Security Engineer 3 - DL1013419

Security Engineer 3

Location: Kanata, Canada

You will be a Security Engineer in the Cybersecurity R&D team at Juniper Networks. Our mission is to ensure that all Juniper products are sufficiently secure to operate safely in their intended environments. To this end, we create reference designs and code for software and firmware security features. We also conduct original research and evangelize security engineering practices across the company working against both short-term and long-term goals, with a high tolerance for ambiguity. This is an opportunity to change the world, for the better.

Responsibilities:

• Participate in penetration testing of Juniper products to identify security vulnerabilities, risks and mitigations
• Reviewing functional specifications of the various solutions/products and provide constructive feedback to help elevate the security posture
• Provide expert guidance/consulting to internal customers (product teams) on developing secure architectures
• Analyze external reports of security vulnerabilities in our products and work on a proof of concept along with mitigation plan
• Reviewing source code for potential security issues
• Work on security guidelines/baselines for common security architecture issues
• Develop tools and exploits to support security test automation and penetration testing
• Develop tools to track and monitor common security factors across the portfolio of products
• Develop and deliver training materials and perform general security awareness and specific security technology training
  

Qualifications:

• A genuine passion for building effective and pragmatic security
• MS in CS/CE with a specialized focus in Cybersecurity or 6+ years of relevant experience in the field
• Proven track record of finding zero days/CVEs
• Industry exposure to and knowledge of Cloud security, Network security and Applied cryptography
• Strong understanding of past, current, and emerging security exploits
• Strong knowledge of hypervisor design, virtualization and architecture
• Knowledge of threat modeling or other risk identification techniques
• Understanding of Web Application Security
• Understanding of SDN/NFV space
• Knowledge of network and web related protocols (e.g., TCP/IP , UDP , IPSEC, HTTP , BGP and other routing
  protocols)
• Experience and understanding of Cloud orchestration technologies like Kubernetes, Openstack,
  Microservices, Docker
• Experience and understanding of virtualization techniques like KVM, VMware/ESXi
• Experience with AWS products and services
• Cybersecurity-related certification(s), including OSCP, OSEP, CEH, GXPN and GPEN is a plus
• Programming experience in the following but not limited to : C/C++, Java, Python, Go, Rust
• Strong scripting skills in one or more of the common languages (e.g., Perl, Python, Ruby, shell scripting)
• Excellent problem solving skills
• Excellent written and verbal communication skills