Threat Researcher (APP identification)

Threat Researcher (Application Identification)

SonicWall delivers Boundless Cybersecurity for the hyper-distributed era in a work reality where everyone is remote, mobile and unsecure. SonicWall safeguards organizations mobilizing for their new business normal with seamless protection that stops the most evasive cyberattacks across boundless exposure points and increasingly remote, mobile and cloud-enabled workforces. By knowing the unknown, providing real-time visibility and enabling breakthrough economics, SonicWall closes the cybersecurity business gap for enterprises, governments and SMBs worldwide. For more information, visit www.sonicwall.com or follow us on Twitter, LinkedIn, Facebook and Instagram.

Ready to do your part in the cyber arms race? SonicWall offers fun, high-energy work environments at the leading edge of technology, networking and cybersecurity. Whether you’re in sales, marketing, engineering, product management, technical support or finance, you’ll have real opportunities to help protect more than 500,000 organizations across the globe. If you’re ready for a career that can impact change — and not just another job — join one of committed and enthusiastic SonicWall teams in offices around the world.
Responsibilities:
Design, configure and maintain test environments of network firewalls, servers, and host endpoints for the collection of traffic samples
Install, configure and run software to generate traffic samples from stand-alone, mobile/smartphone, server, IoT, and all types of applications
Identifying static and dynamic patterns within application layer traffic to uniquely identify granular application communications
Write scripts to automate the discovery of patterns and metrics for the creation of signatures and detection algorithms
Willingness to respond to issues raised by customer support and internal stakeholders regarding detection and prevention of applications

Basic Qualifications
--------------------
B.S./B.T. in a computer technology related degree, e.g. CS, CE, IS, IT, ISM, or similar, plus 2 years working in a computer technology role; or M.S./M.T. degree in same
Strong understanding of networking fundamentals, the OSI Reference Model, and practical network routing and switching basics
Ability to configure network interfaces of UNIX/Linux, Windows, and smartphone devices to participate in local and routed networks
Knowledge of one or more application layer network protocols, e.g. SSL/TLS, HTTP/HTTPS, DNS, QUIC
Familiarity with the syntax and semantics of an IDS/IPS signature language, e.g. Snort(tm)
Familiarity with one or more network traffic sniffer tools, like Wireshark, tcpdump, Bro, Fiddler, etc.
Ability to write software scripts in at least one programming language

Preferred Qualifications
-------------------------
Previous experience in application control, exploit research, or penetration testing role
Experience in the installation, configuration, and operation of SonicWall Next Generation Firewalls (NGFW)
Know how to configure network settings for firewalls, routers, and switches
Familiarity with deep packet inspection (DPI), stateful packet inspection, and VPNs
Know how to formulate SQL queries for RDBMS

SonicWall provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics.

#LI-JB1