Vunerability Researcher ( Full Time Permanent Position) Job
View all jobs from this company

<< Go back

Post Date: Jan 24, 2018
Job Type: Full time
Start Date: - n/a -
Salary: - n/a -
Location: CAN - British Columbia - Vancouver
Job Reference: 2853510
    Email Job to a Friend
    Save Job to Inbox
    Printer Friendly

Job Number: 2853510
Business: GE Digital
Business Segment: Digital Predix Products & Technology
About Us: Wurldtech is a subsidiary of GE Digital and we are focused on protecting the critical infrastructure that we all rely on in our daily lives. We take our job responsibility seriously and love to play with technology, but we also believe in finding the right work-life balance by having flexible work schedules and providing a great collaborative work environment at a convenient downtown location in Vancouver. Being part of the GE family means we are in great company working on solving problems in energy, healthcare, transportation, manufacturing at a time where increased connectivity is creating new value and new opportunities. We are looking for passionate people to join us and be part of this exciting time as make infrastructure more secure and advance the industries critical to the world we live in.
Salary: CAD$88,000 - CAD$125,000
Great Benefits package offered.
Posted Position Title: Vunerability Researcher ( Full Time Permanent Position)
Career Level: Experienced
Function: Digital Technology
Function Segment: Cyber Security
Location: Canada
U.S. State, China or Canada Provinces: British Columbia
City: Vancouver
Postal Code: V7X 1J1
Relocation Assistance: No
Role Summary/Purpose: You will work as a part of Wurldtech’s Vulnerability Research Team performing in depth static and dynamic analysis of systems to identify the root causes of the inner workings of information systems vulnerabilities that we can use to protect our customers. This is a research focused group and considerable time is given to investigate new tools and techniques that may improve our capabilities.
Essential Responsibilities:
- Assess and investigate specific threats to an information system in terms of severity and impact

- Use disassemblers, debuggers, and other assembly level tools to perform analysis of compiled binary files (usually x86/64, occasionally ARM or other architectures)

- Create detailed reports on vulnerabilities, bugs, and design flaws found in industrial information systems

- Create IPS/IDS rules and other mitigations to protect vulnerable systems
- Bachelor’s Degree in computer science/engineering + 6 years related security experience, or Masters in computer science /engineering and 4 years

- Proficient in the use of IDA or other equivalent Disassembler

- Experience with vulnerability classes such as memory corruption, heap overflows, use after free (UAF), or type confusion

- Experience with one or more of: fuzzing, dynamic instrumentation, hardware level virtualization/reference counting

- Ability to use Wireshark to capture and analyze network traffic and a strong knowledge of TCP/IP networking

- Programming skills in one or more languages (we develop using Python, LUA, C, and Java)

- Ability to travel up to 5%

- Must be willing to work out of an office located in Vancouver, Canada
Additional Eligibility Qualifications:
Desired Characteristics:
- Hands-on experience working with Windows and Linux based systems

- Ability to understand machine language, operating systems, common APIs, libraries and runtime environments and how they interact with hardware, firmware, and binary code

- Familiar with digital electronics and microcontrollers

- Exposure to SCADA/DCS systems or industrial technologies

- Knowledge of VxWorks, Windows CE, Embedded Linux, or other RTOS

- Understanding of IDS/IPS technologies such as Snort, Suricata, or BRO

Powered by JOBBEX®