Senior Offensive Security Engineer

US - CA - Carlsbad, US - CA - San Francisco, US - DC - Washington Ref #13308 12-Oct-2022

Job Description

One team. Global challenges. Infinite opportunities. At Viasat, we’re on a mission to deliver connections with the capacity to change the world. For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries around the globe communicate. We’re looking for people who think big, act fearlessly, and create an inclusive environment that drives positive impact to join our team.

Job Responsibilities

  • Threat Intelligence Research: lead the charge on analyzing cybersecurity attacks including RF against Software Defined Radios, trends, and methodologies using unclassified/classified Threat Intelligence. This includes working with government/academic/commercial researchers and institutions, operational technology research labs, commercial companies and public and private cybersecurity information sharing groups (e.g., ISACs) to research and investigate in more detail vulnerabilities including zero days and techniques that could impact critical national infrastructure, defense, and our networks. Collaborate with a cross-functional team of the engineering, data science, product management, product marketing, and senior leadership to enhance the company’s detection and response capabilities. 
  • Active and hands-on participation in Red Team Exercises and Penetration Testing: employ simulated adversary threat-based approaches to expose and exploit vulnerabilities and weaknesses to improve the security of both ours and customer products and networks. Replicate tactics and techniques used by modern attackers, common network exploitation and penetration techniques as well as common software exploitation techniques. Develop attack plans to meet the specified objectives and coordinate with other Red Team Operators to achieve these goals. Provide constructive feedback to the defenders and product teams on their successes and failures.  Make automation and security assessment tool development and implementation recommendation that assist with Red Team exercises and Penetration Testing. 
Requirements
  • Engineering, Physics, Mathematics, Computer Science Degree, or other technical degree
  • Proficiency in PowerShell, Python, C, C#, Go or other to build and extend toolsets 
  • Experience with network security test tools and scanners ranging from nmap, Netsparker, Nessus, to Metasploit and Cobalt Strike
  • Understanding of networking protocols with a preference for secure ones like  SSH, HTTPS, TLS, IpSec, and others
  • Familiarity with Digital Signal Processing and/or RF telecommunications with a preference for experience with SATCOM using GNURaio or MatLab
  • Understanding of security vulnerabilities and common software engineering flaws Infrastructure, product, and/or application level penetration or Red Team testing experience Knowledge of attacker lifecycles and defender strategies 
  • A desire for continued learning, research, and expansion of skillsets essential to the role
  • A Subject Matter Expert for Red Team/Penetration Testing activities, technologies, and tools
  • Must have the ability to maintain an “Aggressive, Outsider Mindset” to “Think like an Attacker”Experience with Linux/embedded Linux/RTOS 
  • Active Secret clearance 
  • Occasional Travel up to 10%
  • US citizenship

Preferences
  • Advanced offensive security certifications (i.e., OSCP/OSEP)
  • SW engineering experience
  • Developing custom exploits
  • White box testing and exploitation analysis using source code analysis
  • Black box testing and exploitation analysis using reverse engineering and protocol fuzzing
  • Active TS/SCI clearance 
  • Experience with reverse engineering products and/or software
  • Experience with satellite communications systems/terminals
  • Experience with Software Defined Radio tools such as GNURadio
  • Experience with Operational Technology (OT) assessments
  • Demonstrate proficiency in system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structure Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
  • Excellent written and verbal communication skills with the ability to communicate at a technical and business user level
If the Federal Executive Order for Government Contractors becomes effective, this role may require vaccination. In such instance, absent an approved accommodation based on a religious or medical reason, employees in this role will be required to be fully vaccinated no later than applicable deadlines, which are unknown at this point. Viasat will strive to give individuals as much notice as practicable if a vaccine mandate becomes applicable to this role. 

To learn more about this site and other office locations, please click here!

#LI-RA1

Additional Requirements and Information

Minimum Education
Bachelors Degree
Years of Experience
5-8 years
Travel
Up to 10%
Citizenship
US Citizenship required
Clearance
Active United States Secret Clearance
Worker Classification
Employee
At Viasat, we consider many factors when it comes to compensation, including the scope of the position as well as your background and experience. For United States-based jobs only: The pay range for this position is $157450 to $255650 annually; however, base pay may vary within this range depending on location, job-related knowledge, skills, and experience. Additional cash or stock incentives may be provided as part of the compensation package, in addition to a range of medical, financial, and/or other benefits, dependent on the position offered.  Learn more about Viasat’s comprehensive benefit offerings that are focused on your holistic health and wellness.
157450
255650

Back to search jobs

Viasat is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.

If you would like to request an accommodation on the basis of disability for completing this on-line application, please click here.