Vulnerability Researcher

Summary

The job is for a Vulnerability Research SkillBridge Intern at RII's Cyber Security team. The intern will conduct reverse engineering and vulnerability analysis, research operating system and application internals, develop and enhance functionality, model in-memory compiled application behavior, participate in the Vulnerability Research mentorship program, and more. Requires active US Secret security clearance.

Requirements

• Proficient understanding of wireless networking and associated security protocols
• Strong grasp of legacy exploit mitigations and bypass techniques
• In-depth knowledge of security and network fundamentals
• Programming experience with both scripted languages (preferably Python3) and compiled languages (preferably C)
• Familiarity with low-level architectures such as x86, ARM, or MIPS
• Experience with operating system internals and implementations
• Excellent oral, written, and interpersonal communication skills

Responsibilities

• Conducting in-depth reverse engineering and vulnerability analysis across various architectures and platforms
• Researching and analyzing operating system and application internals, identifying and understanding security strengths and weaknesses of those systems
• Developing and enhancing functionality by adding features and capabilities to undocumented interfaces
• Modeling and analyzing in-memory compiled application behavior to identify potential vulnerabilities and improve security measures
• Developing and understanding mobile/embedded systems and kernel modules, particularly related to vulnerability research
• Participating actively in our extensive Vulnerability Research mentorship program, sharing knowledge and collaborating with colleagues

Preferred Qualifications

• Experience with vulnerability research and reverse engineering of real-time operating systems (RTOS), such as FreeRTOS, QNX, or VxWorks
• Bachelor's or postgraduate degree in Computer Science, Computer Engineering, or a related field
• Experience with software protection and binary armoring techniques
• Proficiency in agile development methodologies, including Scrum or Kanban
• Familiarity with low-level iOS/Android development and associated security considerations
• Knowledge of hypervisors and their security implications
• Proficiency in malware analysis
• Experience with constraint solving techniques
• Background in machine learning, particularly in the context of vulnerability analysis and detection

Benefits

• Flexible work schedules
• Health insurance coverage
• Paid time off
• 401k with a company match
• Paid parental leave
• Access to wellness programs