This job post is closed and the position is probably filled. Please do not apply. Work for Tenable and want to re-open this job? Use the edit link in the email when you posted the job!
\nYour Role:\n\nTenable is looking for a Senior Research Engineer to join our 0-day security research team. This position will involve exploring the attack surface area of various software and systems, looking for new vulnerabilities, developing checks/plugins to detect these vulnerabilities via our products and coordinating disclosure of the 0-days found with vendors.\n\nYour Opportunity:\n\n\n* Works on complex research and development initiatives\n\n* Implements advanced detection logic while minimizing false positives & false negatives\n\n* Participates in detection logic discussions and the research of new methods for detection\n\n* Interfaces with stakeholders on externalizing the outcomes of some of the research\n\n* Helps / trains other researchers, when needed\n\n\n\n\nWhat you'll need:\n\n\n* Proven track record of discovering 0-day vulnerabilities\n\n* Keep abreast with the advancements and developments in the security industry and perform original research to keep our customers secure\n\n* Develop detection scripts for Tenable’s sensors (Nessus vulnerability scanner and others) based on the research findings\n\n* Research and develop methods of detection for additional services and products from different vendors\n\n* Demonstrably strong programming skills in one or more languages\n\n* Ability and experience in showcasing original research externally – via blogs, white papers, etc.\n\n* Ability to work independently as a researcher as well as part of a larger team\n\n* Experience working with multiple operating systems\n\n* Excellent written and verbal communication skills\n\n* Adaptable and able to shift priorities as needed\n\n* Meticulous in terms of quality & accuracy of work\n\n* Willingness to explore and learn\n\n* B.S. degree in Computer Science or a related field, or equivalent work experience\n\n* At least 5 years of R&D experience\n\n* In depth understanding of common security vulnerabilities, vulnerability classification, detection and exploitation techniques.\n\n* Reverse engineering experience including binary analysis, packet capture analysis, and firmware analysis (using binwalk or other). Prior experience with debuggers, disassemblers or decompilers (e.g. IDA Pro, Immunity Debugger, gdb)\n\n* Experience with crash dump analysis and some exploit development.\n\n* In-depth protocol analysis and interaction. Expert level knowledge of common protocols such as HTTP, DNS, SSH, SMB, etc. and fuzzing\n\n* Some prior experience performing open-ended research when given high-level requirements and details of the desired output.\n\n* Experience with researching, discovering, and publishing vulnerabilities\n\n* Experience with C or C++, Assembly (x86/x64 and/or ARM/ARM64) and scripting languages\n\n* Experience writing blogs and whitepapers to showcase research as well as presenting at security conferences\n\n\n\n\nWe’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels. \n\n#Salary and compensation\n
No salary data published by company so we estimated salary based on similar jobs related to Senior, Engineer, C and Assembly jobs that are similar:\n\n
$80,000 — $125,000/year\n
\n\n#Benefits\n
๐ฐ 401(k)\n\n๐ Distributed team\n\nโฐ Async\n\n๐ค Vision insurance\n\n๐ฆท Dental insurance\n\n๐ Medical insurance\n\n๐ Unlimited vacation\n\n๐ Paid time off\n\n๐ 4 day workweek\n\n๐ฐ 401k matching\n\n๐ Company retreats\n\n๐ฌ Coworking budget\n\n๐ Learning budget\n\n๐ช Free gym membership\n\n๐ง Mental wellness budget\n\n๐ฅ Home office budget\n\n๐ฅง Pay in crypto\n\n๐ฅธ Pseudonymous\n\n๐ฐ Profit sharing\n\n๐ฐ Equity compensation\n\nโฌ๏ธ No whiteboard interview\n\n๐ No monitoring system\n\n๐ซ No politics at work\n\n๐ We hire old (and young)\n\n
# How do you apply?\n\nThis job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.