Software Engineer II- Security

Boston | Norwalk | Rochester

As the world’s leading provider of cloud-based software and technology solutions delivered by managed service providers (MSPs), Datto believes there is no limit to what small and medium businesses can achieve with the right technology. Datto offers Unified Continuity, Networking, and Business Management solutions and has created a one-of-a-kind ecosystem of MSP partners. These partners provide Datto solutions to over one million businesses across the globe. Since its founding in 2007, Datto continues to win awards each year for its rapid growth, product excellence, superior technical support, and for fostering an outstanding workplace. With headquarters in Norwalk, Connecticut, Datto has global offices in the United Kingdom, Netherlands, Denmark, Germany, Canada, Australia, China, and Singapore. Learn more at datto.com.

You will report to the Sr. Manager of Software Engineering.

A Look Inside the Job:

The BCDR Device team enhances and maintains the software powering the SIRIS and Alto business continuity and disaster recovery products (~86,000 devices deployed across all 7 continents). In a nutshell, these BCDR devices are appliances that take block-level backups of physical or virtual Windows, Linux, and Mac machines, transforms them into raw disk images, and then stores the resultant images in a local ZFS-based disk array. The devices also provide secondary backup by offsiting to the Datto cloud. In the event of a disaster, our customers can then restore these backups in a variety of formats including local or remotely hosted virtual machines, mount volumes as iSCSI targets or Samba shares, or use them to provision replacement physical hardware. The same software powering these devices is also packaged as a virtual appliance which can integrate directly with our customers virtual environments. 

Devices provide a web UI (much like a router), but the real magic happens in the backend services and processes. We do amazing and exciting things every day, such as detecting when a VM has booted successfully, injecting drivers into the Windows registry before boot, or generating vmdk files on the fly.

Our technology stack includes modern Symfony-based PHP, Python, C/C++, mySQL, HTML5/Javascript/JQuery, Apache, NGINX, Ubuntu, and BASH. On top of that, we work with lots of low-level technologies, such as the zfs file system and hypervisors. As you may have noticed, this is not a typical PHP web development role! You’ll be working on one of several product scrum teams with each consisting of approximately five software engineers, two quality engineers, a scrum master, and a product owner.

About You:

  • B.S. in Software Engineering, Computer Science, or a related field (or equivalent experience)
  • 3+ years of professional experience with object-oriented or functional programming using languages such as Java, PHP, Python, C++, or C#
  • Strong computer science fundamentals in data structures, algorithms, design patterns, security best practices, and object-oriented programming
  • Solid understanding of the OWASP Top 10 vulnerabilities and vulnerability scoring frameworks such as CVSS
  • Solid understanding of authentication and authorization frameworks/standards such as Mutual Authentication, Open SSO, SAML, OAUTH, Kerberos, and JSON Web Token (JWT)
  • Familiar with static and dynamic application security testing tools (Nessus, Acunetix, RIPS, etc), interpreting their output, and remediating findings
  • Experience in analyzing and fixing code level vulnerabilities
  • Experience with version control software (e.g., Git, Subversion, etc.)
  • Experience with relational database design principles (e.g., MySQL)
  • Experience with Git, GitHub, or GitLab
  • Familiarity with Linux and shell scripting (bash)
  • Must enjoy learning and be self-motivated with the ability to switch contexts as our needs evolve
  • Thrive in an agile fast paced environment

Bonus Points:

  • Security+ certification
  • Experience with threat modeling and integrating security in the DevOps pipeline (DevSecOps)
  • Familiarity with hypervisors (VMWare, Hyper-v, VirtualBox, KVM, etc)
  • Familiarity with Apache, Symfony, NGINX, Ubuntu

Benefits:

  • At Datto, we believe our employees are our greatest asset and offer all full-time employees a wide-ranging benefits package, including: 

Summary of benefits not showing up? View a summary here: Datto Benefits

 

By submitting an application, you acknowledge we will process your data in order to consider you for the position you apply for and for other open positions within our company for which you may be suited.  We collect and store your data in accordance with our Recruiting Privacy Practices.

Datto is an equal opportunity employer.

Software Engineer II- Security

Demographic Questions

Individuals seeking employment at Datto are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. In order to track the effectiveness of our recruiting efforts and ensure we consider the needs of all our employees, please consider answering the following questions.

Completion is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter and any information that you do provide will be recorded and maintained in a confidential file.

Your responses to any of the following questions will be anonymized and only used to improve Datto’s diversity and inclusion initiatives. These responses will not be used / reviewed in connection with your application for employment.

I identify my gender as:

I identify as transgender:

I consider myself a member of the LGBTQ+ community

I identify my sexual orientation as:

I identify my ethnicity as:

Veteran status:

I have a physical disability:

loadingspinner

Sorry, your application was not successfully submitted

Hurray! Your application was successfully submitted

Back to Careers