Product Security Engineer -entry level

Job Title: Product Security Engineer - must be fluent in English

Job Description:

The Product Security Incident Response Team is looking for a Product Security Engineer to handle product security related incidents and perform vulnerability research on Fortinet products. This is an entry-level role, ideal for someone looking to enter the PSIRT and threat research industry. On-the-job training by peers will be provided.

Responsibilities:

1. Support the management of the inbound PSIRT Queue, allocating tickets to engineers, and ensuring the tickets are handled in a timely manner.
2. Triage incidents, answer questions they may raise, test for vulnerabilities they may signal, investigate source code and create (then follow up on) incidents on the Incident Management System when necessary.
3. Escalate to senior analyst when incident falls out of the field of competence/knowledge.
4. Find and report unknown vulnerabilities in Fortinet products via black box analysis, fuzzing, and source code auditing.

Skills and Experience:

Good understanding of Fortinet products line-up would be advantageous along with a solid security background/understanding. Understanding of asymmetric cryptography, scripting knowledge, high proficiency in C language, must be detail-oriented and able to follow processes thoroughly. Good understanding of vulnerabilities at source code level and some experience in vulnerability scanning tools. Experience in pentesting methodologies and/or fuzzing tools a plus.

Education:

BS in Computer Science or equivalent preferred. MS in Computer Science preferred.

#J-18808-Ljbffr