XM Cyber
  • 9 active jobs (view)

  • Published: June 7, 2022
Category
Job Type
Level of education
Undergraduate
Spoken Language needed
Hebrew
Level of Hebrew
Fluent
Location of job
Herzliya
How many relevant years experience do you require for the role:
More than 3 years

Description

XM Cyber is an award-winning company that develops a multi-platform breach and attack simulation (BAS) solution that continuously exposes attack vectors threatening organizations' critical assets and provides them with prioritized, actionable remediation. The XM Cyber platform enables companies to rapidly prioritize and respond to cyber risks affecting their business-sensitive systems. XM Cyber is looking for a technical and talented hands-on Research Team Leader. Lead a core team of experts responsible at discovering new attack techniques on enterprise and cloud environments. At XM Cyber, you’ll be faced with complex security challenges and hands-on opportunities, simulating real-world targeted attacks, through the perspective of an advanced threat actor. Our main goal is to help our customers protect their environments through comprehensive real world automated testing. You are expected to quickly grasp new information and investigate new attack vectors. You will be expected to lead security researcher and deep dive into new security tactics, techniques and procedures (TTPs) and properly assess their value to the product. Your Day To Day Will Be:

- Mentor the team members and technical staff
- Research and analyze n-day vulnerabilities
- Research attack vectors on different operating systems
- Research IaaS and SaaS attack vectors on multiple cloud providers
- Define mitigation steps for attack techniques
- Collaborate with the development and product team to implement identified attacks and techniques
- Define mitigation steps for attack techniques

Requirements

- 5+ years of software PT/red team/research or adjacent fields experience
- 2+ years as team leader
- Experience in developing, extending, or modifying exploits, shellcode or exploit tools
- Strong knowledge of current adversary techniques, tactics, and procedures
- Knowledge of common protocols such as HTTP, LDAP, KERBEROS, RPC, SSL, SSH etc.
- Deep and practical Windows, Linux or macOS internals knowledge
- Highly motivated LEADER with a can-do approach and strong interpersonal skills that thrives in a fast-paced startup environment, capable to recruit, train and mentor developers.

Great To Have:

- B.Sc. in Computer Science or equivalent military background
- Experience with AWS/GCP/Azure/Kubernetes
- Experience in developing a security-related SAAS product
- Source code review for control flow and security flaws
- Reverse Engineering skills: familiar with debuggers, disassemblers, protocols and file formats
- Experience with developing in C/C++/Python/C#/NodeJS

Apply
(Check on your spam box)
Drop files here browse files ...

Related Jobs

July 4, 2021