Sr. Software Engineer, Next-Gen IPS Signature Team
Netskope
Bengaluru, Karnataka, India
About the role Please note, this team is hiring across all levels and candidates are individually assessed and appropriately leveled based upon their skills and experience. The Security Services organization is responsible for building core security products and features, such as Data Loss Prevention, IPS, Malware and Threat Prevention, Cloud Confidence Index, and Breach and Anomaly Detection. We apply Artificial Intelligence and Machine Learning technologies across the Netskope cloud security platform. As part of the Security Services org, the Security Efficacy team is responsible for continuous enhancement and enrichment of our malware detection, URL filtering, web security, IPS, threat modeling, and SaaS/IaaS security capabilities. What’s in it for you As a member of the Security Efficacy team you will play a key role in the design, development and operation of the security services that power the Netskope Security Cloud. You will work across development, research and product management teams to craft innovative solutions to the most challenging problems our customers face, and use your passion for and expertise in threat protection, malware detection, web security and network security to help drive the continued evolution of our market-leading products. If you live and breathe cloud security the way we do, we would like to hear from you. What you will be doing Research and develop mitigation strategies and signatures for IPS. Understand the threats/vulnerabilities and write efficient IPS signatures Work on process automation, intelligent data architecture, product monitoring, analysis and detection tool maturation Strong focus on automation, scription, and integrations; Design and develop systems and tools, and integrations to enable scalable threat data collections, analysis, content generation; Help to transfer the POC to automatic components/process in production; As the software engineering subject matter expert, work closely with data scientists, threat researchers, software engineers and QE engineers ensure our solutions deliver continuous security values to end customers; Identify automation opportunities and develop new tooling to scale and monitor the deployment of an in-house threat intelligence architecture; Take ownership for developing and executing test plans for performance/efficacy evaluations Required skills and experience First of all, candidates must have a true startup spirit. Be willing to wear multiple hats and deliver end-to-end; 5yrs Experience with tools like metasploit (MSF), Burp Suite, wireshark, tcpdump, MSV Industry experience in developing automation tools/systems; Experience with Intrusion prevention systems and signatures; Familiarity with Snort/Suricata is a big plus; Familiarity with application layer protocols like HTTP, SSL/TLS, DNS, FTP etc is a big plus; Familiarity/Experience with Python is highly desirable; Ability of thinking out-of-box and evaluating results based on customer value; Familiarity with Cloud infrastructure (AWS, GCP) deployment, monitoring and automation experience would be a plus; Strong networking background, knowledge of Unix/Linux environments, web protocols and web applications; Energetic self-starter, with the desire to work in a dynamic fast-paced environment; Excellent verbal and written communication skills; Ability to influence without authority; Education BSCS or equivalent required, MSCS or equivalent strongly preferred