There are security focused conferences (both top-tier and flagship) where you should prioritize to publish your work. Then, there are system and software conferences (individual top-tier) which are probably good choice to publish your research too. I listed the conferences by categories:
Top-tier Security Conference
* IEEE Symposium on Security and Privacy (S&P/Oakland)
* ACM Computer and Communications Security (CCS)
* USENIX Security Symposium (USENIX Security)
Flagship Security Conference
* Network and Distributed System Security Symposium (NDSS)
* IEEE European Symposium on Security and Privacy (EuroS&P)
Top-tier Software Conference
* International Conference on Software Engineering (ICSE)
* Conference on the Foundations of Software Engineering (FSE)
* Symposium on Programming Language Design and Implementation (PLDI)
Top-tier System Conference
* ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)
* USENIX Symposium on Operating Systems Design and Implementation (OSDI)
* Symposium on Operating Systems Principles (SOSP)
* USENIX Annual Technical Conference (USENIX ATC)
* European Conference on Computer Systems (EuroSys)
Professional Security Conference
* BlackHat
* DefCon
* Security Analyst Summit
* RSA Conference
