Oh Snap!
This job is no longer active - but you can still view the details below.

Senior Product Security Engineer: Penetration Testing

| Greater NYC Area

Have you ever wondered what happens inside the cloud?

Based in New York, DigitalOcean is a dynamic, high-growth technology company that serves a robust and passionate community of developers, teams, and businesses around the world. We believe that today’s entrepreneurs are changing the world through software. Our mission is to empower these entrepreneurs by bringing modern app development within reach for any developer, anywhere in the world.

 We want people who are passionate about making the internet a safer place for everyone.

We’re looking for a product security engineer with experience pentesting and assessing large-scale systems, and with the communication and personal skills to help build a program. Your work will make our million+ customers more secure, and will help ensure that DigitalOcean is a respected and active contributor to the broader security community.

You’ll report to the Director of Security Engineering. Your technical contributions could include pentesting our public offerings & internal services, building attack models, and impersonating specific actors in our environment. Your non-technical contributions could include mentoring other members of the security team, expanding our bug bounty program, and helping to guide the direction of DigitalOcean’s testing program.

What You’ll Be Doing:

  • Identify, plan, and execute penetration tests of varying scopes on DigitalOcean’s production environment.
  • Identify, plan, and execute assessments on DigitalOcean’s public-facing environment.
  • Build realistic attack models for DigitalOcean: what attackers of varying skill and motivation would actually do in our environment.
  • Train other members of DigitalOcean’s security team on how to perform assessments, and mentor them through basic testing work.
  • Be a technical point of contact when we engage with outside testing companies.
  • Work with our SOC and Security Engineering teams on effective attack detection.
  • Advise DO Engineering teams on how to best remediate specific vulnerabilities.
  • Help to manage our bug bounty program.

What We’ll Expect From You:

  • Demonstrable, thorough experience performing penetration tests on complex environments.
  • Working knowledge of modern development concepts (virtualized environments, continuous integration & delivery, containerization), network architecture, and system architecture. 
  • Demonstrable experience collaborating with internal engineering teams.
  • A habit of approaching problems with creativity.
  • Solid communication skills, both written and verbal.

Additional:

  • Experience automating common testing tasks.
  • Desire to be a technical leader in this space.
  • Experience with bug bounty programs, either managing or submitting.
  • Practical testing certifications (e.g. OSCP).

Why You’ll Like Working for DigitalOcean:

  • We have amazing people. We can promise you will work with some of the smartest and most interesting people in the industry. We work hard but we always have fun doing it. We care deeply about each other and take our “no jerks” rule very seriously.
  • We value development. We are a high-performance organization that is always challenging ourselves to continuously grow. That means we maintain a growth mindset in everything we do and invest deeply in employee development. You’ll need to be great to get hired here and we promise you’ll get even better.
  • We care about you. We offer competitive health, dental, and vision benefits for employees and their dependents, a monthly gym reimbursement to support your physical health, and a monthly commute allowance to make your trips to and from work easier.
  • We invest in your future. We offer competitive compensation and a 401k plan with up to a 4% employer match. We also provide all employees with Kindles and reimbursement for relevant conferences, training, and education.
  • We want you to love where you work. We have great office spaces located in the heart of SoHo NYC and Cambridge and offer daily catered lunches to keep your hunger at bay. We’re also very remote-friendly—we use Slack to communicate across the company—and all remote employees have the opportunity to onboard in-office and take an all-expenses paid trip to our annual company offsite, Shark Week, to get quality in-person time with the team at least once a year. We also allow employees to customize their workstations to meet their needs—whether remote or in office.
  • We value diversity and inclusivity. We are an equal opportunity employer and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. 


Department: Engineering

 

Department: Security

Want to learn more about our Security team? Clickhere!

Want an inside look into life at DO? Clickhere to hear from our employees!

Read Full Job Description

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • C++Languages
    • GolangLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • RubyLanguages
    • CLanguages
    • RLanguages
    • F#Languages
    • jQuery UILibraries
    • ReactLibraries
    • Ember.jsFrameworks
    • Ruby on RailsFrameworks
    • CassandraDatabases
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • ConsulDatabases
    • ZKDatabases
    • Google AnalyticsAnalytics
    • BasecampManagement
    • ConfluenceManagement
    • JIRAManagement
    • TrelloManagement
    • MailChimpEmail
    • MarketoLead Gen

Location

Easy to access for employees both in and outside of NYC, we're located in the heart of SoHo.

An Insider's view of DigitalOcean

What are some social events your company does?

We host an annual Shark Week where the entire company comes together for a week of learning, team time, opportunities to network cross-functionally, social activities, and more. We also host internal Hackathons (or Shark-a-hacks, as we call them) twice a year!

Olivia Melman

Manager, Recruiting Operations

What are DigitalOcean Perks + Benefits

DigitalOcean Benefits Overview

DigitalOcean benefits offerings vary by region. You can expect to enjoy things like:
- Full Health Coverage: Fully paid health benefits for all our employees. Nobody gets sick on our watch
- Commuter Benefits: Local employees receive a monthly metrocard or equivalent reimbursement for remotees
- 401k Plan: It's never too early to start saving. DigitalOcean matches up to 4% of every employee's salary
- Education Support: All employees receive a Kindle and reimbursement for conferences, training or education
- Gym Reimbursement: Up to $100 per month to support your physical health
- Custom Workstations: Mac? PC? Linux? We’ll hook up your rig with your preferred equipment
- Free Meals Every Day: Food tastes better when you’re eating together
- Flexible Vacation Time: Take the time you need to live a balanced and fulfilling personal life
- Headphones: Up to $100 for headphones of your choosing
- Teambuilding & Social Events: Hackathons, Shark Week (our annual company retreat), team offsites, anniversary parties and more

Culture
Friends outside of work
Eat lunch together
Intracompany committees
Open door policy
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Dental Benefits
Vision Benefits
Health Insurance Benefits
Wellness Programs
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Company Equity
Child Care & Parental Leave Benefits
Generous Parental Leave
Remote Work Program
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Perks & Discounts
Casual Dress
Commuter Benefits
Free Daily Meals
Our NYC office provides free catered breakfast and lunch Mondays through Fridays
Happy Hours
Happy hours are hosted once per week in the warmer months.
Fitness Subsidies
DigitalOcean reimburses its employees up to $100 per month for fitness services and activities
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Lunch and learns
DigitalOcean hosts lunch and learn meetings weekly.
More Jobs at DigitalOcean23 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR
Operations
Project Mgmt
Sales
Design + UX
new
New York
Developer
new
New York
Finance
new
New York
Developer
new
New York
Developer
new
New York
Developer
new
New York
Developer
new
New York
Data + Analytics
new
New York
Developer
new
New York
Project Mgmt
new
New York
Developer
new
New York
Developer
new
New York
Data + Analytics
new
New York
Developer
new
New York
Developer
new
New York
Developer
new
New York
Developer
new
New York
Operations
new
New York
Developer
new
New York