Lead Security Research Engineer - Threat Detection Tooling, Zürich (Kreis 11)

Meet The Team As a member of Talos, you will support cutting-edge detection and mitigation technologies. You will work towards keeping yourself abreast of the latest industry threat creation and defense techniques, and you will develop proof-of-concept solutions, provide domain expertise, and guide implementation to facilitate a successful security posture in Cisco’s products.

If you enjoy vulnerability research, crash analysis, reverse engineering, and researching new techniques and writing tools to automate these tasks, this job is for you!

Your Impact Essential Duties and Responsibilities

Conduct security research, including the development of tools for vulnerability analysis and mitigation.

Develop static and run-time analysis tools to identify root causes and input conditions related to vulnerabilities.

Develop tools and environments as necessary to automate processes, analyze results, and test complex scenarios.

Perform vulnerability triage and proof-of-concept exploit development to support the creation of detection content.

Write detailed technical reports, summaries, and testing methodologies.

Research emerging technologies, protocols, and testing methodologies.

Develop proof-of-concept exploits for testing vulnerability mitigations.

Perform patch analysis to find and trigger vulnerabilities.

Reverse engineer binary applications, protocols, and formats.

Analyze vulnerabilities and emerging security threats and technologies.

Provide critical security-focused expertise to engineering organizations.

Minimum Qualifications

demonstrated ability in vulnerability research or a closely related area such as exploit or mitigation development on Linux Systems.

significant experience with C/C++, and a scripting language (e.g., Python), and assembly (e.g., x86/x64, ARM, etc.).

Preferred Qualifications

Bachelor’s degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or other tech-related degree.

Expert knowledge of Linux internals, including application memory layout, common OS APIs, and system call operations, limitations, and side effects.

Mastery of reverse engineering and experience with related tools such as IDA Pro, Binary Ninja, Ghidra, etc., including plugin development.

Experience in the discovery of Linux vulnerabilities and creating corresponding exploits.

Strong understanding of advanced networking concepts, protocols, and common enterprise networking scenarios.

Experience with common vulnerabilities and methods of exploitation, such as memory corruption, web application exploitation, file format vulnerabilities, and protocol-based weaknesses.

Ability to work independently with minimum supervision and to tackle additional tasks as the need arises.

Great communication skills

#J-18808-Ljbffr