Search 
jobs
Explore 
companies
My job alerts

Junior Firmware Engineer - Network Security & Filtering

Lacework

Lacework

San Jose, CA, USA
USD 90k-160k / year + Equity
Posted on Jan 27, 2026
Apply now

Junior Firmware Engineer – Network Security & Filtering

San Jose, California

Linksys (Fortinet)

About the Role

You will work on network security features within our OpenWrt-based firmware, including firewall rules, DNS-based content filtering, and IDS/IPS configuration.

This role is designed for junior engineers who want to learn embedded network security in a structured, mentored environment. Your initial focus will be on understanding existing security components, validating behavior through testing, and making incremental improvements—not designing security architecture independently.

Location Context

This role is based in San Jose, California, our primary firmware engineering hub, enabling close collaboration with platform and wireless teams.

Key Responsibilities

  • Configure, test, and tune existing IDS/IPS systems under senior guidance
  • Assist with DNS filtering and firewall rule improvements
  • Write test cases to validate expected security behavior
  • Analyze logs and network traffic to understand detections and outcomes
  • Contribute to security specifications and documentation with mentorship
  • Use AI tools for log analysis and research with careful validation

  • Participate in code reviews and security discussions

Required Qualifications

  • B.S. in Computer Science, Computer Engineering, Cybersecurity, or related field (0–2 years experience)
  • Proficiency in C and basic scripting (Python or shell)
  • Understanding of core networking concepts (TCP/IP, DNS, firewalls)
  • Familiarity with Linux environments
  • Analytical mindset and attention to detail

  • Interest in learning secure development practices

Deep security expertise is not expected at entry. Curiosity, careful thinking, and a willingness to learn are more important than prior security depth.

Nice-to-Have Skills

  • Exposure to IDS/IPS tools, firewalls, or content filtering
  • Coursework or projects related to network security
  • Experience analyzing network traffic

  • Participation in open-source projects

Engineering Culture

Our team follows three core development practices that you'll learn during onboarding:

Spec-First Development: Write specifications before coding. For security features, this includes threat models and security assumptions. You'll learn to document your approach with senior engineer guidance.

Test-Driven Development: Write tests alongside code. For security work, this includes creating test cases that validate detection accuracy and simulate attack scenarios.

AI-Augmented Workflow: Use AI tools responsibly. You'll have access to AI coding assistants for log analysis, research, and development—with extra scrutiny for security-critical code.

AI Usage Expectations

We provide AI coding tools (GitHub Copilot, internal assistants) to boost productivity. For security work, extra caution is required:

  • You're encouraged to use AI for analyzing logs, researching CVEs, and generating test scenarios
  • You must validate thoroughly —if AI suggests a firewall rule, test it in isolation, understand exactly what it does, and verify it doesn't create new vulnerabilities
  • Never rely solely on AI for security decisions—all security-critical changes require human review and testing
  • Never include sensitive security data, threat intelligence, or proprietary information in external AI prompts

  • Understand the implications —subtle bugs in security code can have severe consequences

We'll train you on secure AI usage practices (OWASP/NIST-aligned) during onboarding.

The US base salary range for this full-time position is $90,000-$160,000. Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time, as well as a comprehensive leave program.

Wage ranges are based on various factors, including the labour market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location.

All roles are eligible to participate in the Fortinet equity program. Bonus eligibility is reviewed at the time of hire and annually at the Company’s discretion.

Why Join Us:

We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being.

Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

Fortinet (NASDAQ: FTNT) secures the largest enterprise, service provider, and government organizations around the world. Fortinet empowers its customers with intelligent, seamless protection across the expanding attack surface and the power to take on ever-increasing performance requirements of the borderless network - today and into the future. Only the Fortinet Security Fabric architecture can deliver security without compromise to address the most critical security challenges, whether in networked, application, cloud or mobile environments. Fortinet ranks number one in the most security appliances shipped worldwide and more than 500,000 customers trust Fortinet to protect their businesses.

We are committed to providing reasonable accommodations for all qualified individuals with disabilities. If you require assistance or accommodation due to a disability, please contact us at accommodations@fortinet.com.
Fortinet is an equal opportunity employer. We value diversity in our company, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, military/veteran status or any other applicable legally protected characteristics in the location in which the candidate is applying.
You will work on network security features within our OpenWrt-based firmware, including firewall rules, DNS-based content filtering, and IDS/IPS configuration. This role is designed for junior engineers who want to learn embedded network security in a structured, mentored environment. Your initial focus will be on understanding existing security components, validating behavior through testing, and making incremental improvements—not designing security architecture independently.
Apply now
See more open positions at Lacework
Privacy policyCookie policy