Application window is expected to close by 2/07/2025
Meet the Team
The Talos Network Threat Detection and Response Team creates network and endpoint signatures that are distributed world-wide to multiple products in Cisco's security portfolio and the open-source community.
Your Impact:
In this position you will create detection content for vulnerabilities in a variety of Cisco and non-Cisco products. Understanding these vulnerabilities may come from reviewing technical reports, reading code diffs, or developing proofs-of-concept based on varying degrees of background information. Once released, these protections directly impacts the security of people and organizations around the globe. With time and experience you will develop subject matter expertise in some of the technologies we work with, act as a technical representative for NTDR at meetings with other departments and conduct long-term advanced research and development that can be used to improve Cisco's products. If you're a tenacious learner, have an excruciating interest in detail, and want to develop. Your technical leadership skills in information security, this may be the right role for you.
What you ‘ll do:Research security threats, attacker techniques and tools, 0-day vulnerabilities and other in-depth research on novel threats Write in-depth technical advisories about threats and signatures Analyze malware samples and vulnerable binaries using static/dynamic analysis debuggers to Build advanced signatures and detection content for Snort, ClamAV, AMP, and other Cisco products Create testbed environments to research and run exploits Develop tooling that forwards the mission of the team Participate in advanced research projects
Minimum Qualifications:3+ years professional and/or educational experience with analyzing, identifying, and exploiting a wide variety of vulnerability types, such as buffer overflows, integer overflows, cross-site and server-side request forgery attacks, insecure deserializations, and/or authentication bypasses 3+ years professional and/or educational experience using packet analysis tools like Wireshark to analyze network or transport, and application layer protocols, such as IP, TCP, LDAP, TLS, RDP or SMB 3+ years professional and/or educational experience with a compiled language (e.g. C, C++, Rust, Go) and/or a scripting language (e.g. Python, Ruby, Perl)
Preferred Qualifications:Expertise with the structure of common file formats, such as PDF, MS Office, EXE, ELF and an ability to identify anomalies using popular file-analysis tools such as 010 Editor Expert knowledge of operating system internals and familiarity with concepts such as: application memory layout, C runtime or OS-related functions, kernel vs user space functionality Expertise with reverse engineering, malware analysis, and relevant tools (e.g.IDA Pro, Binary Ninja, Ghidra, radare2, x64dbg, WinDbg, OllyDbg), as well as analyzing assembly code and identifying code patterns in disassembled binaries 5+ years of related industry experience in roles like: incident response, intrusion detection, forensic analysis, pentesting or red teaming, or vulnerability development Experience with detection content engineering such as Snort rules language Master's degree or equivalent experience Computer Science, Cyber Security, or other tech-related degree
#WeAreCisco
#WeAreCisco where every individual brings their unique skills and perspectives together to pursue our purpose of powering an inclusive future for all.
Our passion is connection—we celebrate our employees’ diverse set of backgrounds and focus on unlocking potential. Cisconians often experience one company, many careers where learning and development are encouraged and supported at every stage. Our technology, tools, and culture pioneered hybrid work trends, allowing all to not only give their best, but be their best.
We understand our outstanding opportunity to bring communities together and at the heart of that is our people. One-third of Cisconians collaborate in our 30 employee resource organizations, called Inclusive Communities, to connect, foster belonging, learn to be informed allies, and make a difference. Dedicated paid time off to volunteer—80 hours each year—allows us to give back to causes we are passionate about, and nearly 86% do!
Our purpose, driven by our people, is what makes us the worldwide leader in technology that powers the internet. Helping our customers reimagine their applications, secure their enterprise, transform their infrastructure, and meet their sustainability goals is what we do best. We ensure that every step we take is a step towards a more inclusive future for all. Take your next step and be you, with us!