Senior Research Engineer

Your Role:

Tenable is looking for a Senior Research Engineer to join our Asset Competitiveness team. This position will focus on improving asset detection in Tenable’s products including researching methods to detect assets and developing code to identify these assets.

Your Opportunity:

• Work on complex research and development initiatives
• Implement advanced detection logic while minimizing false positives and false negatives
• Interface with stakeholders on externalizing the outcomes of research
• Develop detection plugins for the Nessus vulnerability scanner based on research
• Research and develop detection methods for services, products, and OSes
• Collaborate to develop new, and improve, detection approaches
• Bring innovative ideas to improve our team’s processes and effectiveness
• Develop tools for assisting in the SDLC
• Keep abreast of advancements and developments in the industry and perform original research to keep our customers secure

What You'll Need:

• At least 5 years of R&D experience
• Ability to work independently as a researcher as well as part of a team, leading the effort on some initiatives and being an active team member on other initiatives
• Demonstrably strong software development skills
• Disciplined focus on roadmap contribution and execution along with the willingness to shift priorities as needed
• Extensive experience with cloud solutions
• Experience working with multiple operating systems (proficiency with Linux is a must)
• Excellent written and verbal communication skills
• Passionate about exploring and learning new skills and techniques
• Meticulous attention to detail regarding quality and accuracy of work
• B.S. degree in Computer Science or a related field, or equivalent work experience

And Ideally:

• Familiarity with Nessus and other Tenable products (Tenable One, Tenable Vulnerability
• Management, Tenable Security Center, etc.)
• Prior experience performing open-ended research when given high-level requirements and details of the desired output
• Passionate about writing clean, structured code in the broader context of the complete product architecture
• Experiencing producing documentation for your code and for features and tools
• Reverse engineering experience including basic binary analysis, packet capture
• analysis, and firmware analysis. Prior experience with debuggers, disassemblers or. decompilers (e.g. IDA Pro, Binary Ninja, Ghidra, Immunity Debugger, WinDbg, GDB)
• In-depth knowledge of protocol analysis and interaction including common protocols such as HTTP, DNS, SSH, SMB, etc.
• Ability to perform code reviews and spot bugs
• Experience with Azure and AWS cloud services
• Experience as an offensive or defensive security practitioner, with one or more security related certifications (e.g. OSCP, CCSP, CISSP)
• Experience as a network engineer, security engineer, or systems administrator
• Experience in showcasing original research externally via blogs, white-papers,
• conference talks, etc.

#LI-Hybrid

#LI-AV1