Staff Security Researcher (Advanced Threat Prevention)

About The Position

Requirements

• Team player with good communication skills and the ability to work with cross-functional groups.
• Basic understanding of exploit techniques, such as buffer overflows, use-after-free, format string, XSS, SQL injection, CSRF, MITM, and DoS.
• Familiarity with core network protocols such as HTTP, UDP, FTP, SMTP, DNS, and SMB.
• Exposure to network traffic analysis tools like tcpdump or Wireshark.
• Familiar with Windows/Linux development environment
• Programming experience with scripting languages (e.g., Bash, Python, Perl); familiarity with penetration testing tools (Metasploit, Burp Suite, Nmap) or debugging tools (WinDbg, OllyDbg, GDB) is a plus.
• BS/MS in Computer Science, Computer Engineering, or related field, or equivalent professional/military experience.

Nice To Haves

• Experience with AI/ML is a plus, especially in security contexts.
• Experience with Capture the Flag (CTF) is a plus.
• Contributions to security blogs or talks at conferences (e.g., Black Hat, DEF CON) are highly valued but not required.

Responsibilities

• Research the root causes of publicly disclosed vulnerabilities and develop effective detection methods, including IPS signatures and ML-based detection.
• Analyze and respond to Zero-Day vulnerabilities, delivering IPS protections to customers within 24 hours.
• Reverse engineer software to uncover previously unknown vulnerabilities.
• Design and implement detection methodologies for emerging attack vectors.
• Build innovative projects on Linux and Windows systems to advance next-generation security technologies.