Senior Vulnerability Researcher – Pentesting

This is a fully remote position, open to applicants in Portugal.

📋 Description

• Conduct research and analysis on emerging threats and newly disclosed, high-profile vulnerabilities, contributing to the enhancement of vulnerability intelligence tools.

• Perform comprehensive evaluations of vulnerabilities to determine the effectiveness of remote, network-based detection techniques.

• Reverse engineer software and its patches to uncover new detection strategies.

• Create plugins, tools, and methodologies to deploy newly researched vulnerability detection and product fingerprinting capabilities.

• Foster innovation by researching and developing new tools and methodologies.

• Offer technical leadership on research initiatives, including mentoring junior researchers and regularly updating stakeholders.

• Identify potential for automation and process enhancements within Bitsight workflows.

• Develop techniques for vulnerability detection and communicate possible strategies, along with associated risks, to senior leadership.

⛳️ Requirements

• Bachelor’s degree in Computer Science or a related discipline; Master’s degree is preferred.

• Experience in vulnerability research, penetration testing, and exploit development.

• Extensive knowledge of tactics, techniques, and procedures typically employed by threat actors.

• Demonstrated history of innovation within the field of vulnerability research.

• Proven experience in leading technical projects and mentoring junior team members.

• Comprehensive understanding of information security principles and network protocols.

• Experience in the development of network-based vulnerability detection capabilities.

• Proficient in source code analysis.

• Familiarity with software reverse engineering and patch diffing.

• Excellent communication and interpersonal abilities.

• Strong analytical and problem-solving skills, with a history of addressing ambiguous challenges.

• Experience with machine learning is advantageous.

• Possess an ownership mindset.

• Proficient in Python programming.

🏝️ Benefits

• Best in class benefits