Security Engineer Application & Mobile Penetration Testing

Splunk San Jose , CA 95111

Posted 2 months ago

The Product Security team members at Splunk ensure the security of our products and serve as subject matter experts for our engineering teams and Splunk partners to protect our customers' data in today's rapidly evolving threat landscape.

You will be a part of an exciting new Red Team initiative and will be responsible for penetration testing Splunk's suite of products (on-prem and cloud). You will be the go-to person for researching new threats, executing creative exploits and establishing an internal penetration testing lab. In addition, you will work with external researchers and external penetration testing vendors to ensure that all publicly known vulnerabilities are appropriately addressed by Splunk.

You will be an ideal candidate if you:

  • Have significant penetration testing experience and offensive capabilities in numerous core competency areas primarily in applications, but networks, infrastructure (cloud and on-prem) and mobile.

  • Track the latest developments in vulnerability research, and how they may impact Splunk or its customers.

  • Have a proven track record in participating in bug bounties.

  • Having a few CVEs in your name or public street cred (blogs, research, education) a big plus.

  • Have experience using standard tools for penetration testing and have the ability to develop tooling to solve new needs.

Required Skills:

  • 3 Years' experience in application, mobile and infrastructure penetration testing.

  • Strong understanding of vulnerabilities, common attack vectors and how to resolve them.

  • Attacker mindset: ability to think about different threats and creative attack vectors.

  • Well-rounded background in host, network, mobile and application security.

  • Effective written and oral communication

Desired Skills:

  • Contributions to the security community such as research, public CVEs, bug-bounty recognitions, open-source projects, and blogs or publications.

  • Relevant development/scripting/automation experience in C++, JavaScript, Python, Go

  • Experience with Splunk

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.

For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Staff Software Engineer Mobile (5G) Security

A10 Networks

Posted 1 week ago

VIEW JOBS 4/10/2019 12:00:00 AM 2019-07-09T00:00 Are you up for the challenge? Design and development of next-generation security technologies and advanced solutions such as IPv6, Migration/Deployments, Mobile Security, NAT, DS-Lite, NAT64, 6rd, LW406, NAT46, Application Firewall, DDoS and Deep Packet Inspection. Great Tech! Great Team! Great Culture! When working in this group, you will be responsible for designing and implementing software solutions for the following functional areas: Mobile/SP Security (Gi-LAN) – GTP, SCTP, Diameter Protocol handling and security LTE/5G (3GPP) Architecture and various security implications and safeguards Understanding and solving issues service providers are facing in migrating to IPv6 infrastructure Understand and implement application inspection for applications using protocols such as SIP, FTP, H323, etc. Understand and implement methods and mechanisms to secure internal clients/network from Denial of Service attacks Qualifications/Requirements: Education Qualification: * BS plus 3+ years or MS plus 2+ years in Computer Science/Engineering or similar area Technical Skills: * Strong C/C++ programming skills (Python understanding is a plus) * Very familiar with TCP/IP, Networking concepts. * Familiarity with and understanding of security features and application protocols such as FTP, DNS, SIP, Radius, Diameter , GTP, SCTP, etc. is a plus. * Knowledge of computer system architectures & operating system concepts along with understanding of multi-core, multi-threaded programming, distributed system. A10 Networks is an equal opportunity employer and a VEVRAA federal subcontractor. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. A10 also complies with all applicable state and local laws governing nondiscrimination in employment. A10 Networks San Jose CA

Security Engineer Application & Mobile Penetration Testing