Meet The Team
As a member of Talos, you will support groundbreaking detection and mitigation technologies. You will work towards keeping yourself abreast of the latest industry threat creation and defense techniques, and you will develop proof‐of‐concept solutions, provide domain expertise, and guide implementation to facilitate successful security posture in Cisco's products.
If you enjoy vulnerability research, crash analysis, reverse engineering, and researching new techniques and writing tools to automate these tasks, this job is for you!
Your Impact
* Security research including development of tools for vulnerability analysis and mitigation.
* Development of static and run‐time analysis tools to figure out root cause and input conditions related to a vulnerability.
* Vulnerability triage and proof of concept exploit development to support the creation of detection content.
* Write detailed technical reports, summaries, and testing methodologies.
* Research emerging technologies, protocols, and testing methodologies.
* Develop proof of concept exploits for testing vulnerability mitigations.
* Perform patch analysis to find and trigger vulnerabilities.
* Reverse engineer binary applications, protocols, and formats.
* Analyze vulnerabilities and emerging security threats and technologies.
* Provide critical security focused expertise to engineering organizations.
Minimum Qualifications
* 10+ years of experience in vulnerability research or a closely related area such as exploitor mitigation development on Linux Systems.
* 5+ years' experience with C/C++, a scripting language (e.g., Python), and assembly (e.g., x86/x64, ARM, etc.).
Preferred Qualifications
* Bachelor's degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or other tech‐related degree.
* Experience with Linux internals.
* Experience with binary auditing and reverse engineering, and with related tools such as IDA Pro, Binary Ninja, Ghidra, etc. and with plugin development.
* Experience with common vulnerabilities and methods of exploitation, such as memory corruption, web application exploitation, file format vulnerabilities, protocol‐based weaknesses, etc.
* Knowledge of common file formats, network protocol structures, and enterprise networking architecture.
* Ability to work independently with minimum supervision and to address additional tasks as the need arises.
#J-18808-Ljbffr