Penetration Tester

Albany | Boston | Norwalk | Rochester | Toronto

Datto, the world’s leading provider of IT solutions delivered through managed service providers, is looking for a Penetration Testing Engineer to join a growing team. Datto is a creative company at its core and is an exciting and dynamic workplace. We're 100% focused on our managed service provider partners and believe that with the right technology, managed service providers can change how businesses around the world operate. Datto provides data protection, business continuity, networking, business management, and file backup and sync products that empower and protect the clients of our 14,000+ partners. We're headquartered in Norwalk, Connecticut and have 22 offices worldwide.

The Security Engineer aids developers in the proactive identification of weaknesses in our products and services. You will have proficiency in penetration testing of operating systems and web applications. You will also offer application and architecture design and remediation guidance to engineering and product teams for identified issues.

Does This Describe You?

  • You have great instincts, raw talent, and aren't afraid of taking on challenges both alone and with a team.
  • You’re organized, detail-oriented, and pragmatic, with effective communication skills.
  • You have a depth of knowledge in the most common attack types (e.g. OWASP Top 10), and a breadth of knowledge across the majority of MITRE ATT&CK techniques.
  • You have several years of hands-on experience as a hacker, and have exercised your skills against both Linux and Windows environments.
  • You are capable of developing/debugging applications written in common object-oriented languages.

Bonus Points:

  • Experience as a Software Engineer
  • Writer for a security blog or similar
  • Mobile pentesting experience
  • Hardware hacking experience
  • Teaching / public speaking experience
  • Published CVEs
  • Security certifications (any Offensive Security or SANS/GIAC)

A Look Inside the Job:

  • Perform penetration tests on dozens of different products built with a wide variety of application stacks.
  • Discover threats, vulnerabilities and exploits through architecture design review, threat modeling, code review, and penetration assessments.
  • Offer remediation guidance to stakeholders for identified issues and serve as an escalation resource for engineering as they reduce issues.
  • Draft application security policies and standards that can be leveraged in the secure development of products and services.
  • Educate engineering employees on secure coding and development best practices.
  • Help with tools identification, onboarding and/or tools development to assist developers in the secure development of applications.
  • Configure, run and monitor automated security testing tools.
  • Build process and technology to improve the reporting and prioritization of identified weaknesses.

Note: We are looking only for candidates willing to join us directly as W2 employees (No 3rd party candidates)

At Datto, we believe our employees are our greatest asset and offer all full-time employees a wide-ranging benefits package, including: 


By submitting an application, you acknowledge we will process your data in order to consider you for the position you apply for and for other open positions within our company for which you may be suited. We collect and store your data in accordance with our Recruiting Privacy Practices.

Datto is an equal opportunity employer.

Penetration Tester

Demographic Questions

Individuals seeking employment at Datto are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. In order to track the effectiveness of our recruiting efforts and ensure we consider the needs of all our employees, please consider answering the following questions.

Completion is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter and any information that you do provide will be recorded and maintained in a confidential file.

Your responses to any of the following questions will be anonymized and only used to improve Datto’s diversity and inclusion initiatives. These responses will not be used / reviewed in connection with your application for employment.

I identify my gender as:

I identify as transgender:

I consider myself a member of the LGBTQ+ community

I identify my sexual orientation as:

I identify my ethnicity as:

Veteran status:

I have a physical disability:


Sorry, your application was not successfully submitted

Hurray! Your application was successfully submitted

Back to Careers