Sr. Security Signature Engineer - Austin, TX
In this position, the engineer is primarily responsible for analyzing security vulnerabilities and writing attack filters. The engineer will also assist with penetration testing of the product line, and with the design and development of advanced security features. This is a senior level technical position with a highly competitive compensation package. Position Requirements · Fundamental knowledge of the security industry. Must be familiar with security technologies in general, and how to deploy and manage firewalls and intrusion detection systems in particular. Real world experience working as an IDS analyst and/or enterprise security administrator is a plus. Real world experience designing IDS signatures is a plus. Experience working as a developer on a shipping product is a plus. · In-depth knowledge of TCP/IP networking. Must be able to demonstrate technical understanding of all layers of the protocol stack, including mastery of IP and TCP and familiarity with major application- layer protocols such as SMB, HTTP, SMTP, and DNS. Must be able to read and understand a packet trace. · In-depth understanding of a variety of network attacks. Examples are buffer overflows, reconnaissance scanning, denial of service attacks and evasive methods attackers use to avoid detection. Must be able to demonstrate a minimum level of familiarity with well-known vulnerabilities and exploits. · Comfortable researching vulnerabilities by reading source code written in a variety of languages including C, perl and python. Assembly language skills a plus. Capable of building a network test environment and performing black box analysis to learn the behavior of a vulnerability. VMware experience is a plus. Custom (self-written tools) penetration testing experience is a plus. · Solid programming skills in at least one language. Must be able to program productively at a practical level of sophistication in at least one language of the candidate's choosing. Must be able to build solid, well-documented development and testing tools. · Preference will be given to candidates with Master's degrees and higher in relevant technical fields. However, there is no hard minimum education requirement, and all applicants are invited to submit a written technical analysis of any remote security vulnerability in order to showcase their abilities and distinguish themselves from other candidates. SANS GIAC certification is a plus. -------------------- Rob Needham -------------------- NHRG, Inc 2009 RR 620 N, Suite 113 Austin, TX 78734 (512) 328-4448 (office) (888) 373-4810 (toll-free) (512) 328-1696 (fax) [EMAIL PROTECTED]
