Senior Cyber Security Signature Analyst and Developer

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

As a Security Signature Engineer, you will be part of a motivated engineering team that is responsible for the research, development, and maintenance of high-quality asset management signatures for our security platform. You will work closely with security analysts and engineers to identify and address security vulnerabilities in various asset types.

Responsibilities

• Develop and maintain comprehensive and accurate asset management signatures for various asset types, such as databases, applications, operating systems, TCP/IP protocols, and network devices.
• Translate vulnerability information into actionable asset management signatures for integration with our security platform.
• Continuously improve the quality and accuracy of asset management signatures through testing and validation.
• Build automation for day-to-day tasks.
• Collaborate with security analysts and engineers to understand security requirements and translate them into technical specifications for signatures.
• Document asset management signatures clearly and concisely for internal use and knowledge sharing.
• Participate in code reviews and contribute to the improvement of the overall signature development process.
• May assist with the creation and maintenance of internal tools and scripts to automate signature development tasks.

Qualifications

• 3+ years of industry experience in network and system security.
• In-depth knowledge of TCP/IP, HTTP, FTP, SSH, SSL, and SMTP protocols.
• Experience with scripting languages, including Python and Bash.
• Experience with network analysis tools and the analysis of packet captures.
• Proficient with regular expressions.
• Knowledge of databases, and database administration.
• System administrator experience on Windows or Unix platforms.
• Strong understanding of VPN, firewalls, and intrusion detection systems (IDS).
• Excellent written and verbal communication skills.

Additional Plus Competencies

• Understanding Lua (preferred) or Python.
• Knowledge of virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc.).
• Knowledge of cloud platforms (AWS, Azure, Oracle, etc.).
• Knowledge of container technologies such as Docker and Kubernetes.
• Able to handle projects independently.
• Experienced in the use of vulnerability scanners, IDS, and security tools.
• Experience in developing security-related tools and programs.