The Latest in IT Security

Senior IPS Researcher

18
Nov
2011

Senior IPS Researcher

Posted: 18 November 2011
Company name: Sophos Inc
Location: Vancouver
Canada
Travel: occasionally
Poster represents: employer
Terms of employment: Salaried employee
Hours: full time
Onsite: yes

Description:
We’re looking for an energetic and experienced Senior IPS Researcher to join SophosLabs – the team of computer threat researchers and system developers located in Vancouver, BC. You’ll be responsible to ensure that Sophos UTM customers are protected from network threats and attacks by developing, testing and publishing of NIPS engine and signature updates. The ideal candidate will have a strong technical background in vulnerability research, network security and development of IPS signatures.

Main duties:

Evaluate the impact of security advisories and publications

Reverse engineer applications and networking traffic to analyze and triage vulnerability reports

Create NIPS signatures to detect and block network attacks

Troubleshoot and test NIPS signatures and engine on firmware

Analysis of exploits and attack tools

Extend and integrate our current NIPS engine

Specifying or developing in-house tools and systems for workflow automation

Develop the skills of more junior researchers


Required skills:
5+ years of experience in the intrusion detection / prevention industry

Strong experience writing SNORT signatures

Experience with traffic analysis tools

Reverse engineering using IDA or other disassembly tools

Strong experience with Unix and/or Windows OS internals

C/C++ experience developing or extending systems and tools related to security audits, penetration testing or vulnerability scanning

Thorough understanding of network-related protocols (TCP/IP, IPsec, 802.1x, HTTP, FTP, SMB, etc.)

Experience with network intrusion detection evasion techniques

Understanding of different exploit techniques

Knowledge of browser and OS memory protection bypass techniques

Thorough understanding of shellcode and encoding techniques

Desired skills:
Performing binary analysis for vulnerabilities

Forensic analysis experience

Automation and virtualization

Team management experience

Familiarity with Astaro UTM

Computer Science Degree

URL for more information:
http://www.sophos.com/companyinfo/careers/ca/996648163751.html

Leave a reply


Categories

FRIDAY, MARCH 29, 2024
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments