Lead Security Engineer

Responsibilities

• Research and create signatures for the Qualys product to detect vulnerabilities in Industrial Control Systems.

• Research new and emerging technologies to identify vulnerabilities and exploits.

• Research Zero-day and actively attack vulnerabilities to create signatures to identify vulnerable assets.

• Build automation for day-to-day tasks.

Qualifications

• BS in computer science with 5+3 years of experience in Information Security domain or MS in computer science or cyber security.

• In-depth knowledge of TCP/IP, HTTP, DNS, FTP, SSH, TLS/SSL, and SMTP protocols.

• Experience and strong knowledge of vulnerability management and penetration testing.

• Knowledge and hands on experience with several types of security vulnerabilities and attacks.

• Experience with scripting languages, including Python and Bash.

• Experience with network analysis tools, analysis of packet captures.

• Proficient with regular expressions.

• System administrator experience on Windows or Unix platforms.

• Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS).

• Excellent written and verbal communication skills.

Additional Plus Competencies

• Understanding of Lua (preferred), or Java.

• Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc.).

• Knowledge of Cloud Platforms (AWS, Azure, Oracle, etc.).

• Knowledge of container technologies such as Docker and Kubernetes.

• Able to handle projects independently.

• Experienced in the use of vulnerability scanners, IDS, and security tools.

• Experience in developing security-related tools/programs.

• OSCP and similar certifications.