On the Market: These top tech companies in Pittsburgh are hiring for cybersecurity roles

On the Market is a Technical.ly column where we highlight noteworthy job openings. Have a submission? Email us at pittburgh@technical.ly.

Cyber’s so hot right now.

According to a recent CompTIA report, cybersecurity jobs are expected to increase by 253% over the next decade. Locally, it’s the fastest-growing sector of tech jobs after software development, with more than 5,000 Pittsburgh technologists currently working in cybersecurity roles. Those opportunities are no longer limited to cyber-focused companies, but instead have started to encompass internal positions at general tech companies. That includes some of the leading firms in Pittsburgh.

For our latest On the Market column, Technical.ly rounded up some of the hottest job postings on the local cyber market today. Take a look at who’s hiring below. 

Duolingo is hiring for a security engineering manager

The East Liberty-headquartered language learning tech company has an opening for an engineering manager on the security engineering team, which oversees the safety of Duolingo’s products and infrastructure. The hope is that this team will also contribute to the development of a culture where security measures are seamlessly integrated into the overall product development process. This role will have responsibilities in developing engineers for the security team and setting plans for future strategic goals, as well as working with other teams at the company to identify and predict future risks.

Those looking to apply should have technical management experience and familiarity with at least one regulatory system such as GDPR, COPPA, HIPAA or others. The job posting notes that applicants with a bachelor’s degree in computer science or another technical field, experience with pen testing tools and techniques, a CISSP certification, and experience securing infrastructure on AWS or Google Cloud.

Aurora needs a security senior technical program manager for its Pittsburgh office

Strip District-based autonomous vehicle company Aurora is hiring for a senior role on its security technical program management team to fulfill the security needs for all operations of the company, which has eight offices across the US. Information security needs for autonomous tech will certainly become a priority even more as self-driving trucks and cars prepare to take the roads. Companies will need to be hyper-aware of any risks to system hacks or overhauls by malicious parties, as those incidents pose an extremely high risk to public safety.

Responsibilities for the role include the design and establishment of programs and projects related to security and privacy for the company, as well as inter-departmental work to understand the security needs across the company and how to implement them. Those interested should have at least eight years of experience in technical program management, as well as experience in the information security space and a BS in computer science or another technical field. Certifications in CISM, CISSP, GIAC, OSCP, Prosci or SAFe are also desired.

The Aurora Team in Times Square for listing day. (Courtesy photo)

CMU’s CERT division has an opening for an associate cybersecurity engineer

The CERT Cyber Workforce Development (CWD) team at Carnegie Mellon University is looking for an associate cybersecurity engineer to join its team in either Pittsburgh or Arlington. The CWD team within CERT specializes in building cybersecurity expertise and in spreading that expertise across a global and distributed workforce. It typically does this by partnering with organizations to find gaps in their cybersecurity needs and help them understand how to develop programs to fill those gaps internally.

This role will be responsible for working with the CWD team to develop cybersecurity trainings, programs and software for US government departments and organizations. Those interested in applying should have a BS or MS in computer science, information science, engineering or cybersecurity in addition to some relevant experience. Top applicants will also bring experience in digital forensics, penetration testing, reverse engineering, open-source security tools, network design, scripting, virtualization, programming experience and more to the role.

Cybersecurity startup ForAllSecure needs a solutions architect for its federal work

ForAllSecure, a Series B-backed, remote-first CMU spinout that specializes in application fuzz testing, is hiring a federal solutions architect for its signature product, Mayhem. Based on technology that won the DARPA Cyber Grand Challenge in 2016, the work involved with this role will utilize fuzz testing, symbolic execution and static analysis to check software for the startup’s federal customers.

Those interested in applying for the role should bring experience with C, C++, Java and Python, as well as reading and writing assembly in a common architecture like x86. It’s also expected that applications will have bachelor’s or master’s degrees in software engineering, computer science or a similar technical field, as well as over five years of work experience in software engineering, architecture or consulting.

PNC is hiring for a senior security specialist for penetration testing

PNC Financial Services, one of the biggest employers in the Pittsburgh region, is expanding its cybersecurity team — including a role for a penetration testing specialist for its Pittsburgh office, though the position is remote. The role will be responsible for performing both manual and automated security testing of company applications and infrastructure, as well as the development and maintenance of application security testing techniques.

Successful applicants for the position will have at least a bachelor’s degree, and preferably a master’s degree or Ph.D., in addition to over eight years of industry experience. Certifications in OSWE, OSCP, GWAPT, GCPN, eCPPT and more are also desirable.

P.S. If you’re a natural-born leader with the cyber experience to boot, note that PNC is also hiring for a security staff manager, focusing on platform hardening. This role is part of its Enterprise Technology & Security organization.