Security Engineer

Responsibilities

• Develop and maintain comprehensive and accurate asset management signatures for various asset types, such as databases, applications, operating systems, TCP/IP protocols, and network devices.
• Translate vulnerability information into actionable asset management signatures for integration with our security platform.
• Continuously improve the quality and accuracy of asset management signatures through testing and validation.
• Build automation for day-to-day tasks.
• Collaborate with security analysts and engineers to understand security requirements and translate them into technical specifications for signatures.
• Document asset management signatures clearly and concisely for internal use and knowledge sharing.
• Participate in code reviews and contribute to the improvement of the overall signature development process.
• May assist with the creation and maintenance of internal tools and scripts to automate signature development tasks.

• 2+ years of industry experience in network and system management.
• In-depth knowledge of TCP/IP, HTTP, FTP, SSH, SSL, and SMTP protocols.
• Experience with any programming language.
• Experience with network analysis tools and the analysis of packet captures.
• Proficient with regular expressions.
• Knowledge of databases and database administration.
• System administrator experience on Windows or Unix platforms.
• Strong understanding of VPN, firewalls, and intrusion detection systems (IDS).
• Excellent written and verbal communication skills.

• Understanding Lua (preferred) or Python.
• Knowledge of virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc.).
• Knowledge of cloud platforms (AWS, Azure, Oracle, etc.).
• Knowledge of container technologies such as Docker and Kubernetes.
• Able to handle projects independently.
• Experienced in the use of vulnerability scanners, IDS, and security tools.
• Experience in developing security-related tools and programs.