null Jobs

[Full-time] Associate Vulnerability Research Analyst at iSIGHT Partners

2013-05-08 00:28:53

Location: Pune
URL: http://www.isightpartners.com

Description:

Overview:

Responsible for performing deep assessments of publicly disclosed vulnerabilities and writing detailed and actionable reports.

Essential Duties and Responsibilities:

*Research of publicly known vulnerabilities; from information collection to testing and analysis

*Write timely reports to be delivered to customers

*Maintain the accuracy and integrity of information through all phases of a report

*Verify vulnerability information by testing exploit and proof-of-concept (PoC) codes

*Report to internal team members changes to the state of existing vulnerabilities

*Interface with internal iSIGHT Partners Teams to fill production requirements and deadlines

*Take part in pointed research and development tasks on an individual as well as team basis

Experience, Skills and Knowledge:

Required:

*Minimum 2-4 years of Computer Security work experience

*Thorough understanding of different vulnerability types and the CWE Dictionary

*Strong writing skills with ability to communicate clearly and efficiently

*Familiarity with TCP/IP

*Understanding of two or more of the following: C/C++, PHP, Perl, Python, JavaScript, Ruby, SQL

*Experience with two or more of the following: Windows, Apple Mac OS X, Linux and Unix

Desired:

*Experience with VMWare

*Experience writing code in Python, PHP or Ruby

*Experience with tools such as Wireshark, nmap, Metasploit, Nessus, Snort, etc.

*Packet capture analysis, Snort Signature Development and/or Honeypot experience a plus

Apply to this job

[Full-time] Digital Forensic Analyst at WHS

2013-04-10 04:46:30

Location: Mumbai
URL: http://www.whitehats.in

Description:

WHS is a specialist company offering Digital Forensics services and training to its clients. We are interested in hiring candidates with a proven track record in research and excellence for the position of ‘Digital Forensic Analyst’.

Job Profile:
Engage with clients on forensic services
Perform tasks such as Imaging, analysis of media and independently handle investigations
Perform Incident response and malware investigations
Perform tasks within the scope of electronic discovery, email review as well as data mining and analytics if required.
Research on forensic techniques and tools
Occasionally conduct training for clients
Occasional programming (coding) for automation of forensic tasks

Requirements:
At least 1.5 years of experience in computer forensics
Proficiency in working with forensic toolsets (commercial and free) such as Encase, FTK, ProDiscover, F-response, Autopsy, libewf and more
Excellent problem solving capabilities
Knowledge of network protocols such as working of TCP/IP, SMTP, FTP, SNMP, HTTPS, POP, etc.
Knowledge of ethical hacking methods such as SQLi, XSS, Metasploit, Rainbow Tables, pass-the-hash, etc. and advanced ethical hacking tools such as Metasploit SET and cryptors
Knowledge of web server workings (Apache, IIS, https) and logs
Proficiency in at least 2 languages from Python, Java, C#, C, perl, php, SQL
Candidate must be open to travel outside of Mumbai for case work.

Preferred:
Certifications like GCFA, EnCE, CEH, CHFI, GCIA or other relevant ones
Proficiency in Malware analysis or reverse engineering (this is a big plus point)
Demonstrated ability to quickly grasp any language and code in it

Please include in your CV relevant projects, cases and tools / technologies you are proficient at.

Apply to this job

[Full-time] Urgetent Required - Network Security Researcher at Eagleclaw Consulting India Pvt Limited

2013-03-09 22:59:11

Location: Hyderabad
URL: http://www.eagleclawcons.com/

Description:

Designation : Network Security Researcher & Trainer

Experience : 0-1

Qualification : B.Tech/B.E/B.Sc/BCA or Post Graduate

No. of openings : 2

Job Location : Hyderabad

Job Description

1. Design & Execute Easy to Learn Demonstrations on Network Security & Firewalls
2. Assist the Team Member in Projects & Cases
3. Time to time Updation in Syllabus
4. Giving New Ideas for Improvement
5. Hands On knowledge nn Network Secuity Tools & Firewalls
6. Ready to Work On Firewalls Like Cyberoam, Juniper, Cisco, Fortinet Etc

Desired Candidate Profile

1.Good Communication Skills
2.Quick learner with a bent of mind for Research
3.Flexible and adaptable to changing environments
4.Earlier experience in arranging & delivering the training programs
5.Ability to show a flexible approach to working hours
6.Ready to Travel Across India.

Note: Applications have been closed.

Apply to this job

[Full-time] Security Researcher (IDS/IPS , TCP/IP) at Juniper Networks

2013-02-14 01:25:32

Location: Banglore
URL: http://www.juniper.net

Description:

Write, review, maintain vulnerability/application Signatures for Juniper IPS product line.

Job requirements:

• experience using Wireshark (or a similar protocol decoder application) on a daily basis.

• experience using Regular Expressions on a daily basis.

• Solid understanding of IP and TCP/UDP/ICMP protocols including header contents and protocol flow concepts.

. Solid understanding at the packet level of common internet protocols such as DNS, SMTP, POP3, IMAP, SSL, Telnet, SSH, SNMP, etc.

. Solid understanding of the HTTP protocol, including optional headers, content types, response codes, etc.

• Able to research functional specifications, Request For Comments, and other technical documentation and create effective, efficient and innovative solutions through thorough comprehension.

• Experience with packet crafting tools and application traffic generation is desirable.

• Past Antivirus Signature writing experiences a plus.

• Knowledge of IDS/IPS .

• The candidate must posse’s excellent communication skills, both verbal and written.

Note: Applications have been closed.

Apply to this job

[Part-time] Sr. Malware, Exploits & Threat Analyst at Code Decode Labs

2013-01-31 03:12:06

Location: Pune
URL: http://www.codedecodelabs.com

Description:

‘Code Decode Labs’, is looking for a suitably experienced malware analyst in it’s core team of, ‘Advanced Threat Intelligence advisory & assignments’.

Location – Pune

Experience – 3 – 4 years of experience in malware & exploits research / analysis

Salary & Remunerations – As per the best in the industry + many other facilities

Job Description – Candidate would be responsible to deliver & analyse –

Analysis & research of all the new threat releases
Analysis & advisory experience for vulnerability & threat management
Advanced capability to analyze malware, including: worms, viruses, trojans, rootkits and bots;
Reverse engineering software binaries;
Test exploits writing
Using dis-assemblers (ie. IDA Pro);
Using debuggers (ie. OllyDbg, Immunity, gdb, WinDbg);
Using hex editors and tools (ie. BinDiff);
C/C++ development;
x86 assembly language;
Windows Portable Executable (PE) file format;
Technical writing;
Constructing threat & exploit environment
Solid understanding of programming languages and operating system concepts;
Solid knowledge of Computer Network Operations (CNO)

Note: Applications have been closed.

Apply to this job

[Full-time] Sr. Malware & Threat Researcher at Code Decode Labs, India

2013-01-31 03:06:21

Location: Pune
URL: http://www.codedecodelabs.com

Description:

‘Code Decode Labs’, is looking for a suitably experienced malware analyst in it’s core team of, ‘Advanced Threat Intelligence advisory & assignments’.

Location – Pune

Experience – 3 – 4 years of experience in malware & exploits research / analysis

Salary & Remunerations – As per the best in the industry + many other facilities

Job Description – Candidate would be responsible to deliver & analyse –

Analysis & research of all the new threat releases
Analysis & advisory experience for vulnerability & threat management
Advanced capability to analyze malware, including: worms, viruses, trojans, rootkits and bots;
Reverse engineering software binaries;
Test exploits writing
Using dis-assemblers (ie. IDA Pro);
Using debuggers (ie. OllyDbg, Immunity, gdb, WinDbg);
Using hex editors and tools (ie. BinDiff);
C/C++ development;
x86 assembly language;
Windows Portable Executable (PE) file format;
Technical writing;
Constructing threat & exploit environment
Solid understanding of programming languages and operating system concepts;
Solid knowledge of Computer Network Operations (CNO)

Note: Applications have been closed.

Apply to this job

[Full-time] Research Associate at IIIT-Delhi

2013-01-30 03:47:14

Location: Delhi
URL: http://iiitd.ac.in/

Description:

http://iiitd.ac.in/sites/default/files/docs/positions/RA-Advertisement-Gaurav-DIT.pdf

INDRAPRASTHA INSTITUTE OF INFORMATION TECHNOLOGY DELHI
(A State University established by Govt. of NCT of Delhi)
Website: http://iiitd.ac.in
Applications are invited for Three Research Associate position for a DITsponsored project on
Design and Development of System for Detecting Digitized Document Frauds
Post Code: Research Associate
Pay: Rs 15,00030,000 depending on experience and skills
Last Date to Apply: 3rd February 2013.
Essential Qualification & Experience:
• B.Tech/ME/MS/MTech/Ph.D in CS/ECE/Physics
• Familiarity with image processing, pattern recognition, programming in Java and/ or C#.net
• Ability to design customized microscopic device/ enhancement is desirable
• Experience in working/liasioning with companies/universities, working in a research
institution, and preparing technical reports
• Experience in working with students
• Good interpersonal and communication skills (both oral and written)
Duration of the post: 3 months
Age Limit: 30 years

Posted by
Dr. Gaurav Gupta
Project Coordinator
Dt. 22nd Jan, 2013

Note: Applications have been closed.

Apply to this job

[Full-time] Malware Analyst at Online Guards

2013-01-23 17:30:25

Location: Hyderabad
URL: http://www.onlineguards.com

Description:

Job Description

Online Guards is a leading provider of Identity Protection and Threat Intelligence. We are looking for a Malware Analyst who has hands-on experience with malware and exploit analysis, threat research, malware & exploit writing.

Requirements

• 1 – 5 Years of experience.

• Excellent exploit and malware analysis skills.

• Disassemble and Analyze malicious code/exploits. Should have indepth knowledge of banking trojans like zeus, spyeye, citadel and other botnets

• Network traffic analysis of malware activity. Should be well versed with IDApro, Ollydbg

• Good Scripting skills (Perl or Python) is an advantage.

• Monitor public/private sources of information for malware.

• Strong written & verbal communication and reporting skills.

Note: Applications have been closed.

Apply to this job

[Full-time] Sr. Malware & Threat Research Manager at Code Decode Labs

2013-01-21 00:45:47

Location: Pune
URL: http://www.codedecodelabs.com

Description:

‘Code Decode Labs’, a rapidly growing cyber security team, is looking for ‘Sr. Malware Research Engineer cum Manager’, for it’s growing malware and threat R&D division, at it’s Pune office.
Experienced security research engineer, assigned to conduct detailed security analysis and provide short term mitigation guidance and longer term technical direction to product engineers. Involved with overall planning and execution of security assurance activities across a range of products or features. Ability to multitask; works on problems of diverse scope where analysis of data requires evaluation of identifiable factors. Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Interacts with senior internal and external personnel. Takes initiative to plan and execute own work assignments.
Often acts as a Tech Lead on complex projects and may be a sub-group

Lead. Note: This level can serve as a “branch point” from which individuals could move up either a technical, or a management, career path.

Primary Duties / Responsibilities – •Conducts security analysis of complex software components and provides technical direction on needed security assurance activities, including security code review, application level security analysis, security education and training, threat modeling, secure coding standards.
•In addition to hands-on technical development activities, provides guidance in the analysis and conceptual design of proposed projects.
•Participates in determining feasibility of proposed projects and the overall plan for implementation.
•Operates as Subject Matter Expert and/or owner of multiple moderate-complex software modules.
•Responsible for leading the integrity of technical work on significant concurrent projects.
•Acts as technical lead to direct requirements analysis, and writing of security engineering requirement(s) and design specifications for projects of moderate to complex scope.
•Reviews progress and evaluates results of assigned technical projects and process against conformance to plans and specifications making recommendations based on the results.
Documents accordingly.
•Networks with key contacts outside own area of expertise and other departments on technical matters.
•Generally provides technical direction, delegation, and project management within a project team with increased leadership of others.
•Recommends and executes continuous quality improvement in meeting internal and external customer requirements (including customer escalation and cross-team support).

Qualifications (Knowledge, Skills, Abilities) –

•Detailed understanding of application level security weaknesses and vulnerabilities. Demonstrated ability to perform application level security assessment and produce sound security direction to product engineering teams.
•Expertise in one or more relevant programming languages (e.g. C, C++, Java), operating systems (e.g. Windows, UNIX) and OS concepts.
•Expertise in software engineering process and standard secure development best practices.
•Expertise with more advanced programming environments and concepts (e.g. J2EE, OS internals, network appliances)
•Experienced in software development project estimation, engineering tools, and concepts
Requirements (Education, Certification, Training, Experience)
•BS degree or equivalent in computer science, electrical engineering, or related field is required
•Demonstrated work experience covering core technical security areas.
•Experience mentoring/leading an engineering team through a technical project.
•Strong experience in at least one major OS (e.g. Windows, Linux, Mac)

Note: Applications have been closed.

Apply to this job

[Full-time] Sr Security Research Engineer Job at McAfee

2012-12-21 12:46:58

Location: Banglore
URL: http://www.mcafee.com/

Description:

Description: McAfee is Looking for a senior security research engineer who has hands-on experience with exploit & malware analysis, malware evasion technique analysis and identification, classification/categorization and detection verification of both exploits and malware. The candidates will be expected to analyze newly discovered exploit samples of various types (malicious URIs, emails, documents such as PDF, Office files, Jscript, etc.), analyze evasions and verify whether new samples or exploits is actually a 0-day or has been previously categorized. Further, the candidate will be expected to stay on top of latest outbreaks, and establish connections with other researchers to gather exploits as quickly as they are seen in the wild. The candidate will also evaluate and validate McAfee anti-virus technologies and products, develop automation framework to install malware, analyze evasions, test detection and clean-up capabilities of various products. The candidate will work on comparing competing AV technologies, prepare competitive records, mine the data to identify areas of concern, issues, and provide suggestions for improvements.

Basic Function and Scope of the Position

• Perform Exploit and Malware Analysis.

• Verify detection-coverage for McAfee and competing vendors for latest threats.

• Develop competitive analysis reports.

• Develop automation framework.

Specific Responsibilities/Functions

• Verify threat-detection coverage for the entire lifecycle of a threat (e.g. visiting a malicious URI, or opening a malicious email or opening a malicious document).

• Verify cleanup ability of McAfee and competing Vendors.

• Develop automation framework for detection and cleanup analysis.

• Develop high-quality competitive comparison reports for executives and research teams.

Qualifications

Experience, Knowledge and Skills

Essential

• 4-5 Years of experience.

• Excellent exploit and malware analysis skills.

• Good scripting skills.

• Expertise in automation for both UI and non-UI based tasks.

• Strong written & verbal communication and reporting skills.

Desired

• Experience in evaluating and testing various anti-virus technology products

• Experience in anti-virus QA via manual testing and automation tool development

Note : Freshers/Web Application /Penetration Testers need not apply unless having 3-4 year experience in malware analysis

Note: Application have been closed.

Apply to this job

null Jobs

[Full-time] Associate Vulnerability Research Analyst at iSIGHT Partners

[Full-time] Digital Forensic Analyst at WHS

[Full-time] Urgetent Required - Network Security Researcher at Eagleclaw Consulting India Pvt Limited

[Full-time] Security Researcher (IDS/IPS , TCP/IP) at Juniper Networks

[Part-time] Sr. Malware, Exploits &amp; Threat Analyst at Code Decode Labs

[Full-time] Sr. Malware &amp; Threat Researcher at Code Decode Labs, India

[Full-time] Research Associate at IIIT-Delhi

[Full-time] Malware Analyst at Online Guards

[Full-time] Sr. Malware &amp; Threat Research Manager at Code Decode Labs

[Full-time] Sr Security Research Engineer Job at McAfee

[Part-time] Sr. Malware, Exploits & Threat Analyst at Code Decode Labs

[Full-time] Sr. Malware & Threat Researcher at Code Decode Labs, India

[Full-time] Sr. Malware & Threat Research Manager at Code Decode Labs