Senior Staff Engineer- Security Research

Our Mission

At Palo Alto Networks® everything starts and ends with our mission:

Being the cybersecurity partner of choice, protecting our digital way of life.

We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish – but we’re not here for easy. We’re here for better. We are a company built on the foundation of challenging and disrupting the way things are done, and we’re looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Disruption is at the core of our technology and on our way of work to meet the needs of our employees now and in the future through FLEXWORK, our approach to how we work. We’re changing the nature of work from benefits to learning, location to leadership, we’ve rethought and recreated every aspect of the employee experience at Palo Alto Networks. And because it FLEXes around each individual employee based on their individual choices, employees are empowered to push boundaries and help us all evolve, together.

Your Career

Bring your network knowledge and research experience to build the latest SaaS Security product. Help us scale our SaaS application research to a very large number of applications and perform manual and automated tests on SaaS applications signatures. We are looking for research engineers who have knowledge on network traffic analysis and very good scripting skills with a keen eye to look at patterns and anomalies on network data. This fast-growing cloud service provides visibility and real time security for SaaS applications such as Box, Dropbox, GitHub, Google Apps, Slack, Salesforce and many more. SaaS Inline Security products provide visibility into all SaaS Application usage in customer environments and subsequently enable them to secure their data flowing between all sanctioned / unsanctioned SaaS app instances. This role will also give you an unrivaled opportunity to build enterprise class cloud security solutions which help provide visibility and security in a continuously growing SaaS Applications world.

Your Impact

• Understand the use cases and work flows of various enterprise SaaS services- perform Deep Packet Analysis of the SaaS App traffic and develop application signatures as per the specification of Palo Alto Network AppID App Engine

• Involve in the complete development life cycle starting with research on various requirements, understand & define functional specs, convert them into solid signatures with high efficacy/quality & measure the efficacy based on production data

• Research the best practice of security posture of the SaaS applications

• Research and make new features as SaaS applications release new security settings or features

• Develop necessary tools to assist with research, development & maintenance of application signatures

• Work closely with the technical support team to handle customer escalations. Analyze the product gaps that resulted in customer issues and improve the signature resiliency and test strategy

• Support our product and development teams with practical knowledge on security posture and security testing

• E2E ownership for a set of SaaS apps from research, signature development, testing, monitoring & maintenance

• Work closely with all stakeholders in various phases of signature development to ensure high quality delivery as per requirements

Your Experience

• B.E /B.Tech /M.Tech degree from a recognised and accredited university/college

• Minimum 5 + years of work experience

• In depth understanding of HTTP/s protocol & web content is must

• Hands-on experience with traffic analysis tools like Wireshark or Fiddler is a must. Also good to have experience using Swagger to test API

• Programming experience in Python is a must- Javascript will be a plus

• Strong understanding of security threats, tactics, procedures, and remediation

• Understand best practices for such as Network setting, Identity and Access Management, logging setting, Firewall configuration

• Familiarity with web data formats like JSON, MIME,XML, HTML

• Good understanding of TCP/IP, SSL/TLS and Deep packet inspection

• Understand and can do research from third party API documentation

• Good Knowledge of best practices to protect SaaS Applications

• Application Admin (Salesforce, ServiceNow, O365, DropBox, Box …) experience is a big plus

• Application security, Offensive Security, Web security, or Bug Bounty hunting experience is a plus

• Experience with web automation tools like Selenium is desired

• Good understanding of security products like Cloud Firewall or Software Web Gateway, Web proxies or cloud security solutions is a big plus

• Experience developing and deploying effective security detection signatures/rules (YARA, Snort, Suricata, auditd rule ... etc.)

• Big Plus if you have CASB, SSPM, CSPM or general SaaS application experience

• Big plus if you have experience with APIs from O365, Salesforce or other SaaS application

The Team

To stay ahead of the curve, it’s critical to know where the curve is, and how to anticipate the changes we’re facing. For the fastest growing cybersecurity company, the curve is the evolution of cyberattacks, and the products and services that proactively address them. Our engineering team is at the core of our products – connected directly to the mission of preventing cyberattacks. They are constantly innovating – challenging the way we, and the industry, think about cybersecurity. These engineers aren’t shy about creating products to solve problems no one has tackled before. They define the industry, instead of waiting for directions. We need individuals who feel comfortable in ambiguity, excited by the prospect of challenge, and empowered by the unknown risks facing our everyday lives that are only enabled by a secure digital environment.

Our engineering team is provided with an unrivaled opportunity to build the products and practices that will support our company growth over the next decade, defining the cybersecurity industry as we know it. If you see the potential of how incredible people products can transform a business, this is the team for you. If you don’t wait for directions, instead, identifying new features and opportunities we have to just get better, this is your new career.

Our Commitment

We’re trailblazers that dream big, take risks, and challenge cybersecurity’s status quo. It’s simple: we can’t accomplish our mission without diverse teams innovating, together. To learn more about our dedication to inclusion and innovation, visit our Life at Palo Alto Networks page and our diversity website.

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics.

Additionally, we are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or an accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com.