Director of Threat Research - Intrusion Prevention

Canada

Applications have closed

SonicWall

Defend SMBs, enterprises and governments from advanced cyber attacks with SonicWall's award-winning firewalls and cyber security solutions.

View company page

SonicWall delivers Boundless Cybersecurity for the hyper-distributed era in a work reality where everyone is remote, mobile and unsecure. SonicWall safeguards organizations mobilizing for their new business normal with seamless protection that stops the most evasive cyberattacks across boundless exposure points and increasingly remote, mobile and cloud-enabled workforces. By knowing the unknown, providing real-time visibility and enabling breakthrough economics, SonicWall closes the cybersecurity business gap for enterprises, governments and SMBs worldwide. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.  

Ready to do your part in the cyber arms race? SonicWall offers fun, high-energy work environments at the leading edge of technology, networking and cybersecurity. Whether you’re in sales, marketing, engineering, product management, technical support or finance, you’ll have real opportunities to help protect more than 500,000 organizations across the globe. If you’re ready for a career that can impact change — and not just another job — join one of committed and enthusiastic SonicWall teams in offices around the world.

Director of Threat Research – Intrusion Prevention

Responsibilities:


• Lead a team of threat researchers
• Design, develop and test proprietary software using a range of applicable technologies, including programming languages, compilers, assemblers, debuggers, and reverse-engineering for products used in local, networked or Internet-related computer programs.
• Develop Intrusion Prevention signatures based on threat analysis using signature description language.
• Develop Application identification signatures based on network traffic analysis and understanding of application layer protocols
• Troubleshoot and test (including automation) IPS and Gateway AV engines on firmware.
• Research new ways to improve Deep Packet Inspection engine and work together with software engineering teams to define the next capabilities and enhancements of the DPI engine to combat the next generation of threats.
• Set up analysis environment for specific threats affecting Windows, Mac OSX, and Mobile OS platforms in a lab environment.
• Reverse engineer and analyze new vulnerabilities and threats.
• Develop tools to automate IPS and malware analysis tasks, simulation software and administer lab environment to replicate attacks.
• Build new proof of concept technology to detect and prevent zero day attacks

Requirements:


• Bachelor’s degree, or foreign equivalent, or MS in Computer Science or related field.
• 10 or more years of post-baccalaureate experience in hands-on threat research roles.
• 5 or more years in leadership threat research roles
• Understanding of application layer protocols, such as HTTP, FTP, SMTP, POP3, IMAP, SSL etc…
• Ability to analyze network traffic via packet captures
• Professional experience should include the following: Vulnerability research, Reverse engineering, Signature development, Virtual environment setup, IDA Pro, WireShark
• Knowledge of programming languages such as C, C++, Python is a plus
• While the candidate will have people reporting to him, the candidate is expected to have a strong hands-on background and be able to contribute on hands-on projects related to PoC development, infrastructure development, threat analysis, etc.

 

SonicWall is an equal opportunity employer. 

 

We are committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, and other protected status as required by applicable law. 

 

At SonicWall, we pride ourselves on recruiting a diverse mix of talented people and providing active security solutions in 215 countries. 

#LI-KB7

#Remote

#Threat Research

Tags: Automation C Cloud Compilers Computer Science Finance Intrusion prevention IPS Malware Python Reverse engineering SMTP Threat Research Vulnerabilities Windows

Perks/benefits: Career development

Region: North America
Country: Canada
Job stats:  8  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.