Your Role:
Tenable is looking for a Research Engineer to join our security research team. This position will involve researching methods for testing configurations and adherence to security baselines and industry best practices. Primary responsibility includes developing checks to evaluate customer environments via our products. This role will involve some interfacing with stakeholders outside the Research team.
Your Opportunity:
1. Works on advanced research and development initiatives
2. Implements detection logic and scripts while minimizing false positives & false negatives
3. Participates in detection logic discussions and the research of new methods for detection
What You’ll Need:
1. Keep abreast with the advancements and developments in the security industry and perform research to keep our customers secure
2. Develop detection scripts for Tenable’s sensors (Nessus vulnerability scanner and others) based on the research findings
3. Research and develop methods of detection for additional services and products from different vendors
4. Good programming skills: C#, Go, Python
5. Experience with regular expressions
6. Machine Learning/GenAI experience
7. Ability to operate independently with minimal supervision as well as collaborate and work with others as part of the larger research team.
8. Experience working with multiple operating systems (proficiency with Linux a must)
9. Outstanding written and verbal communication skills
10. Strong attention to detail and able to shift priorities as needed
11. Willingness to explore and learn
12. B.S. degree in Computer Science or a related field, or equivalent work experience
13. At least 2 years of R&D experience
14. Proven ability to independently research and publish findings in the cybersecurity domain space
And Ideally:
1. Experience with security standards and frameworks such as NIST 800-53, CIS, HIPAA, PCI and DISA STIGS
2. Experience with text parsing
3. Experience with Data transformation (XSL/JQ)
4. Experience with REST API usage
5. Experience with systems administration and be comfortable working at the command line
6. Experience implementing security controls
7. One or more security related certifications (e.g. CISSP, CISA, CISM) (Desired)
#J-18808-Ljbffr