Feb10

Security Researcher (WEB)

Posted on by
Standard

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Position Summary:

Being a member of a highly experienced security research team, while specializing in web attack analysis, threat intelligence and honeynet projects. The team is responsible of vulnerability and malware research, evolving threats analysis, attack signatures development and product hacking.

Responsibilities:
* Analysis of web attack logs to discover new campaigns in the wild
* Web vulnerabilities/exploits analysis and their reproduction
* Analysis of malware (ELF) and malicious scripts (PHP, bash, perl, python, JavaScript)
* Attack signatures development and daily update of the WAF product based on the gathered research
* Mining websec related intelligence from blogs, forums, conferences and academy papers
* Publishing blogs and reports
* Developing attack analysis tools, dashboards and research infrastructure.

Qualifications:
* 5 years of related experience with a Bachelors degree; 3 years with a Masters degree; or a PhD without experience.
* At least 2 years expertise in web exploitation or real web attacks analysis.
* Strong understanding of internals of HTTP protocol, web servers and web applications is a must.
* Proven experience in monitoring web vulnerabilities as they come out
* Strong understanding and background in general networking and protocols.
* Experience in developing research infrastructure and tools in Python.
* Low-level understanding of security principles, theories and attacks.
* Advantage: Hands-on experience in attack signatures crafting (e.g. SNORT)
* Advantage: Experience in binary malware and malicious scripts analysis
* Advantage: Experience in web development (front/back end)

#li-rl1

The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.

Equal Employment Opportunity

It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. Reasonable accommodation is available for qualified individuals with disabilities, upon request.

Comments are closed.