Fevrok logo
Research Engineer
3 years ago

Senior Security Research Engineer, Embedded Systems



Talos ARES (Advanced Research / Embedded Systems) is a team within Talos that is tasked with improving security of embedded systems through research, vulnerability discovery, and proof of concept development of existing devices and systems. The team consists of vulnerability researchers focused on assessing the security of all types of embedded systems, including Industrial Control Systems (ICS) and Internet of Things (IoT) as well as whats traditionally thought of as an embedded system. The team leverages a variety skill to examine both the hardware and the associated software of these systems and attempt to find vulnerabilities in these systems. Newly discovered vulnerabilities are disclosed to the respective vendor. In addition, the team creates detection content, such as IDS rules and antivirus signatures, for Cisco security offerings such as Snort, ClamAV and Advanced Malware Protection (AMP). 



Position Roles and Responsibilities

  • Reverse engineer embedded devices to discover new vulnerabilities.

  • Write detailed technical advisories on new vulnerabilities.

  • Develop proof of concept exploits for testing IPS and IDS effectiveness.

  • Create tools for the discovery and triage of vulnerabilities.

  • Analyze zero-day vulnerabilities and emerging security threats and technologies in embedded systems (including Industrial Control Systems).

  • Use a variety of tools to perform static and dynamic analysis of real-world malware samples that affected embedded systems.

  • Create detection content for Snort, ClamAV, AMP, Security Intelligence and other Cisco security offerings.

  • Demonstrate embedded security leadership both internally and externally.

Specialized Knowledge and Skills

  • Experience reverse engineering a variety of hardware and software, including firmware, operating systems, and applications.

  • Experience extracting firmware from devices for analysis.

  • Experience with a variety of devices for hardware research, such as JTAG, logic analyzers, oscilloscopes and other devices.

  • Experience with vulnerability discovery and analysis.

  • Experience with common vulnerabilities and methods of exploitation, such as memory corruption, web application exploitation, file format vulnerabilities, protocol-based weaknesses, etc.

  • Proficient in C/C++, Python and ARM/PPC assembler.

  • Knowledge of Linux System API and ABI.

  • Experience with analysis tools such as IDA, Radare, Burp Suite, and others.

  • Experience with network traffic dissectors such as Wireshark.

  • Solid documentation and technical writing skills.

  • Exceptional analytical skills and problem-solving skills.

  • Ability to work independently with minimum supervision and take on additional tasks as required.

  • Desire to expand skills and abilities while functioning out of comfort zone.

Education and Work Experience

  • Bachelors degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or other tech-related degree.

  • Experience with ICS/SCADA protocols such as DNP3, Modbus, BACNet, ICCP, IEC 60870, CIP, ENIP.

Work Conditions

  • Work closely with software reverse engineers and research analysts to quickly develop detection content for all our core applications.

  • Moderate to high levels of stress may occur at times.

  • Fast paced and rapidly changing environment.

  • Extremely talented and experienced team members and mentors.

Why Cisco

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays, and learns, but our edge comes from our people.  Our People Are The Heart of Cisco



Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.  



We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco



Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview.  Benefits and Perks - Cisco



Join us!  #WeAreCisco

posted by
Fevrok Botavatar
Fevrok Bot @bot
I'm a Fevrok Bot I fetch jobs from Fevrok partners websites
Company
Cisco's logo
Cisco
@cisco (company)
similar jobs
Research Engineer, Scalable Deep Learning Process Improvement Engineer - 61129 Senior ML and DSP Research Engineer Machine Learning Research Engineer - Advanced Research Machine Learning Research Engineer - Advanced Research Machine Learning Research Engineer - Advanced Research - Speech / NLP Machine Learning Research Engineer - Advanced Research - Speech / NLP Machine Learning Research Engineer - Advanced Research - Speech / NLP Machine Learning Research Engineer - Advanced Research - Speech / NLP Machine Learning Research Engineer - Advanced Research - Speech / NLP
Fevrok logo
Get support
Company
About us Blog Sitemap
Legal
Privacy policy
©2025 Fevrok. All Rights Reserved.
  english