Security Research Engineering Lead

This is a fully remote position, open to applicants in Switzerland.

📋 Description

• Execute security research, including the creation of tools for vulnerability assessment and remediation.

• Design static and dynamic analysis tools to uncover root causes and input conditions associated with vulnerabilities.

• Create necessary tools and environments to automate workflows, evaluate results, and test intricate scenarios.

• Conduct vulnerability triage and develop proof-of-concept exploits to aid in the creation of detection content.

• Prepare comprehensive technical reports, summaries, and testing methodologies.

• Investigate emerging technologies, protocols, and testing approaches.

• Develop proof-of-concept exploits for evaluating vulnerability mitigations.

• Perform patch analysis to identify and exploit vulnerabilities.

• Reverse engineer binary applications, protocols, and formats.

• Assess vulnerabilities and emerging security threats and technologies.

• Offer critical security-focused expertise to engineering teams.

⛳️ Requirements

• Proven experience in vulnerability research or a closely related field such as exploit or mitigation development on Linux Systems.

• Substantial experience with C/C++, a scripting language (e.g., Python), and assembly (e.g., x86/x64, ARM, etc.).

• Bachelor’s degree or equivalent in Computer Science, Electrical Engineering, Cyber Security, or another technology-related discipline.

• In-depth knowledge of Linux internals, encompassing application memory layout, common OS APIs, and system call operations, along with their limitations and side effects.

• Proficiency in reverse engineering and familiarity with tools such as IDA Pro, Binary Ninja, Ghidra, etc., including plugin development.

• Experience in discovering Linux vulnerabilities and developing corresponding exploits.

• Strong grasp of advanced networking principles, protocols, and typical enterprise networking scenarios.

• Knowledge of common vulnerabilities and exploitation techniques, such as memory corruption, web application exploitation, file format vulnerabilities, and protocol-based weaknesses.

• Ability to work autonomously with minimal supervision and to address additional tasks as required.

• Excellent communication skills.

🏝️ Benefits

• Health insurance

• 401(k) matching

• Flexible working hours

• Paid time off

• Remote work options