.JOB DESCRIPTION
iDEFENSE/VeriSign seeks a Senior Security Engineer to work within iDEFENSE Labs from our Reston, VA, office. The ideal candidate will have a solid information security (infosec) background. He or she will analyze technical source data into clear, concise and legible vulnerability intelligence on a daily basis.
Candidates must be self-starters with a quick learning curve. He or she should be detail-oriented, and should feel comfortable working in a fast-paced, high-energy, deadline-driven environment.
Candidates must be willing to work from our Reston, VA, office. As such, a residence in the metro Washington, DC, area (DC, Virginia or Maryland) is recommended. This is not a telecommuting position.
In July 2005, iDEFENSE became an official VeriSign Company, a partnership that combines iDEFENSE intelligence with the resources and innovation of VeriSign. VeriSign, Inc.(Nasdaq: VRSN) is a leading provider of digital trust services that enable businesses and consumers to engage in commerce and communications with confidence.
Additional news and information about the company is available at http://www.verisign.com and http://www.idefense.com.
JOB REQUIREMENTS
Qualified candidates must have proven reverse engineering and vulnerability discovery skills. Past vulnerability research will be an important factor in identifying an appropriate candidate. Day to day responsibilities will include:
* Researching vulnerabilities submitted through our Vulnerability Contributor Program (VCP)
* Conducting reverse engineering on known vulnerabilities and malicious code samples to support other iDEFENSE/VeriSign teams
* Conducting peer training for other iDEFENSE/VeriSign teams to encourage cross training
* Speaking at leading security conferences
* Publishing white papers on independent research initiatives
* Developing open source tools to automate vulnerability discovery
* Discovery of 0day vulnerabilities
REQUIRED SKILL SET
* Win32 reverse engineering skills and knowledge of Win32 APIs
* Experience using *nix and Win32 debuggers
* Experience with x86 disassembly and the use of disassemblers including IDA Pro
* Experience using/building VMWare images
* Programming skills using languages such as C, Perl, JavaScript and Python
* Knowledge of common networking protocols
* Past vulnerability discovery research
* Exploit development proficiency
DESIRED SKILL SET
* Programming skills using languages such as PHP and C#
* Unix/Linux reverse engineering skills and knowledge of *nix APIs
* Network device administration skills (i.e. IOS, JunOS)
* Embedded reverse engineering skills
* Past speaking experience and publication of independent research
* Experience writing NASL scripts and Snort IDS signatures
EDUCATION
* Bachelor's degree in computer science/engineering or a related field preferred
FURTHER INFORMATION
For immediate consideration please e-mail Adam Greene <agreene at idefense-dot-com>
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}