Director of Vulnerability Research - Intrusion Prevention

See more jobs from SonicWALL, Inc.

about 2 years old

This job is no longer active

SonicWall delivers Boundless Cybersecurity for the hyper-distributed era in a work reality where everyone is remote, mobile, and unsecure. SonicWall safeguards organizations mobilizing for their new business normal with seamless protection that stops the most evasive cyberattacks across boundless exposure points and increasingly remote, mobile, and cloud-enabled workforces. By knowing the unknown, providing real-time visibility and enabling breakthrough economics, SonicWall closes the cybersecurity business gap for enterprises, governments and SMBs worldwide. For more information, visit https://www.sonicwall.com/ or follow us on Twitter, LinkedIn, Facebook, and Instagram.


Ready to do your part in the cyber arms race? SonicWall offers fun, high-energy work environments at the leading edge of technology, networking, and cybersecurity. Whether you’re in sales, marketing, engineering, product management, technical support, or finance, you’ll have real opportunities to help protect more than 500,000 organizations across the globe. If you’re ready for a career that can impact change — and not just another job — join one of committed and enthusiastic SonicWall teams in offices around the world.

Director of Threat Research – Intrusion Prevention

Requirements:

  • Bachelor’s degree, or foreign equivalent, or MS in Computer Science or related field.
  • 10 or more years of post-baccalaureate experience in hands-on threat research roles.
  • 5 or more years in leadership threat research roles.
  • Understanding of application layer protocols, such as HTTP, FTP, SMTP, POP3, IMAP, SSL etc.
  • Ability to analyze network traffic via packet captures.
  • Professional experience should include the following: Vulnerability research, Reverse engineering, Signature development, Virtual environment setup, IDA Pro, WireShark.
  • Knowledge of programming languages such as C, C++, Python is a plus as well as x86 ASM.
  • While the candidate will have people reporting to him, the candidate is expected to have a strong hands-on background and be able to contribute on hands-on projects related to PoC development, infrastructure development, threat analysis, etc.

Responsibilities:

  • Lead a team of threat researchers.
  • Perform reverse-engineering for software used in local, networked or Internet-related systems.
  • Develop Intrusion Prevention signatures based on threat analysis using signature description language.
  • Develop Application identification signatures based on network traffic analysis and understanding of application layer protocols.
  • Troubleshoot and test (including automation) IPS and Gateway AV engines on firmware.
  • Research new ways to improve Deep Packet Inspection engine and work together with software engineering teams to define the next capabilities and enhancements of the DPI engine to combat the next generation of threats.
  • Set up analysis environment for specific threats affecting Windows, Mac OSX, and Mobile OS platforms in a lab environment.
  • Reverse engineer and analyze new vulnerabilities and threats.
  • Develop tools to automate IPS and malware analysis tasks, simulation software and administer lab environment to replicate attacks.
  • Build new proof of concept technology to detect and prevent exploits targeting zero-day vulnerabilities.

 

#LI-KB7

#LI-Remote

#Vulnerability research

SonicWall is an equal opportunity employer.  

We are committed to creating a diverse environment and are an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.

At SonicWall, we pride ourselves on recruiting a diverse mix of talented people and providing active security solutions in 100+ countries.