Cisco logo
Cisco

We securely connect everything to make anything possible.

Security Research Engineering Lead

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 10,001+Since 1984H1B SponsorCompany SiteLinkedIn

Location

Switzerland

Posted

49 days ago

Salary

0

Seniority

Senior

Bachelor DegreeEnglishAssemblyCyber SecurityLinuxPython

Job Description

Security Research Engineering Lead

Cisco

• Conduct security research, including the development of tools for vulnerability analysis and mitigation. • Develop static and run-time analysis tools to identify root causes and input conditions related to vulnerabilities. • Develop tools and environments as necessary to automate processes, analyze results, and test complex scenarios. • Perform vulnerability triage and proof-of-concept exploit development to support the creation of detection content. • Write detailed technical reports, summaries, and testing methodologies. • Research emerging technologies, protocols, and testing methodologies. • Develop proof-of-concept exploits for testing vulnerability mitigations. • Perform patch analysis to find and trigger vulnerabilities. • Reverse engineer binary applications, protocols, and formats. • Analyze vulnerabilities and emerging security threats and technologies. • Provide critical security-focused expertise to engineering organizations.

Job Requirements

  • demonstrated ability in vulnerability research or a closely related area such as exploit or mitigation development on Linux Systems.
  • significant experience with C/C++, and a scripting language (e.g., Python), and assembly (e.g., x86/x64, ARM, etc.).
  • Bachelor’s degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or other tech-related degree.
  • Expert knowledge of Linux internals, including application memory layout, common OS APIs, and system call operations, limitations, and side effects.
  • Mastery of reverse engineering and experience with related tools such as IDA Pro, Binary Ninja, Ghidra, etc., including plugin development.
  • Experience in the discovery of Linux vulnerabilities and creating corresponding exploits.
  • Strong understanding of advanced networking concepts, protocols, and common enterprise networking scenarios.
  • Experience with common vulnerabilities and methods of exploitation, such as memory corruption, web application exploitation, file format vulnerabilities, and protocol-based weaknesses.
  • Ability to work independently with minimum supervision and to tackle additional tasks as the need arises.
  • Great communication skills.

Benefits

  • Health insurance
  • 401(k) matching
  • Flexible working hours
  • Paid time off
  • Remote work options

Related Categories

Related Job Pages

More Security Engineer Jobs

CBRE logo

Health, Safety and Environment Supervisor

CBRE

Based in Los Angeles, California, CBRE is a publicly-traded real estate business offering integrated services to customers in more than 60 countries across the

HSE Supervisor Job ID 274714 Service line GWS Segment Role type Full-time Areas of Interest Building Management, Engineering/Maintenance, Facilities Management, Health and Safety/Environment Location(s) Remote - US - Remote - US - United States of America Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future. HSE Supervisor Location: Remote and preferred location within Kansas City, Missouri About the Role: As a CBRE Health, Safety and Environment Supervisor, you will supervise a team responsible for creating and implementing health, safety, and environmental programs for clients. This job is part of the Environment Health and Safety function. They are responsible for organizational programs and procedures to safeguard employees and surrounding communities. What You’ll Do: - Assist in managing HSE programs and initiatives to meet regulatory requirements and client needs. - Evaluate new and existing programs to assess suitability and the need for changes. - Support the process for monitoring injury, illness, and incident-related performance. - Act as a resource to staff and internal customers as subject matter expert. - Oversee plans, playbooks, and procedures making sure playbooks are current, complete, and effectively implemented. - Identify opportunities to reduce costs while enhancing the quality of services. Respond to customer member concerns regarding HSE matters. - Establish work schedules and delegate tasks to staff members. - Resolve complex problems and identify appropriate approaches to existing solutions to accomplish team objectives. - May establish new techniques to ensure the team is able to meet its objectives. - It has a direct impact on team objectives as well as the objectives of related teams. - Ensure personal and team outcomes have a positive impact on customer objectives. - Lead by example and model behaviors that are consistent with CBRE RISE values. Guide team through the application of basic knowledge of practices and procedures. Work to build consensus. What You’ll Need: - High School Diploma or GED with 5+ years of job-related experience. - Prior shift manager or supervisory experience preferred. - In-depth understanding of a range of processes, procedures, systems, and concepts within own function and basic knowledge of related job functions required. - Requires the ability to explain complex concepts or sensitive information. - Expert knowledge of Microsoft Office products. Examples include Word, Excel, Outlook, etc. - Excellent organizational skills with a master-level inquisitive mindset. CBRE carefully considers multiple factors to determine compensation, including a candidate’s education, training, and experience. The minimum salary for this position is $85,000 annually and the maximum salary for this position is $95,000 annually. The compensation that is offered to a successful candidate will depend on the candidate’s skills, qualifications, and experience. Successful candidates may also be eligible for a discretionary bonus based on CBRE’s applicable benefit program

Missouri
$85K - $95K / year
Arcadis logo

Pursuit Leader, Defense & Security Sector

Arcadis

Arcadis jest wiodącą na świecie firmą dostarczającą zrównoważone rozwiązania w zakresie projektowania, inżynierii oraz konsultingu dla zasobów naturalnych i obiektów budowlanych. Jesteśmy zespołem ponad 34 000 osób w ponad 30 krajach, których wspólnym celem jest poprawa jakości życia. Każdy z nas odgrywa ważną rolę w rozwiązywaniu najbardziej złożonych wyzwań świata.

Full TimeRemoteTeam 10,001+Since 1888H1B Sponsor

• Engage with client and subcontractor representatives, including both government and contractor clients, to co-create opportunities and understand specific needs to drive successful win strategies. • Plan, coordinate and manage pursuit activities within the sector to completion including, develop winning proposals, short list interviews and pursuit close out activities • Identify pursuit team and identify necessary resources ensuring we have the best team • Facilitate the development and completion of proposals through the gathering of technical, commercial, financial information from a wide range of sources, and business areas, in a structured manner • Author, review and edit technical elements of proposals, developing content that is tailored to the client's requirements and aligned to identified win strategy (e.g., key messages and win themes) • Develop messaging and materials for interviews and presentations • Develop and effectively manage commercial strategies for the pursuit • Recognize commercial strategies (margin, profitability) and ability to coordinate with finance and legal • Facilitate workshops and submission reviews • Identify continuous improvement of pursuit processes, systems and tools to contribute to improved efficiencies • Conduct post selection debriefs with client and pursuit team to drive lessons learned/ best practice sharing

District Of Columbia + 1 moreAll locations: District Of Columbia | Washington
$100K - $150K / year
Job Closed
Digistore24 USA logo

IT Security Engineer – Cloud

Digistore24 USA

A full-service vendor & affiliate platform with one of the world’s largest affiliate marketplaces. #MoreSalesLessWork

Full TimeRemoteTeam 51-200Since 2012H1B No Sponsor

• Protect our systems and cloud environments: Continuously analyze security risks, implement modern security standards, and ensure the protection of our cloud infrastructure and critical business systems. • Establish clear security policies and processes: Develop and refine security policies, standardize security procedures, and drive their adoption across the organization. • Drive security awareness and training initiatives: Strengthen security awareness company-wide through training sessions, workshops, and proactive communication with all teams. • Ensure structured incident and risk management: Detect security incidents early, coordinate incident response, prepare analyses, and continuously improve our incident response procedures. • Ensure compliance with standards and regulations (PCI, ISO, NIS2): Support the company in meeting external compliance requirements, prepare for audits, and guide business units through compliance processes. • Monitor our core security mechanisms: Analyze security-critical components, support monitoring and audit activities, and ensure transparency for security-relevant events. • Collaborate closely with Product, IT, and Engineering teams: Assist other teams in designing secure solutions, reducing risks, simplifying security processes, and contributing to a secure, scalable overall architecture. • Ensure a secure software development lifecycle: Expand our secure development lifecycle (SSDLC), advise teams on security-related topics, and ensure security reviews are an integral part of our processes.

United States
Job Closed
SentinelOne logo

Senior Detection Engineer - Windows, Identity Security

SentinelOne

Secure your enterprise with the autonomous cybersecurity platform. Endpoint. Cloud. Identity. XDR. Now.

Full TimeRemoteTeam 1,001-5,000Since 2013H1B Sponsor

Role Description As a Senior Windows Identity Detection Engineer, you will research and detect emerging identity threats by developing behavior-based detection methods. You’ll build tools and PoCs to identify and prevent attacks such as Pass-the-Hash, Silver Ticket, and MFA bypass. Your work will directly strengthen the security of millions of Windows endpoints protected by the platform. In this role, you’ll have a unique opportunity to expand your skillset beyond just Windows security, and to not only contribute, but to significantly influence the buildout of a new side of our business - Identity security from the ground up! What will you do? - Detect the newest identity threats with end-to-end responsibility for behavior-based detection capabilities. - Research attack techniques and design new methods to detect or prevent those attacks. - Implement detection methods in the product (SW development in C++23 and scripting in Lua). - Develop and use internal research tools and PoCs to discover new ways to detect/prevent identity-based attacks. - Enhance the security of dozens of millions of Windows endpoints protected by the platform. Working setup - Flexible working hours; this is a 100% remote role on full-time permanent employment (UoP) based within Poland. - Optional membership in major coworking chains. - Consideration for candidates already eligible to work in the EU at the time of applying. - Relocation assistance available for those willing to relocate to the Czech Republic, provided they are eligible to work in the EU at the time of applying. Qualifications - 3+ years of experience in malware analysis (statically and dynamically). - 3+ years of experience with C++; knowledge of Lua or similar scripting language is an advantage. - Excellent understanding of Windows Internals (Process and Threads, Virtual Memory, etc.). - Experience with analysis tools such as IDA, WinDBG, SysInternals, etc. - Experience with identity-based attacks (Pass the Hash, Silver Ticket, MFA bypass) is a big plus. - Kernel development experience and/or understanding of existing AVs internals is an advantage. Benefits - Equity & Rewards: Restricted Stock Units (RSUs), Employee Stock Purchase Plan (ESPP). - Time Off & Wellbeing: Competitive leave benefits, gender-neutral parental leave. - Insurance & Financial Security: Medical and insurance benefits, pension scheme, Employee Assistance Program (EAP). - Work Perks & Flexibility: Global home office allowance, mobile phone allowance. - Wellness & Lifestyle: Wellness benefit.

Poland
Job Closed