Flag: Tornado! Hurricane!

 Forums >>  Job Openings  >>  Career: Rapid7 Info Sec Engineer

Topic created on: April 8, 2009 12:26 CDT by aeppert .

Job Title: Info Sec Engineer
Position based in: El Segundo, CA


Rapid7 provides network security software and related research. We develop NeXpose, a unified vulnerability management solution that is primarily sold to large companies and government agencies as a standalone Linux/Windows application or as a pre-configured appliance.

The Vulnerability R&D Team is responsible for the core feature of NeXpose: its ability to scan hosts and networks to remotely detect all kinds of security vulnerabilities, e.g.: remote arbitrary code execution, weak SSH password, unapplied security update, world-readable /etc/shadow, authentication bypass, infection by well-known backdoor, predictable TCP ISN, insecure configuration of a network server, XSS on a web page, obsolete operating system version, SQL injection, directory traversal in an FTP server, JSP source code disclosure, memory exhaustion denial of service in an RPC service, unused built-in account not disabled, privilege escalation, etc.

Rapid7 is looking for a Software Engineer to become part of this Vulnerability R&D Team. Requirements:

o Minimum 2+ years of professional software development experience, preferably in an IT security field.
o Demonstrated interests in the computer and network security field, low-level and internals aspects of technologies, and vulnerability research and exploitation.
o Excellent coding skills in Java, C, or C++.
o Perl, Python, shell scripting, Jess (Java expert system shell) a plus.
o Good foundation in networking, have developed networking code, knowledge of the design of at least some common network protocols (IP, TCP, UDP, ICMP, HTTP, FTP, etc).
o Experience in a Unix/Linux environment.
o Ability to understand technical subjects and technologies you might not be familiar with.
o Experience in working in a team of 5-10 developers on a medium-to-large-scale project (100k-1M lines of code) project a plus.
o Skills in resource organization, project/task prioritization and schedule development.

Please contact Marc Bevand <marc_bevand at rapid7.com>

No posts found under this topic.

There are 31,054 total registered users.


Recently Created Topics
Ultimate Hacking Cha...
Jun/21
CreateMutex
May/31
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15
How to get data depe...
Jul/07
Identify RVA data in...
May/06
Immunity Debugger Re...
Aug/03


Recent Forum Posts
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo
OOP_RE tool available?
Bl4ckm4n
OOP_RE tool available?
van7hu
Should binaries be n...
Kolisar
Problem with ollydbg
nullx42
!findtrampoline Immu...
skycrack


Recent Blog Entries
crystalwade
Jul/20
test

nieo
Mar/22
Android Application Reversing

halsten
Mar/14
Breaking IonCUBE VM

oleavr
Oct/24
Anatomy of a code tracer

hasherezade
Sep/24
IAT Patcher - new tool for ...

More ...


Recent Blog Comments
nieo on:
Mar/22
IAT Patcher - new tool for ...

djnemo on:
Nov/17
Kernel debugger vs user mod...

acel on:
Nov/14
Kernel debugger vs user mod...

pedram on:
Dec/21
frida.github.io: scriptable...

capadleman on:
Jun/19
Using NtCreateThreadEx for ...

More ...


Imagery
SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit