Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!
As a Lead Engineer, Security Signatures you will be part of a motivated engineering team that is responsible for the research, development, and delivery of vulnerability signatures. This opening is your opportunity to work on a unique security solution in the rapidly expanding fields of vulnerability management and cyber security is a company with excellent customer ratings and outstanding growth rates.
Responsibilities
- Research and create signatures for the Qualys product to detect vulnerabilities in Industrial Control Systems.
- Research new and emerging technologies to identify vulnerabilities and exploits.
- Research Zero-day and actively attack vulnerabilities to create signatures to identify vulnerable assets.
- Build automation for day-to-day tasks.
Qualifications
- BS in computer science with 5+3 years of experience in Information Security domain or MS in computer science or cyber security.
- In-depth knowledge of TCP/IP, HTTP, DNS, FTP, SSH, TLS/SSL, and SMTP protocols.
- Experience and strong knowledge of vulnerability management and penetration testing.
- Knowledge and hands on experience with several types of security vulnerabilities and attacks.
- Experience with scripting languages, including Python and Bash.
- Experience with network analysis tools, analysis of packet captures.
- Proficient with regular expressions.
- System administrator experience on Windows or Unix platforms.
- Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS).
- Excellent written and verbal communication skills.
Additional Plus Competencies
- Understanding of Lua (preferred), or Java.
- Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc.).
- Knowledge of Cloud Platforms (AWS, Azure, Oracle, etc.).
- Knowledge of container technologies such as Docker and Kubernetes.
- Able to handle projects independently.
- Experienced in the use of vulnerability scanners, IDS, and security tools.
- Experience in developing security-related tools/programs.
- OSCP and similar certifications.
