Flag: Tornado! Hurricane!

 Forums >>  Job Openings  >>  Career: Rapid7 Info Sec Engineer

Topic created on: April 8, 2009 12:26 CDT by aeppert .

Job Title: Info Sec Engineer
Position based in: El Segundo, CA


Rapid7 provides network security software and related research. We develop NeXpose, a unified vulnerability management solution that is primarily sold to large companies and government agencies as a standalone Linux/Windows application or as a pre-configured appliance.

The Vulnerability R&D Team is responsible for the core feature of NeXpose: its ability to scan hosts and networks to remotely detect all kinds of security vulnerabilities, e.g.: remote arbitrary code execution, weak SSH password, unapplied security update, world-readable /etc/shadow, authentication bypass, infection by well-known backdoor, predictable TCP ISN, insecure configuration of a network server, XSS on a web page, obsolete operating system version, SQL injection, directory traversal in an FTP server, JSP source code disclosure, memory exhaustion denial of service in an RPC service, unused built-in account not disabled, privilege escalation, etc.

Rapid7 is looking for a Software Engineer to become part of this Vulnerability R&D Team. Requirements:

o Minimum 2+ years of professional software development experience, preferably in an IT security field.
o Demonstrated interests in the computer and network security field, low-level and internals aspects of technologies, and vulnerability research and exploitation.
o Excellent coding skills in Java, C, or C++.
o Perl, Python, shell scripting, Jess (Java expert system shell) a plus.
o Good foundation in networking, have developed networking code, knowledge of the design of at least some common network protocols (IP, TCP, UDP, ICMP, HTTP, FTP, etc).
o Experience in a Unix/Linux environment.
o Ability to understand technical subjects and technologies you might not be familiar with.
o Experience in working in a team of 5-10 developers on a medium-to-large-scale project (100k-1M lines of code) project a plus.
o Skills in resource organization, project/task prioritization and schedule development.

Please contact Marc Bevand <marc_bevand at rapid7.com>

No posts found under this topic.

There are 31,103 total registered users.


Recently Created Topics
How to view IDA Pro'...
Nov/02
reverse MC9S12DG128
Oct/07
Looking for an advan...
Mar/21
Ultimate Hacking Cha...
Jun/21
CreateMutex
May/31
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15


Recent Forum Posts
Looking for an advan...
tthtlc
Looking for an advan...
tthtlc
Looking for an advan...
clightning
Identify RVA data in...
sohlow
let 'IDAPython' impo...
sohlow
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo


Recent Blog Entries
nieo
Mar/22
Android Application Reversing

halsten
Mar/14
Breaking IonCUBE VM

oleavr
Oct/24
Anatomy of a code tracer

hasherezade
Sep/24
IAT Patcher - new tool for ...

oleavr
Aug/27
CryptoShark: code tracer ba...

More ...


Recent Blog Comments
nieo on:
Mar/22
IAT Patcher - new tool for ...

djnemo on:
Nov/17
Kernel debugger vs user mod...

acel on:
Nov/14
Kernel debugger vs user mod...

pedram on:
Dec/21
frida.github.io: scriptable...

capadleman on:
Jun/19
Using NtCreateThreadEx for ...

More ...


Imagery
SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit