RemoteLeaf Logo
Log in Sign up

Cleared Vulnerability Research Engineer

2 weeks, 6 days ago
United States
Full-time
Lead
Research Scientist
Software Development
Assembly C Python
Apply Now
Bugcrowd

Bugcrowd

Bugcrowd provides a crowdsourced cybersecurity platform that connects organizations with elite security researchers to enhance security measures through managed bug bounty programs, penetration testing, and vulnerability disclosure initiatives.

Internet Software & Services
1K-5K
Founded 2012
$79M raised
View All Jobs 20

Description

  • Design, develop, and validate novel vulnerability discovery and exploitation capabilities against complex software and systems.
  • Perform expert reverse engineering of binaries at the x86-64, ARM64, and related architecture levels using industry-standard tools.
  • Identify and exploit real-world vulnerability classes such as use-after-free, type confusion, integer truncation, and buffer overflow.
  • Discover new vulnerabilities in complex systems rather than only exploiting known issues.
  • Apply current vulnerability research to uncover new instances of known vulnerability classes.
  • Use both manual analysis and automated techniques such as fuzzing for vulnerability discovery.
  • Code and debug complex functions in C, Python, and Assembly.
  • Independently scope, research, experiment, validate, and iterate on research objectives.
  • Travel to customer sites and perform work on-site for extended periods as required.

Requirements

  • Experience with reverse engineering binaries using tools such as Binary Ninja, Ghidra, or IDA Pro.
  • Strong understanding of stack and heap objects and exploit-relevant vulnerabilities.
  • Demonstrated ability to discover new vulnerabilities in complex systems.
  • Experience with both manual analysis and automated vulnerability discovery techniques such as fuzzing.
  • Ability to code and debug in C, Python, and Assembly for x86-64, ARM, and similar environments.
  • Ability to independently translate an under-defined mission objective into a concrete technical capability.
  • Comfort operating with minimal supervision and incomplete problem definitions.
  • TS/SCI clearance required; inactive SCI is acceptable if SCI-clearable.
  • Ability to travel to customer sites as required and work on-site in cleared spaces for extended periods.
  • Experience with exploit development and vulnerability research is strongly implied as a core qualification.

Benefits

  • Base salary range of $154,800 to $193,500.
  • Eligibility for a discretionary bonus program or commission plan based on individual and organizational performance.
  • Remote work-from-home arrangement with travel to a customer location in Alabama.
  • Reasonable accommodations available for qualified individuals with disabilities.
  • Comprehensive background check process for positions involving sensitive information.
  • Opportunity to work in a collaborative, inclusive environment that values diverse backgrounds and perspectives.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Klaviyo

Lead Security Engineer, Enterprise Security

Klaviyo 1K-5K IT Services

Klaviyo is hiring a Lead Security Engineer to secure its corporate systems and platforms across SaaS, identity, endpoints, Zero Trust networking, and perimeter security.

United States Full-time Lead Security Engineer
$175k-$263k
AWS Azure Cloudflare CrowdStrike GCP OAuth Secrets Management Terraform Vercel
1 hour, 50 minutes ago
Anduril Industries

Head of Classified Infrastructure, Frontier Systems

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is seeking a senior security leader for its Frontier Systems team to shape and execute classified infrastructure and information security strategy for defense and intelligence programs.

United States Full-time Lead Infrastructure Engineer Security Engineer
$166k-$220k
Cybersecurity Penetration Testing
2 hours, 8 minutes ago
Capital Rx

Director, Cloud Security

Capital Rx 251-1K Health Care Providers & Services

Judi Health is hiring a Director of Cloud Security to lead AWS cloud security strategy and engineering execution for a healthcare technology platform focused on compliance, resilience, and AI enablement.

United States Full-time Lead Security Engineer
$184k-$240k
AWS CI/CD HIPAA Kubernetes Machine Learning Python Shell Scripting SIEM Terraform
2 hours, 10 minutes ago
Upstart

Senior Security Engineering Manager, Enterprise Security

Upstart 1K-5K Banks

Upstart is hiring a Senior Security Manager to lead enterprise security engineering efforts that reduce risk across corporate systems, cloud environments, and security operations.

United States Full-time Lead Program Manager Security Engineer
$191k-$264k
AWS CI/CD Kubernetes SIEM
2 hours, 32 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers