Full-Time Sr Distinguished Engineer Research, Vulnerability Assessment

Your CareerWe're looking for an experienced Cybersecurity Research Lead for our Cortex Xpanse Vulnerability and Exposure Management product. This role is ideal for engineers who thrive on solving complex security challenges and are dedicated to advancing the field through innovative research and development. We need a leader who can take initiative, drive projects to completion, and inspire a team to push the boundaries of vulnerability management.

Your Impact

• Lead research for the Cortex Xpanse Vulnerability and Exposure management product
• Develop and enhance a cutting-edge Vulnerability Assessment (VA) content creation system
• Provide guidance and mentorship to junior security analysts and researchers, assisting in their professional development and training
• Participate in rapid response to emerging threats to ensure we are able to deploy content quickly and meet customer security needs
• Work closely with research and engineering teams to understand their concerns, utilize their skills, and enable their testing needs
• Take part in architecture strategy sessions - design solutions that accommodate the requirements of the various teams and groups
• Take ownership of projects, drive them to completion, and support them in production
• Collaborate closely with other Cortex research organizations

Your Experience

• 12+ years of experience in cybersecurity research field
• Deep understanding of Windows, Linux, macOS and Unix-based systems
• Knowledge of LLMs
• Strong understanding of lab setup options and existing frameworks, and ability to set up lab infrastructure – including the pros and cons of various infrastructure options
• Experience with scanning and vulnerability testing fundamentals (open source scanners, TCP/IP and networking protocols, pen testing tools)
• Experience using cloud managed services (ideally in GCP)
• Strong understanding of TCP/IP and networking protocols (eg. HTTP, FTP, SSH, SNMP)
• Proficient in one or more programming languages
• Proven experience in guiding and educating team members to enhance their skills and knowledge
• Nice to have
• Significant experience with common open source security software such as Nuclei, OpenVAS, and Nmap
• Deep knowledge of current penetration and security assessment tools such as Metasploit, Nmap, Burp Suite, Wireshark, etc.
• Knowledge of network architectures - understands subnetting and routing and how VLANs work and affect network scanning
• malware analysis, reverse engineering, vulnerability research, hacking

What is the last date for applying to the job?

Which countries are accepted for this remote job?