Lead Security Engineer

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

We are looking for a highly skilled and motivated Lead Security Engineer to join our Vulnerability Detection Signature Research team. In this role, you will take charge of researching, developing, and delivering vulnerability detection signatures for our scanning products. You will oversee and resolve vulnerability scanning and detection issues that impact our customers, leading the sustenance research team to ensure expert handling of customer concerns and managing escalations. Collaboration with cross-functional teams will be key to resolving complex challenges. This position demands a strong technical foundation in vulnerability management, scanning tools, and security best practices, along with proven leadership experience in managing teams and addressing customer-facing escalations.

Responsibilities

• Lead the development, implementation, and continuous improvement of vulnerability detections and scanning processes for customers
• Lead and manage customer calls and meetings, ensuring that all issues are clearly understood and effectively addressed.
• Investigate, analyze, and troubleshoot vulnerability detection issues reported by customers, then modify the code to resolve these problems. 
• Build automation for day-to-day tasks. 
• As a Lead Security Signature Engineer, you will also dedicate time to staying up-to-date with the latest vulnerabilities, attacks, and countermeasures 
• Coordinate team tasks, assign priorities, and ensure timely resolution of customer issues.
• Externalize research by writing blog posts, presenting at security conferences, etc. 
• As a Lead Security Signature Engineer, you would also work alongside information security engineers to execute internal projects. 

Qualifications

• 7+ years of industry experience in network and systems security
• Proven experience in leading and mentoring teams in a technical environment
• Demonstrated experience with vulnerability scanning tools and vulnerability management processes
• In-depth knowledge of protocols such as TCP/IP, HTTP, FTP, SSH and SSL
• Strong understanding of common security vulnerabilities (e.g., OWASP Top 10, CVEs, etc.) and their remediation
• Experience with scripting languages, including Python and Bash 
• Experience with network analysis tools, analysis of packet captures. 
• Proficient with regular expressions. 
• Ability to shift priorities as needed and demanded by the customer requirements
• System administrator experience on Windows or Unix platforms
• Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS)
• Proven ability to manage customer escalations and deliver effective solutions under pressure
• Excellent written and verbal communication skills

Additional Plus Competencies

• Understanding of Lua (preferred), Java. 
• Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc) 
• Experience in cloud security (AWS, Azure, GCP) and containerized environments (Docker, Kubernetes). 
• Able to handle projects independently 
• Experience in developing security-related tools/programs. 
• OSCP, CISSP or SANS GIAC certifications