VMware Security Researcher in Palo Alto, California

The number and severity of security incidents continues to grow, and it’s not because organizations aren’t spending enough money on IT security. In fact, we are spending more than ever on security solutions - however security losses continue to outpace the investment companies are making. Traditional IT security needs an overhaul that looks at ways security can be an integrated part of the infrastructure vs. an afterthought. Virtual infrastructure platforms are an ideal place for this level of product integration between infrastructure and security.

The VMware Security Products Group (SPG) is looking for a Security Researcher to focus on defining and delivering the next-gen security products. VMware SPG is a new and exciting team within the Networking and Security Business Unit (NSBU), focused on building new security solutions for the software-defined data center. The NSBU is the fastest growing business within the VMware portfolio.

As a Security Researcher, you will play an integral role in defining the direction of our security portfolio. You will work in an exciting and engaging agile startup environment where you will be encouraged to test your creative boundaries, share new ideas, and act as an external face to the security community. You will engage with the product and engineering team to bring understanding of the latest security incidents and most appropriate areas for VMW to focus on. You must be a hands on researcher, comfortable with speaking externally, working closely with product and engineering leadership, and potentially engaging with customers and partners about the value of our solutions.

Responsibilities

  • Conduct research on the latest threat landscape to provide insights in how to advance the malware detection capability of the VMW platform

  • Test our products against known malware samples to demonstrate their effectiveness or areas for improvement

  • Work closely with product and engineering leadership to incorporate your research findings on the threat landscape into the product roadmap

  • Publish/speak externally about the use of hypervisor-based security methodologies and their effectiveness

  • Be a primary interface to the virtual machine monitor (VMM) team to help design/prototype/evaluate new hypervisor features that improve our malware detection capability

Requirements

  • 5+ years of Security Research or Malware Analysis

  • BS or MS degree in Computer Science or other technical discipline

  • Prior publications on security or malware research

  • Prior speaking engagements at security focused conferences such as Black Hat or RSA Conference

  • Deep technical aptitude

  • Excellent oral and written communication, presentation, and analytical skills

  • Possess a very high level of comfort in working and interfacing with developers on product requirements

  • Familiarity with the Agile development process

Bonus

  • Prior experience as an engineer or security administrator

  • Endpoint or OS security expertise

  • Familiarity with hypervisor or cloud environments

  • Experience with malware analysis tools such as:

  • Metasploit

  • Kali Linux

  • IDA pro

  • Etc

  • Understanding of Machine Learning techniques for detecting malware or anomalous activity

VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. VMware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.