Principal Vulnerability Engineer

This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• Perform security research covering both 0-day and n-day vulnerabilities.

• Develop and sustain internal tools for automated vulnerability detection, exploit validation, and the creation of detection signatures.

• Create and execute production-quality workflows powered by LLMs that enhance the speed of vulnerability research.

• Prioritize significant vulnerabilities — those with substantial impacts on clients.

⛳️ Requirements

• Over 5 years of experience combining vulnerability research with software engineering.

• A proven history of discovering original 0-day vulnerabilities, supported by public advisories, CVEs, or similar proof.

• Established expertise in n-day research and patch diffing.

• Proficient in both web and binary vulnerability categories.

• Experience in production-quality software engineering, preferably in Python.

• Solid background with common security tools: Burp Suite, Ghidra/IDA, debuggers, fuzzers, etc.

• Hands-on experience applying LLMs to enhance research or engineering processes.

• Familiarity with startups or rapidly growing companies, with the ability to navigate uncertainty and shifting priorities.

• Demonstrated capability to perform well under pressure and adjust to changing priorities.

• A proactive, collaborative attitude with a sense of ownership.

• Strong desire for continuous improvement and innovation.

• Quick learner who can effectively apply new concepts.

🏝️ Benefits

• Competitive compensation - we believe that hard work, skills, and ambition should be rewarded fairly.

• Significant role in a company - You will play a crucial role as an early contributor to a rapidly growing cybersecurity firm that protects some of the world's largest enterprises.

• Access to top-notch tools and resources - we equip you with the necessary tools to excel in your position.

• Abundant opportunities – as we grow, we intend to promote from within.

• Collaborate with cybersecurity specialists – we tackle cutting-edge industry-wide challenges with some of the most advanced organizations globally.