WHAT WE DO MATTERS

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

We give the power to every member of the team when we invite all developers, engineers and researchers to our own internal developer off site hackathon, where they compete to create the next great thing – a functional prototype, related to our technology, that makes our operations better.

Your ideas may become a reality – and even change the future of security.

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Web Application Research Engineer

Paris | France

Your Role:

We are looking for an engineer to join our research team in EMEA.  This role will be a remote role based in Paris. The role will involve developing scripts to detect vulnerabilities in web applications. The development will be in Ruby so experience in Ruby or Python is a must.

Your Opportunity:

  • Develop exploits, proof-of-concepts for web application vulnerabilities
  • Develop new plugins to detect web application vulnerabilities
  • Enhance existing plugins to improve detection of web application vulnerabilities
  • Analyse vulnerabilities in web applications through dynamic and static analysis
  • Analyse commercial and open source off-the-shelf web application for research and publication purpose
  • Installing vulnerable/non-vulnerable versions of web applications
  • Work with customer support to resolve false positive/negative reports
  • Manage, participate in, or directly work on any additional projects, assignments, or initiatives as assigned
  • Drive innovation by coming up with new ideas for our products and processes

What you'll need:

  • B.S. degree in Computer Science or a related field
  • 3-4 years of programming experience in Ruby or Python
  • In depth understanding of web application security vulnerabilities, detection and exploitation techniques
  • Understanding of Web Services technologies such as XML, SOAP, and AJAX
  • Web Server configuration knowledge: Microsoft IIS, Apache HTTP Server, Apache Tomcat
  • Strong programming skills in Ruby or Python
  • Outstanding written and oral communication skills
  • Experience with pentesting web applications
  • Research and/or development experience with web application security assessment tools
  • Experience working with OWASP Top 10, CVE, and other vulnerability taxonomy/classification systems
And ideally:
  • Experience with one or more web application security assessment tools such as BurpSuite, Arachni, sqlmap, w3af, sqlninja, and others
We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels.

Apply for this position

Sign in with LinkedIn
Autofill my information with LinkedIn
Email me about jobs like this

Not ?

Thank you

People like you also viewed

Vulnerability Research Engineer

Tokyo, Osaka, Sapporo Tokyo Japan Tokyo, Osaka, Sapporo, Tokyo, Japan Research Research & Development
Your Role:Tenable is looking for an engineer to join our research team. This position will involve researching existing vulnerabilities, looking for new vulnerabilities, and developing scripts to detect vulnerabilities. The development will be in ...

Vulnerability Research Engineer

Tokyo, Osaka, Sapporo Tokyo Japan Tokyo, Osaka, Sapporo, Tokyo, Japan Research Research & Development
Your Role:Tenable is looking for an engineer to join our research team. This position will involve researching existing vulnerabilities, looking for new vulnerabilities, and developing scripts to detect vulnerabilities. The development will be in ...

Senior Software Engineer - C/C++

Dublin Dublin Ireland Dublin, Ireland Sensors Research & Development
Your Role:Tenable is looking for a Senior Software Engineer to join the Sensors Shared Infrastructure Engineering team to shape and execute on building shared components for all data acquisition sensors. This is an opportunity for high impact and ...

Security Consultant - Australia

Sydney Australia Sydney, Australia Professional Services Professional Services
Your Role:Tenable's Professional Services organization is looking for a Security Consultant responsible for working with clients on Tenable product installation, configuration, customization, operations, advice, troubleshooting, and product knowle...

Vertriebsingenieur

Munich Bavaria Germany Munich, Bavaria, Germany Sales Sales
Ihre Aufgabe:Der Vertriebsingenieur unterstützt den Standort Deutschland und arbeitet mit Produktion, Technik, Forschung und Entwicklung sowie externen Vertriebsfirmen zusammen, um zu ermitteln, wie Tenable-Produkte und -Dienstleistungen gestaltet...

Senior Software Engineer

Dublin Dublin Ireland Dublin, Ireland Cloud Platforms Research & Development
Your Role:Tenable is looking for a brilliant Senior Software Engineer to help us build microservices for our cloud-based cyber exposure platform. Are you an engineer who seeks interesting problems to solve, who pushes themselves and their team to ...

Alert me about jobs like this

Sign in with LinkedIn
Autofill my information with LinkedIn

Not ?

Thank you

Apply for this position.

Sign in with LinkedIn
Autofill my information with LinkedIn
Email me about jobs like this

Not ?

Thank you

Tenable is more than ‘just’ the creator of Nessus. Our security solutions - including our first cyber exposure platform for modern assets, Tenable.io - are transforming global vulnerability management. We’re a global team, powered by creative thinkers who are wired for action, focused on delivering results and collaborating to enable decisive actions to protect what matters most. We’re in this together - colleagues, customers and partner communities working as One Tenable.

Can you join Team Tenable? Yes you can - if you’re excited by the thought of working with over 1000 colleagues, 24,000 customers and a range of revolutionary products that are shaping cybersecurity in 150 countries. Being valued for who you are as well as what you do, you can embrace the pace (we’re recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte and E&Y) as well as enjoy a superb rewards package (we’re seen as a Best Places to Work by Glassdoor, The Washington Post, The Baltimore Sun, The Baltimore Business Journal and Expert Marketplace). The key question is: Is This You?