Our mission at Duolingo is to develop the best education in the world and make it universally available. But we’ve got more left to do — and that's where you come in!
Duolingo is the most popular language-learning application in the world, with over 500 million users and over half a billion exercises completed daily. Beyond our core learning product, we have also entered into literacy with Duolingo ABC and English proficiency testing with the Duolingo English Test.
We are passionate about educating our users, making fact-based decisions, and finding innovative solutions to complex problems. We offer meaningful work, limitless learning opportunities, and collaboration with world-class minds. Come brighten your life and over half a billion more!
As a security engineer, you will use and develop cutting-edge tools to maintain confidentiality, data integrity, and availability across all Duolingo services and platforms. Our strategy is to continuously improve Duolingo’s infrastructure security and maintain compliance through automation and monitoring.
Develop scalable monitoring systems for the detection of security anomalies
Streamline operational and development practices related to security
Analyze current security posture and plan for future threats
Provide guidance on security practices and policies
Harden networks against attacks
Prevent data breach and IP theft
Experience handling several technical projects across various stakeholders
Knowledge of Linux system administration and automation
Expert background in computer network security
Programming experience with Python
Requirements: (5 max)
A Bachelor’s degree in Computer Science or related technical field
3+ years of experience maintaining the security of large services/infrastructure
Familiarity with one or more national and/or international regulations such as GDPR, COPPA, HIPAA, ISO, SOX, and PCI
Exceptional Candidates Will Have...
Master’s degree in Computer Science or related technical field
Familiarity with containerization runtimes (Docker, rkt)
Experience securing a large infrastructure on AWS or Google Cloud
Practical experience using OWASP documentation
Experience with pentesting tools and techniques
We aim to return to office, and as such are requiring all employees to be fully vaccinated against COVID-19.