Two Six Technologies is looking for a Senior Vulnerability Researcher to identify vulnerabilities, analyze attack vectors, and assess operational impacts on critical systems for their government customers, aiming to deliver advanced security solutions and make a tangible impact on national security.
Requirements
- Proficiency in C/C++, Python, and at least one ISA (e.g. x86/ARM/MIPS)
- Proficiency in Linux command-line environments
- Experience using a decompiler such as IDA Pro, Binary Ninja, or Ghidra
- Experience using vulnerability research tools such as emulators or fuzzers
- Experience using a software debugger such as GDB or WinDbg
- Experience producing technical briefings for operational stakeholders
- Experience using a hardware debugger
Responsibilities
- Identify vulnerabilities and potential attacks across hardware, software, procedures, logistics, and physical security of systems
- Develop proof of concept (PoC) code for identified vulnerabilities
- Reverse-engineer targeted embedded systems to identify vulnerabilities
- Review source code looking for risks and vulnerabilities
- Analyze the effects of vulnerabilities on mission outcomes and operational effectiveness.
- Compare system attack techniques and propose operationally effective countermeasures
- Produce reports, briefings, and perspectives on actual and potential attacks
Other
- Mentor junior engineers and analysts, reviewing technical approaches and guiding research methodology.
- Ability to work on-site at the Laurel, Maryland customer site regularly.
- Active TS/SCI clearance with Polygraph required
- Bachelor’s degree and 5 years of relevant experience, OR Associate’s degree and 7 years of relevant experience.
- Relevant experience: computer/information systems design/development, programming, information/cyber/network security, reverse-engineering, vulnerability analysis, penetration testing, computer forensics, information assurance, or systems engineering
