BEST IN SYSTEMS TECHNOLOGY RESEARCH & DEVELOPMENT CORPORATIONS is hiring a
Exploit Developer

Summary

STR is hiring an Exploit Developer with a passion for vulnerability research and analysis in cyber physical systems. The employee will reverse engineer complex software or firmware targets, develop automated reverse engineering tools, and work in multi-discipline teams to tackle challenging problems. The position requires Active Secret security clearance and a relevant degree or experience in Computer Science, Computer Engineering, Cybersecurity, or related fields with 5+ years of professional experience. Preferred qualifications include experience with binary analysis, disassembly tools, programming languages, assembly languages, reverse engineering fundamentals, and various other skills.

Requirements

• Active Secret security clearance and the ability to obtain a Top Secret (TS) clearance
• BS, MS or PhD in Computer Science, Computer Engineering, Cybersecurity or related field (or equivalent work experience)
• 5+ years of relevant professional experience
• Experience with binary analysis of software/firmware
• Experience with disassembly tools, such as IDA Pro, Binary Ninja, or Ghidra
• Proficiency in one or more programming languages: C/C++, Python, etc
• Proficiency in one or more Assembly Languages: x86, ARM, etc

Responsibilities

• Reverse engineering complex software or firmware targets
• Developing and applying automated reverse engineering and binary analysis tools
• Developing innovative cybersecurity solutions
• Performing vulnerability weaponization, exploit development, payload development, and exploit mitigation
• Documenting, demonstrating, and presenting research

Preferred Qualifications

• Active Security Clearance at the Top Secret (TS) level
• Vulnerability research and analysis
• Knowledge of weaponizing discovered vulnerabilities into exploits
• Implant or software patch development
• Familiarity with binary emulation or vulnerability research, including tools such as QEMU or AFL++
• Operating system internals including memory/process/thread management
• Embedded systems or firmware analysis
• Knowledge of anti-reverse engineering techniques
• Analyzing protocols or message structures
• Knowledge of binary file structures and formats

Benefits

• Health insurance
• Retirement benefits
• Paid time off
• Remote work, flexible hours
• Life and disability insurance
• Bonuses and incentives
• Professional development opportunities
• Wellness programs
• Family and parental leave