Vulnerability Detection Engineer, Network (Remote) @ CrowdStrike
Job Information
Job Description:
What You’ll Do:
- Collecting, analyzing, interpreting, evaluating, and integrating vulnerability data from multiple sources to update existing product
- Understanding of common vulnerability classes and exploitation techniques
- Actively investigate the latest in security vulnerabilities, advisories, incidents, and provide insights (sources like, Microsoft, Oracle, etc)
- Troubleshooting security vulnerability issues/ gaps that arise
- Vulnerability data discovery and validation (Data efficacy & Accuracy)
- Develop, test and modify custom scripts for vulnerability content
- Manually/Automate analyzing new CVE information published
- Handle Customer escalations, to identify False-Positive & False-Negative
- Other projects as assigned
What You’ll Need:
- 6+ years of relevant experience
- Programming/scripting knowledge for automating day to day tasks – Python/ Perl, Golang.
- Good understanding of vulnerabilities reported by various sources and their types.
- Platform knowledge (ex: Windows system concepts like registry, files, services, etc)
- In-depth knowledge of both security and network fundamentals, such as cryptography, authentication, access control, and network protocols (TCP/IP, UDP, DNS, HTTP, etc.). Understanding the security implications and potential vulnerabilities associated with these concepts
- Research mindset, has a hold on where to look for relevant information pertaining to reported vulnerabilities.
- Ability to work independently and in a team environment
- Excellent oral, written, and interpersonal communication skills, with the ability to effectively convey complex technical concepts and interact with customers and team members alike
- Provide influential insights across multiple teams
Additional good to have skills:
- Vulnerability/exploit research and creating signatures for the same
- Good understanding of file formats
- Knowledge about IDS, IPS (Vulnerability Signatures)
- Platform knowledge of one or more of non-windows (like Linux Distros, macOS)
- Prior experience working with Nessus, Qualys, Rapid 7 , etc
- Knowledge of NIST and OWASP is big plus
- Ability to communicate, collaborate, and work effectively in a globally distributed team
- Experience in Leading projects or Research initiatives
- Experience/Exposure in SecOps domain is a plus
- Experience/Exposure with Golang is a plus
Benefits:
Experience Level: Senior
Work From: Remote from Region Germany
Company Information
View all jobs of Company: Click here