Security Research Engineer | Vulnerability Analysis - 1371805

August 15, 2022 - Remote

Location: This position can be fully Remote in the United States.

The Talos Detection Response Team creates network and endpoint signatures that are distributed world-wide to multiple products in Cisco’s security portfolio and the open-source community.

In this position you will create detection content for vulnerabilities in a variety of Cisco and non-Cisco products. Understanding these vulnerabilities may come from reading technical reports, reading code diffs, or generating network traffic from proofs-of-concepts. Once released, these protections directly impact the security of people and organizations around the globe. With time and experience, in the future you may analyze new 0-day attacks, debug userland malware samples, and automate common tasks through scripting.

If you’re a tenacious learner, have an excruciating interest in detail, and want to begin or grow a career in information security this may be the right role for you.

Role & Responsibilities:

  • Create detection content for Snort, ClamAV, AMP, and other Cisco products
  • Capture network traces for testing IPS and IDS security effectiveness
  • Write technical advisories about detection content
  • Analyze security threats, attacker techniques and tools
  • Interact with malware samples in a sandbox environment

Minimum Qualifications:

  • Experience with vulnerability analysis
  • Experience with common methods of exploitation, such as cross-site scripting, SQL injection, buffer overflows etc.
  • Experience with the structure of common file formats, such as PDF, MS Office, EXE
  • Experience working in both Windows and Linux
  • Experience with network traffic analysis using tools such as Wireshark
  • Solid knowledge of networking, transport, and application layer protocols, such as IP, TCP, UDP, and HTTP
  • Experience with a programming or scripting language (i.e. Python, Go, Ruby, Perl, Rust)
  • Experience with reverse engineering and debugging tools (i.e. OllyDbg, IDA Pro, radare2, x64dbg, WinDbg, Binary Ninja)
  • Good analytical and problem-solving skills
  • Good organization, decision making, and verbal and written communication skills
  • Ability to work independently with minimum supervision and take on additional tasks as required
  • Ability to work with small teams to solve complex problems
  • Solid technical writing skills

Preferred Qualifications:

  • Bachelor’s degree in Computer Science, Cyber Security, or other tech-related degree
  • Two years of experience in the information security field
  • Experience with intrusion detection event analysis
  • Experience with Snort rules language
  • Experience with capture-the-flag competitions

Why Cisco?

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays and learns, but our edge comes from our people. Our People Are The Heart of Cisco.

We connect everything – people, process, data and things – and we use those connections to change our world for the better. We innovate everywhere - From launching a new era of networking that adapts, learns and protects, to building Cisco Services that accelerate businesses and business results. Our technology powers entertainment, retail, healthcare, education and more – from Smart Cities to your everyday devices.

We benefit everyone - We do all of this while striving for a culture that empowers every person to be the difference, at work and in our communities.

Colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Be you, with us! #WeAreCisco

Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco.

Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview. Benefits and Perks - Cisco.

Join us! #WeAreCisco

Cisco Covid-19 Vaccination Requirements

The health and safety of Cisco’s employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco may require new hires to be fully vaccinated against COVID-19 if the role requires business-related travel, meeting with customers/partners (including visiting third-party sites on behalf of Cisco), attending trade events, and Cisco office entry, unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.

Clicking APPLY will direct you away from