Security Engineer, Attack Surface Intelligence

With 1,000 intelligence professionals, over $300M in sales, and serving over 1,900 clients worldwide, Recorded Future is the world’s most advanced, and largest, intelligence company!

Security Engineer, Attack Surface Intelligence

With 1,000 intelligence professionals, over $300M in sales, and serving over 1,800 clients worldwide, Recorded Future is the world’s most advanced, and largest, intelligence company. Now part of Mastercard but still operating independently, Recorded Future is at the leading edge of not only cyber intelligence, but also providing intelligence data at the forefront of one of the largest global payment networks.

We are seeking a highly skilled and motivated Security Engineer to work on the development of the threat and vulnerability signatures that go into our Internet scanning platforms within the Attack Surface Intelligence group, on the Threat Research and Active Collection of Exposures (TRACE) team and Signature Engineering and Exposure Development (SEED)  sub-team. The ideal candidate will have experience in large security-related projects, serving as an individual contributor. This position requires excellent communication skills to coordinate seamlessly with principal engineers, junior engineers, and DevOps teams for iterative development and deployment of updates.

What You'll Do: 

• Design, develop, and optimize new and existing components of the signature library that feeds our scalable Internet scanning platform with a global reach.
• Contribute to the development of automations for our signature generation capabilities.
• Collaborate closely with cross-functional teams to ensure seamless integration and deployment of new features and updates.
• Regularly communicate project status, challenges, and insights to the principal engineer and your manager.
• Participate in technical discussions and initiatives aimed at improving our scanning technologies and processes.
• Leverage experience in computer networking and cybersecurity to enhance the security data collections of our platform.

What You'll Bring: 

• 3-5+ years of experience in software or security engineering, ideally in an Enterprise SaaS,Cybersecurity, or Computer Networking vendor.
• Solid grasp of vulnerability classification, CVSS/EPSS scoring, and exploitation techniques, with the ability to understand the vulnerable condition and how it might be exploited.
• Production-level development experience in Python or Go.
• Passion for automation going beyond building things, but making them efficient, observable, reliable, and a human-in-the-loop is only where necessary. 
• Demonstrated experience working in and building on top of AWS services.
• A built-in desire for systems you build and maintain to monitor them, build dashboards, view and analyze logs for alerting, and compile metrics for improving performance.
• Extensive familiarity with the TCP/IP protocol stack, including application of concepts from HTTP, DNS, SSL, WHOIS, and other artifacts needed for technical reconnaissance and discovery.
• Hands-on experience with Git (or similar VCS) and collaborative development workflows.
• Ability to analyze and take action on internal and customer escalations that cannot be solved by our support teams.
• Strong regular-expression skills for precise pattern matching and extraction.
• Solid understanding of software development principles, design patterns, testing, and best practices.
• Bachelor’s degree in Computer Science, Cybersecurity, Software Engineering, or a related field, or equivalent work/education experience.
• Excellent problem-solving and troubleshooting skills, with the ability to work under minimal supervision.
• Strong interpersonal skills, with the ability to effectively communicate complex technical concepts into clear, actionable language for engineers, executives, and customers.
• Strong English language skills are a must.

Preferred Qualifications : 

• Any familiarity with cybersecurity principles and the unique challenges of developing cybersecurity products
• Any familiarity with things like portscanning, vulnerability scanning, or signature development
• Any familiarity with red-teaming tools, such as Metasploit, Impacket, and familiarity with offensive frameworks and adversary emulation platforms.
• Experience building and deploying vulnerability detections and signatures to security products.
• Any familiarity with enterprise security products related to Recorded Future’s offerings

Why should you join Recorded Future?
Recorded Future employees (or “Futurists”), represent over 40 nationalities and embody our core values of having high standards, practicing inclusion, and acting ethically. Our dedication to empowering clients with intelligence to disrupt adversaries has earned us a 4.8-star user rating from Gartner and more than 45 of the Fortune 100 companies as clients.

Want more info? 
Blog & Podcast: Learn everything you want to know (and maybe some things you’d rather not know) about the world of cyber threat intelligence
Linkedin, Instagram & Twitter: What’s happening at Recorded Future
The Record: The Record is a cybersecurity news publication that explores the untold stories in this rapidly changing field
Timeline: History of Recorded Future
Recognition: Check out our awards and announcements

We are committed to maintaining an environment that attracts and retains talent from a diverse range of experiences, backgrounds and lifestyles.  By ensuring all feel included and respected for being unique and bringing their whole selves to work, Recorded Future is made a better place every day.

If you need any accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to our recruiting team at careers@recordedfuture.com 

Recorded Future is an equal opportunity and affirmative action employer and we encourage candidates from all backgrounds to apply. Recorded Future does not discriminate based on race, religion, color, national origin, gender including pregnancy, sexual orientation, gender identity, age, marital status, veteran status, disability or any other characteristic protected by law.

Recorded Future will not discharge, discipline or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant.

Recorded Future does not administer a lie detector test as a condition of employment or continued employment. This is in compliance with the law of the Commonwealth of Massachusetts, and in alignment with our hiring practices across all jurisdictions.

Notice to Agency and Search Firm Representatives:
Recorded Future will not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to Recorded Future, including those sent to our employees or through our website, will become the property of Recorded Future. Recorded Future will not be liable for any fees related to unsolicited resumes.

Agencies must have a valid written agreement in place with Recorded Future's recruitment team and must receive written authorization before submitting resumes. Submissions made without such agreements and authorization will not be accepted and no fees will be paid.