Lead technical design and enforcement of network security across edge, backbone, and datacenter environments. Perform threat modeling, intrusion detection, DDoS mitigation, security automation and tooling, incident response, and security reviews. Mentor teams, integrate security into SDN/BGP/MPLS platforms, and promote best practices with observability and IaC.
Dive in and do the best work of your career at DigitalOcean. Journey alongside a strong community of top talent who are relentless in their drive to build the simplest scalable cloud. If you have a growth mindset, naturally like to think big and bold, and are energized by the fast-paced environment of a true industry disruptor, you’ll find your place here. We value winning together—while learning, having fun, and making a profound difference for the dreamers and builders in the world.
As a Staff Network Security Engineer at DigitalOcean, you will join a dynamic team dedicated to revolutionizing cloud computing and AI. In this role, you will act as a key technical leader, responsible for securing our global network infrastructure by partnering with engineering teams to advise on secure architecture. This position, which reports to the Manager, Security Defense Engineering, involves architecting and building automated security tools and championing best practices to ensure our network remains resilient against evolving threats across our edge, backbone, and datacenter environments.
What You’ll Do:- Define and enforce network security architecture standards and principles to ensure our networks are architected with security as a foundational element
- Provide technical leadership and mentorship to security and network engineering teams, serving as a subject matter expert on network security-related matters
- Lead network security assessments, including threat modeling, intrusion detection, and protocol-level analysis to identify and mitigate sophisticated attack vectors
- Develop and deploy advanced security automation, tooling, and infrastructure-as-code to continuously validate security posture and enforce compliance at scale
- Collaborate with network engineers to integrate security controls and telemetry within SDN, BGP/MPLS, and network automation platforms
- Participate in incident response efforts related to network security incidents
- Drive the security review process for all network infrastructure or product changes, ensuring designs adhere to established security standards and best practices before deployment
- Promote security best practices through documentation, tooling, and cross-team collaboration
- 8-10 years of experience in network security engineering, network penetration testing, or security-focused infrastructure roles
- Excellent communication skills to effectively collaborate with both technical and non-technical stakeholders, explaining complex security concepts and advocating for security best practices
- Deep understanding of Layer 2/3/4 networking protocols (BGP, OSPF, IS-IS, VRRP, LACP) and their security implications
- Deep understanding of distributed denial-of-service (DDoS) attack vectors and mitigation strategies, including packet filtering, rate limiting, and scrubbing services
- Extensive experience in designing and building secure networks from the ground up
- Experience leading projects and providing technical guidance to cross-functional teamsProficiency in scripting/programming languages such as Python or Go for automation and tooling
- Familiarity with Corero, Cloudflare, Juniper, Arista, or Ciena network platforms
- Strong Linux experience and familiarity with firewall, routing, and DNS security
- Understanding and experience with Network Intrusion Detection principles and tooling
- Knowledge of MPLS, BGP-LU, and SDN architectures from a security perspective
- Hands-on experience with observability tools like Prometheus, Grafana, and ELK stack
- Comfortable with Git-based workflows and collaborative development
- Open-source contributions related to network security
- Background in security incident response or red/blue team operations
- $168,800 - $211,000
*This is a remote role
JR: 2026-8009
#LI-Remote
Why You’ll Like Working for DigitalOcean
- We innovate with purpose. You’ll be a part of a cutting-edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions.
- We prioritize career development. At DO, you’ll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high-performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learning's 10,000+ courses to support their continued growth and development.
- We care about your well-being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences.
- We reward our employees. The salary range for this position is based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program.
- DigitalOcean is an equal-opportunity employer. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service.
Application Limit: You may apply to a maximum of 3 positions within any 180-day period. This policy promotes better role-candidate matching and encourages thoughtful applications where your qualifications align most strongly.
DigitalOcean Broomfield, Colorado, USA Office
105 Edgeview Drive, Suite 425, Broomfield, CO, United States, 80021
Similar Jobs at DigitalOcean
Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
Lead threat modeling and mitigation for the virtualization stack (QEMU/KVM). Build frameworks and rubrics to assess hypervisor risk, propose defense-in-depth designs, partner with engineering teams to implement remediations, mentor teams on security best practices, and help oversee vulnerability management.
Top Skills:
ApparmorCContainerizationContinuous Integration/Delivery (Ci/Cd)GoKvmLandlockQemuRustSelinux
Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
Define and execute the multi-year engineering strategy for agentic AI infrastructure. Lead architecture and delivery of runtimes and services (Open Harness, Action Toolbox), ensure scalable, reliable, cost-efficient production systems, launch revenue-driving SKUs, optimize utilization and margins, guide compute transitions (ARM/specialized shapes), and build a high-performing distributed engineering organization.
Top Skills:
Action ToolboxArmCloud InfrastructureCoding Execution RuntimeDistributed Compute SystemsMicrovmsOpen Harness RuntimeRuntime EnvironmentsVirtualization Platforms
Artificial Intelligence • Cloud • Software • Infrastructure as a Service (IaaS)
The Strategic Partner Development Manager will build alliances with system integrators, navigate organizational structures, lead partnership strategies, and collaborate with teams to enhance DigitalOcean's market presence.
Top Skills:
Cloud InfrastructureData Center Operations
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
