Senior IPS Researcher

Nov

2011

Senior IPS Researcher

Posted: 18 November 2011

Company name: Sophos Inc

Location: Vancouver

Canada

Travel: occasionally

Poster represents: employer

Terms of employment: Salaried employee

Hours: full time

Onsite: yes

Description:
We’re looking for an energetic and experienced Senior IPS Researcher to join SophosLabs – the team of computer threat researchers and system developers located in Vancouver, BC. You’ll be responsible to ensure that Sophos UTM customers are protected from network threats and attacks by developing, testing and publishing of NIPS engine and signature updates. The ideal candidate will have a strong technical background in vulnerability research, network security and development of IPS signatures.

Main duties:

Evaluate the impact of security advisories and publications

Reverse engineer applications and networking traffic to analyze and triage vulnerability reports

Create NIPS signatures to detect and block network attacks

Troubleshoot and test NIPS signatures and engine on firmware

Analysis of exploits and attack tools

Extend and integrate our current NIPS engine

Specifying or developing in-house tools and systems for workflow automation

Develop the skills of more junior researchers

Required skills:
5+ years of experience in the intrusion detection / prevention industry

Strong experience writing SNORT signatures

Experience with traffic analysis tools

Reverse engineering using IDA or other disassembly tools

Strong experience with Unix and/or Windows OS internals

C/C++ experience developing or extending systems and tools related to security audits, penetration testing or vulnerability scanning

Thorough understanding of network-related protocols (TCP/IP, IPsec, 802.1x, HTTP, FTP, SMB, etc.)

Experience with network intrusion detection evasion techniques

Understanding of different exploit techniques

Knowledge of browser and OS memory protection bypass techniques

Thorough understanding of shellcode and encoding techniques

Desired skills:
Performing binary analysis for vulnerabilities

Forensic analysis experience

Automation and virtualization

Team management experience

Familiarity with Astaro UTM

Computer Science Degree

URL for more information:
http://www.sophos.com/companyinfo/careers/ca/996648163751.html

Written by Virus Bulletin - Jobs

0 Comments

The Latest in IT Security

Senior IPS Researcher

Senior IPS Researcher

Categories

Featured

Archives

Latest Comments

About Us

Contact Us

Posted:	18 November 2011
Company name:	Sophos Inc
Location:	Vancouver
	Canada
Travel:	occasionally
Poster represents:	employer
Terms of employment:	Salaried employee
Hours:	full time
Onsite:	yes
Description: We’re looking for an energetic and experienced Senior IPS Researcher to join SophosLabs – the team of computer threat researchers and system developers located in Vancouver, BC. You’ll be responsible to ensure that Sophos UTM customers are protected from network threats and attacks by developing, testing and publishing of NIPS engine and signature updates. The ideal candidate will have a strong technical background in vulnerability research, network security and development of IPS signatures. Main duties: Evaluate the impact of security advisories and publications Reverse engineer applications and networking traffic to analyze and triage vulnerability reports Create NIPS signatures to detect and block network attacks Troubleshoot and test NIPS signatures and engine on firmware Analysis of exploits and attack tools Extend and integrate our current NIPS engine Specifying or developing in-house tools and systems for workflow automation Develop the skills of more junior researchers
Required skills: 5+ years of experience in the intrusion detection / prevention industry Strong experience writing SNORT signatures Experience with traffic analysis tools Reverse engineering using IDA or other disassembly tools Strong experience with Unix and/or Windows OS internals C/C++ experience developing or extending systems and tools related to security audits, penetration testing or vulnerability scanning Thorough understanding of network-related protocols (TCP/IP, IPsec, 802.1x, HTTP, FTP, SMB, etc.) Experience with network intrusion detection evasion techniques Understanding of different exploit techniques Knowledge of browser and OS memory protection bypass techniques Thorough understanding of shellcode and encoding techniques
Desired skills: Performing binary analysis for vulnerabilities Forensic analysis experience Automation and virtualization Team management experience Familiarity with Astaro UTM Computer Science Degree
URL for more information: http://www.sophos.com/companyinfo/careers/ca/996648163751.html