Samsung Research America
Senior Engineer, Software Security
Samsung Research America, Mountain View, California, us, 94039
Lab Summary:
The Development QA(DQA) lab in Mountain View has a dual role that is first to research new automation tools as well as take current tools and refine them to our needs. Second, act as a centralized QA group to provide quality assessment by creating comprehensive E2E test strategy for various Endpoint security solution developed.
This duality provides a unique opportunity to explore new concepts in different technologies and perform original research in quality domain.
More details about project : Samsung Knox
Position Summary:
We are looking for a penetration tester, that conducts pre-authorized simulated cyberattacks on our groundbreaking B2B enterprise products and services to test system resilience.
In this role, you will conduct offensive security operations to emulate adversary tactics and procedures to test preventative, detective, and response controls across the global technology landscape. You will use your expertise to help influence technology decisions and work as part of a team to create consistent approaches to the offensive security processes and techniques.
Our ideal candidate is a creative thinker and an excellent communicator who is comfortable working in a demanding, fast-paced environment. If you have a passion for security and a strong understanding of the latest technologies, we want to hear from you!
Responsibilities: Develop expertise in our product solutions, deep diving into design/architecture, & execute white box and black box penetration scenarios Plan, scope and conduct vulnerability assessment/ Penetration test on internal / external facing public assets such as Web application, Android platform, Android Apps, Backend APIs, and Cloud services Research & and conduct adversary simulation for known security threats and identify novel attack vectors to test a system's relative security readiness Conduct Threat modelling, Threat Intelligence and scoping with stakeholders Assist in creating and maintaining internal penetration testing and practice within QA team Build Test harness & required Automation suites and validate attack vectors in Threat Lab Creating and targeting journals publications on security research Vulnerability logging and tracking until closure Co-ordinate with program management, security architects at Internal & offshore sites Stays up to date on current tools, technologies, and vulnerabilities to incorporate into testing practices Research and developing exploits for zero-day vulnerabilities Conduct secure source code analysis on products and services Required Skills:
BS in Cyber Security or Security relevant disciplines or equivalent combination of education, training and experience 5+ years' experience in Penetration testing including 2+ year experience in Android and 1+ year experience in Web Application Comprehensive knowledge in Information Security practices on malware, phishing attacks, attack vectors and methods to protect against threats Certifications in offensive security: OSCP or OSWA or OSWE or CRTO or BSCP or similar Extensive Knowledge in Java or C or any relevant programming language Special Attributes:
Experience in Endpoint security platforms History in cyber security competitions or CTFs Blogpost on security research, walkthroughs or PoCs on security domain Malware development or reverse engineering experience Experience testing Endpoint Detection & Response (EDR), Extended Detection & Response (XDR) platforms, Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR) or related products
Our total rewards programs are designed to motivate and engage exceptional talent. The base pay range for roles at this level is listed below, but may be higher or lower in other states due to geographic differentials in the labor market. Within the base pay range, individual rates depend on a number of factors-including the role's function and location as well as the individual's knowledge, skills, experience, education and training. This is part of our comprehensive compensation package with annual bonus eligibility and generous benefits to help you live life well.
Base Pay Range
$126,200-$173,450 USD
Additional Information
Be careful not to disclose information related to the trade secrets of your previous or current employer(s)
Essential Job Functions
This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, and frequently operate standard office equipment, such as telephones and computers.
Samsung Research America is committed to complying with all Federal, State and local laws related to the employment of qualified individuals with disabilities. If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact the recruiter or email sratalent@samsung.com.
Affirmative Action / Equal Opportunity
Samsung Research America is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability, or status as a protected veteran.
For more information regarding protection from discrimination under Federal law for applicants and employees, please refer to the links below.
Know Your Rights | Pay Transparency
The Development QA(DQA) lab in Mountain View has a dual role that is first to research new automation tools as well as take current tools and refine them to our needs. Second, act as a centralized QA group to provide quality assessment by creating comprehensive E2E test strategy for various Endpoint security solution developed.
This duality provides a unique opportunity to explore new concepts in different technologies and perform original research in quality domain.
More details about project : Samsung Knox
Position Summary:
We are looking for a penetration tester, that conducts pre-authorized simulated cyberattacks on our groundbreaking B2B enterprise products and services to test system resilience.
In this role, you will conduct offensive security operations to emulate adversary tactics and procedures to test preventative, detective, and response controls across the global technology landscape. You will use your expertise to help influence technology decisions and work as part of a team to create consistent approaches to the offensive security processes and techniques.
Our ideal candidate is a creative thinker and an excellent communicator who is comfortable working in a demanding, fast-paced environment. If you have a passion for security and a strong understanding of the latest technologies, we want to hear from you!
Responsibilities: Develop expertise in our product solutions, deep diving into design/architecture, & execute white box and black box penetration scenarios Plan, scope and conduct vulnerability assessment/ Penetration test on internal / external facing public assets such as Web application, Android platform, Android Apps, Backend APIs, and Cloud services Research & and conduct adversary simulation for known security threats and identify novel attack vectors to test a system's relative security readiness Conduct Threat modelling, Threat Intelligence and scoping with stakeholders Assist in creating and maintaining internal penetration testing and practice within QA team Build Test harness & required Automation suites and validate attack vectors in Threat Lab Creating and targeting journals publications on security research Vulnerability logging and tracking until closure Co-ordinate with program management, security architects at Internal & offshore sites Stays up to date on current tools, technologies, and vulnerabilities to incorporate into testing practices Research and developing exploits for zero-day vulnerabilities Conduct secure source code analysis on products and services Required Skills:
BS in Cyber Security or Security relevant disciplines or equivalent combination of education, training and experience 5+ years' experience in Penetration testing including 2+ year experience in Android and 1+ year experience in Web Application Comprehensive knowledge in Information Security practices on malware, phishing attacks, attack vectors and methods to protect against threats Certifications in offensive security: OSCP or OSWA or OSWE or CRTO or BSCP or similar Extensive Knowledge in Java or C or any relevant programming language Special Attributes:
Experience in Endpoint security platforms History in cyber security competitions or CTFs Blogpost on security research, walkthroughs or PoCs on security domain Malware development or reverse engineering experience Experience testing Endpoint Detection & Response (EDR), Extended Detection & Response (XDR) platforms, Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR) or related products
Our total rewards programs are designed to motivate and engage exceptional talent. The base pay range for roles at this level is listed below, but may be higher or lower in other states due to geographic differentials in the labor market. Within the base pay range, individual rates depend on a number of factors-including the role's function and location as well as the individual's knowledge, skills, experience, education and training. This is part of our comprehensive compensation package with annual bonus eligibility and generous benefits to help you live life well.
Base Pay Range
$126,200-$173,450 USD
Additional Information
Be careful not to disclose information related to the trade secrets of your previous or current employer(s)
Essential Job Functions
This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, and frequently operate standard office equipment, such as telephones and computers.
Samsung Research America is committed to complying with all Federal, State and local laws related to the employment of qualified individuals with disabilities. If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact the recruiter or email sratalent@samsung.com.
Affirmative Action / Equal Opportunity
Samsung Research America is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability, or status as a protected veteran.
For more information regarding protection from discrimination under Federal law for applicants and employees, please refer to the links below.
Know Your Rights | Pay Transparency