Vulnerability Research & Tooling Engineer (Remote)
About the Rol
eWe are looking for a Vulnerability Research & Tooling Engineer to join our Offensive Security Research team. This role sits at the intersection of vulnerability research, exploit development, software engineering, and AI-powered security automation
You will own the lifecycle from vulnerability discovery to detection, conducting 0-day and n-day research while building the Python and LLM-powered tooling that automates exploit validation, vulnerability analysis, and detection generation at scale
This is an ideal opportunity for a security researcher who enjoys both finding vulnerabilities and engineering the systems that operationalize research across large attack surfaces. You'll work on impactful security problems, focusing on critical vulnerabilities that matter to enterprise organizations, while helping shape the future of AI-assisted offensive security
.
What You'll
DoVulnerability Resear
* chConduct 0-day and n-day vulnerability research across web applications, enterprise software, network services, cloud technologies, appliances, and binary target
* s.Perform patch diffing, reverse engineering, root-cause analysis, and vulnerability validation on source-available and binary-only softwar
* e.Reproduce publicly disclosed vulnerabilities and identify opportunities for variant analysis and new vulnerability discover
* y.Develop proof-of-concept exploits to validate impact and improve detection capabilitie
s.Offensive Security Tooli
* ngDesign, build, and maintain internal tooling for automated vulnerability discovery, exploit validation, attack surface analysis, and detection signature generatio
* n.Develop scalable Python-based systems that transform manual research workflows into automated security capabilitie
* s.Create tooling that supports researchers throughout the vulnerability lifecycle, from discovery through remediation validatio
* n.Improve operational efficiency through automation, orchestration, and data-driven workflow
s.AI & LLM Innovati
* onBuild and maintain production-grade LLM-powered workflows for vulnerability research, code analysis, triage, exploit validation, and security automatio
* n.Evaluate emerging AI technologies and identify practical applications within offensive security workflow
* s.Leverage AI to accelerate research output while maintaining technical accuracy and validation standard
* s.Collaborate on the development of next-generation AI-assisted security research capabilitie
s.Detection & Security Intelligen
* ceGenerate high-confidence detection logic and signatures based on vulnerability research finding
* s.Focus on critical vulnerabilities with meaningful security impact, including remote code execution, authentication bypass, privilege escalation, and full system compromise scenario
* s.Support the transformation of offensive research into actionable security intelligenc
e.Community Engageme
* ntContribute to research publications, technical blogs, and vulnerability disclosure
* s.Present original research internally and externall
* y.Participate in security conferences, research communities, Capture The Flag (CTF) events, and knowledge-sharing initiative
* s.Represent the organization within the broader cybersecurity research communit
y.What We're Looking F
orVulnerability Research Experien
* ce2+ years of hands-on experience in vulnerability research, offensive security, penetration testing, exploit development, or security researc
* h.Experience reproducing vulnerabilities, analyzing patches, and performing root-cause analysi
* s.Familiarity with CVEs, security advisories, vulnerability disclosures, and exploit validation workflow
* s.Strong desire to deepen expertise in advanced vulnerability discovery and offensive security researc
h.Web & Binary Security Fundamenta
* lsUnderstanding of common vulnerability classes, includin
* g:Remote Code Execution (RC
* E)Authentication and Authorization Bypa
* ssDeserialization Vulnerabiliti
* esInjection Fla
* wsPrivilege Escalati
* onMemory Corrupti
* onBusiness Logic Vulnerabiliti
* esComfortable working across both web application and binary security domain
* s.Experience using debugging, reverse engineering, and analysis tool
s.Offensive Security Tooli
* ngHands-on experience with security research tools such a
* s:Burp Sui
* teGhid
* raIDA P
* roG
* DBWinD
* bgFri
* daAFL
* ++Fuzzing framewor
* ksUnderstanding of reverse engineering, debugging, fuzzing, and exploit development fundamental
s.Software Engineeri
* ngStrong Python development skill
* s.Experience writing, maintaining, and deploying production-quality softwar
* e.Understanding of software architecture, APIs, testing, automation, and development best practice
* s.Ability to build reliable tools used by internal teams and security researcher
s.AI & LLM Experien
* cePractical experience experimenting with LLMs for code review, vulnerability analysis, triage, or automatio
* n.Understanding of the strengths and limitations of AI-assisted security workflow
* s.Interest in applying AI to vulnerability research, reverse engineering, and offensive security operation
* s.Experience integrating AI services, APIs, agents, or automation frameworks is a plu
s.Startup Minds
* etSelf-motivated, curious, and highly collaborativ
* e.Comfortable working in fast-moving, high-growth environment
* s.Strong ownership mentality and ability to execute with minimal directio
* n.Passion for solving difficult security problems through research and automatio
n.
Technolog
iesVulnerability Research, Security Research, Offensive Security, Exploit Development, Patch Diffing, Root Cause Analysis, Reverse Engineering, Python, Security Automation, Detection Engineering, AI Security, LLMs, Prompt Engineering, Burp Suite, Ghidra, IDA Pro, GDB, WinDbg, Frida, AFL++, Fuzzing, CVE Analysis, Remote Code Execution, Authentication Bypass, Binary Analysis, Web Application Security, Detection Signatures, Threat Research, Security Tooling, Attack Surface Management, Vulnerability Validation, Security Engineeri
ng.
Why Join
* Us?Work on cutting-edge 0-day and n-day vulnerability resea
* rch.Build AI-powered offensive security tooling used at sc
* ale.Focus on high-impact vulnerabilities and meaningful security outco
* mes.Present research at leading security conferences with full company sponsors
* hip.Collaborate with experienced researchers, engineers, and offensive security speciali
* sts.Help shape the future of AI-assisted vulnerability research and security automat
ion.