TLDR

Develop vulnerability signatures for industrial control systems to detect vulnerabilities and exploits.

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

As a Lead Engineer, Security Signatures you will be part of a motivated engineering team that is responsible for the research, development, and delivery of vulnerability signatures. This opening is your opportunity to work on a unique security solution in the rapidly expanding fields of vulnerability management and cyber security is a company with excellent customer ratings and outstanding growth rates. 

  

Responsibilities 

  • Research and create signatures for the Qualys product to detect vulnerabilities in Industrial Control Systems. 

  • Research new and emerging technologies to identify vulnerabilities and exploits. 

  • Research Zero-day and actively attack vulnerabilities to create signatures to identify vulnerable assets. 

  • Build automation for day-to-day tasks. 

 

Qualifications 

  • BS in computer science with 5+3 years of experience in Information Security domain or MS in computer science or cyber security. 

  • In-depth knowledge of TCP/IP, HTTP, DNS, FTP, SSH, TLS/SSL, and SMTP protocols. 

  • Experience and strong knowledge of vulnerability management and penetration testing.

  • Knowledge and hands on experience with several types of security vulnerabilities and attacks. 

  • Experience with scripting languages, including Python and Bash. 

  • Experience with network analysis tools, analysis of packet captures. 

  • Proficient with regular expressions. 

  • System administrator experience on Windows or Unix platforms. 

  • Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS). 

  • Excellent written and verbal communication skills. 

 

Additional Plus Competencies 

  • Understanding of Lua (preferred), or Java. 

  • Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc.). 

  • Knowledge of Cloud Platforms (AWS, Azure, Oracle, etc.). 

  • Knowledge of container technologies such as Docker and Kubernetes. 

  • Able to handle projects independently. 

  • Experienced in the use of vulnerability scanners, IDS, and security tools. 

  • Experience in developing security-related tools/programs. 

  • OSCP and similar certifications. 

Qualys builds advanced cloud-based IT security and compliance solutions, including the Enterprise TruRisk Management platform that empowers organizations to accurately measure and manage cyber risk. Serving businesses focused on securing their digital environments, Qualys distinguishes itself with its innovative AI-Native Risk Operations Center, enhancing overall cybersecurity operations.

View company profile
Apply for this job

Pro members saw this job first

New jobs unlock for everyone after 24 hours. Startup Jobs Pro shows them right away, with instant alerts and salary filters. From $7/month.

Get Pro