • At Datto, we believe our employees are our greatest asset and offer all full-time employees a wide-ranging benefits package, including:

Summary of benefits not showing up? View a summary here: Datto Benefits

By submitting an application, you acknowledge we will process your data to consider you for the position you apply for and for other open positions within our company for which you may be suited. We collect and store your data following our Recruiting Privacy Practices.

Datto is an equal opportunity employer.

Note: We are looking only for candidates willing to join us directly as W2 employees (No 3rd party candidates)

 

Apply for this Job

* Required

  
  


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at Datto Jobs are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.