Threat Researcher- Source Review Experience is a must
Remote, Türkiye
SonicWall
Defend SMBs, enterprises and governments from advanced cyber attacks with SonicWall's award-winning firewalls and cyber security solutions.SonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company, ensuring our partners and their customers are never alone in the fight against cybercrime. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall provides relentless security against the most evasive cyberattacks across endless exposure points for increasingly remote, mobile and cloud-enabled users. With its own threat research center, SonicWall can quickly and economically provide purpose-built security solutions to enable any organization—enterprise, government agencies and SMBs—around the world. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.
Job Description:
- Perform research, analysis, and testing of network, application, physical and procedural vulnerabilities via vulnerability assessment, penetration test and/or social engineering.
- Perform vulnerability scanning of SonicWall products, servers, and appliances in the backend network.
- Perform internal vulnerability assessments and penetration tests prior to external audits.
- Clearly outline and portray test findings via well documented report.
- Acquire a comprehensive technical understanding of all products in the SonicWALL product line and the underlying hardware/software technologies within the solution stack to enable technical leadership through the analysis stage to resolution of issues.
- Work with other team members to respond to any alerts and/or threats identified by the security tools and processes.
- Identify, research, and assist in the implementation of any security tools and/or processes to improve the overall security posture.
- Maintain up-to-date detailed knowledge of the IT security threats and plan, prioritize, and implement, mitigation controls as necessary.
- Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution.
- Work as part of a team liaising with external security researchers.
- Participate in investigations into problematic activity.
- Provide on-call support if necessary for all in-place security solutions
- Required Qualifications:
- College diploma or university degree in the field of computers or engineering and/or 6 years equivalent work experience
- Demonstrable experience in advanced Web application penetration Testing.
- Extensive knowledge of tools such as Kali, Nmap, Nessus, Metasploit, Acunetix, etc..
- 2+ years’ experience of Professional Web-Application Development or Source Code Review (C/C++, C#, ASP, PHP, or Java)
- Knowledge of web architecture and protocols (HTTP(S), TCP/IP, ARP, SMTP, DNS, etc.)
- Must understand how data flows through an application and connected components (SMTP, LDAP, Database servers) and common software security issues and remediation techniques
- Proven analytical skills and technical competence.
- Highly self-motivated and directed.
#LI-KB7
#LI-Turkey
SonicWall is an equal opportunity employer.
We are committed to creating a diverse environment and are an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
At SonicWall, we pride ourselves on recruiting a diverse mix of talented people and providing active security solutions in 100+ countries.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits C Cloud Cyber crime DNS Java Kali LDAP Metasploit Nessus Nmap Pentesting PHP Privacy SMTP TCP/IP Threat Research Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.