Security Research Engineer

Job Description:

As a Security Research Engineer, you will be part of a motivated engineering team that is responsible for the research, development, and delivery of vulnerability signatures in the Qualys on-demand security service. This opening is your opportunity to work in the rapidly expanding field of computer security with a company with excellent customer ratings and outstanding growth rates. 

Responsibilities:

• Research and create signatures for the Qualys product to detect vulnerabilities in the areas of Databases, Applications, Operating systems, TCP/IP Protocols, and network devices. 

• Research new and emerging technologies to identify vulnerabilities and exploits. 

• Research Zero-day and actively attack vulnerabilities to create remote signatures to identify vulnerable assets. 

• Build automation for day-to-day tasks. 

• Closely work with customer support to troubleshoot and triage customer issues such as false positives and false negatives. 

Qualifications: 

• BS in computer science with 3 years of experience in Information Security domain or MS in computer science or cyber security. 

• In-depth knowledge of TCP/IP, HTTP, DNS, FTP, SSH, TLS/SSL, and SMTP protocols. 

• Knowledge of OWASP top 10 and familiarity with other web-based attacks. 

• Experience with scripting languages, including Python and Bash. 

• Experience with network analysis tools, analysis of packet captures. 

• Proficient with regular expressions. 

• System administrator experience on Windows or Unix platforms. 

• Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS). 

• Excellent written and verbal communication skills. 

Additional Plus Competencies: 

• Understanding Lua (preferred), or Java. 

• Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc.). 

• Knowledge of Cloud Platforms (AWS, Azure, Oracle, etc.). 

• Knowledge of container technologies such as Docker and Kubernetes. 

• Able to handle projects independently. 

• Experienced in the use of vulnerability scanners, IDS, and security tools. 

• Experience in developing security-related tools/programs. 

• OSCP, CISSP or SANS GIAC certifications. 

Why Join Us?  

• Work on cutting-edge security research with a talented, collaborative engineering team.  

• Directly influence the security posture of thousands of customers.  

• Opportunities for professional development, certifications, and continuous learning.  

• Inclusive culture that values innovation, ownership, and customer impact. 

****************************************************************************************************************

The salary range for this position is $100,000 - $125,000 per year. Final compensation will be determined based on several factors, including but not limited to skills, relevant experience, and work location. Please note this range reflects base salary and does not include incentive compensation or potential equity grants. We also offer a comprehensive and highly competitive benefits package.