Remote Senior Security Researcher
at Chameleon Consulting Group

Summary

Join a team of mature and extremely competent Security Researchers to breakdown and fully understand how a host of different systems function. As a member of the Security Research team, you will imagine weaknesses in multiple types of systems and then find, demonstrate/document, and exploit those weaknesses.

Requirements

• Must be able to obtain and maintain a TS/SCI security clearance (note, only US Citizens are eligible for security clearances)
• Bachelors degree in Computer Engineering, Computer Science, Software Engineering, or a related technical discipline. Degree requirement can be met with four years of hands on experience in a software engineer or similar full time position
• Experience with Ghidra, Binary Ninja, IDA or other reverse engineering/disassembler tools
• Experience working in Linux fundamentals (strong grasp of sockets, file descriptors, networking, iptables, file systems, kernel, etc.)
• Ability to read and write C and assembly languages as needed (ARM, MIPS, X86) with some oversight or supervision
• Strong programming fundamentals; particularly with networking, data structures, and data models

Responsibilities

• Perform vulnerability research and reverse engineering for customer tasks
• Perform static and dynamic analysis applying research tools such as disassemblers, debuggers, and fuzzers
• Be able to communicate security research findings internally and, when and where it is appropriate, externally
• Mentor fellow security researchers

Preferred Qualifications

• Currently possess a Top Secret security clearance
• OS and kernel reverse engineering
• Understanding of fuzzers
• Strong understanding of dynamic analysis with gdb/gdbserver and similar tools
• Basic understanding of processor tool chains and how to set them up
• Understanding of emulation using Qemu for running binaries in a non-native environment
• Experience identifying 0-days and vulnerabilities