CommIT Logo

CommIT

Vulnerability Research Engineer

Posted 11 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in Greece
Junior
Remote
Hiring Remotely in Greece
Junior
Build production systems that automate vulnerability research and exploit development. Develop tooling for discovery, triage, reproduction, and validation at scale. Work on OS internals, binaries, runtimes, kernels, dynamic analysis, instrumentation, and performance-sensitive systems. Partner with researchers and operators to automate manual cyber workflows and ship end-to-end production code.
The summary above was generated by AI
Description

The company is building production AI systems that automate cyber network operations end-to-end. It is already live with a paying customer and running pilots across the US, Europe, and APAC. Headquarters are in Washington DC, with auxiliary offices in Tel Aviv and London.

We are hiring Vulnerability Research Engineers to build systems for AI-driven vulnerability research and exploit development. This is not a prompt-engineering role. The work is low-level, technical, and close to the metal. You will help build systems that identify, analyze, reproduce, and scale vulnerability research workflows across real software and real environments. We are primarily looking for vulnerability researchers with strong low-level systems skills, reverse-engineering ability, and exploitation instincts. Exceptional low-level systems engineers with deep security-adjacent experience may also be considered.

What You’ll Own:

  • Build production systems for AI-driven vulnerability research and exploit development.
  • Develop tooling for vulnerability discovery, triage, reproduction, and validation at scale.
  • Work across OS internals, binaries, runtimes, kernels, dynamic analysis, instrumentation, and low-level performance.
  • Partner with vulnerability researchers, security operators, and engineers to automate manual cyber workflows.
  • Own problems end-to-end, from research and design to shipped production code.
Requirements

Requirements:

  • 2+ years of vulnerability research, offensive security, or low-level engineering experience. Exceptional new grads with strong CTF, systems, or exploitation work will be considered.
  • Hands-on experience with reverse engineering, binary analysis, exploit development, fuzzing, dynamic analysis, bug hunting, CTFs, or comparable low-level security work.
  • Deep low-level systems fluency, including OS internals, kernels, runtimes, memory corruption, debugging, dynamic instrumentation, or performance-sensitive systems.
  • Strong builder mindset and ability to ship reliable tools and production systems.
  • Comfortable working in ambiguity and moving fast.
  • Willing to relocate to Washington DC after an initial period, with full relocation support. The role is expected to be in-office 5 days per week.

Nice to Have:

  • Strong CTF background, especially pwn, rev, kernel, browser, or systems-heavy challenges.
  • Published vulnerability research, CVEs, exploit writeups, or security talks.
  • Experience with fuzzing, symbolic execution, emulation, program analysis, or binary rewriting.
  • Open-source contributions to low-level security, reversing, debugging, tracing, fuzzing, or OS tooling.
  • Exposure to ML / AI systems, especially applied to code, binaries, security automation, or program analysis.
  • Early-stage startup, founder, or early-engineer experience.

What We Look For:

  • Strong vulnerability research instincts.
  • Low-level technical depth.
  • Builder mindset — able to turn research workflows into scalable systems.
  • Comfort with ambiguity, speed, and high ownership.
  • Motivation to help build a category-defining company in AI-native offensive cyber.

Similar Jobs

12 Hours Ago
Remote
Junior
Junior
Artificial Intelligence • Cybersecurity
Support cloud security by managing IAM across tools, maintaining security tooling and monitoring, investigating alerts, reviewing Terraform PRs for secure deployments, and tracking threat intelligence while learning cloud-native security practices.
Top Skills: AWSAws IamAzureBashContainersEndpoint ProtectionGCPInfrastructure As CodeInfrastructure MonitoringKubernetesPythonTerraform
12 Hours Ago
Remote
Senior level
Senior level
Artificial Intelligence • Cybersecurity
Design and build self-service platform tooling and "Golden Paths" to enable developer autonomy. Develop Terraform modules, CLI/APIs, GitHub Actions and GitOps pipelines (ArgoCD), integrate OPA for automated governance, and ensure observability (Prometheus/Grafana) across services.
Top Skills: ArgocdAWSCrdsDastGithub ActionsGitopsGoGrafanaKubernetesOpen Policy Agent (Opa)OperatorsPrometheusPythonSastTerraform
12 Hours Ago
Remote
111K-137K Annually
Senior level
111K-137K Annually
Senior level
Security • Software • Cybersecurity • Automation
Provide commercial and privacy legal support for SaaS agreements (SA, DPA, NDA), negotiate B2B contracts, maintain contract templates and playbooks, ensure privacy/security and regulatory compliance, advise business stakeholders, and implement processes and tools to scale the legal function.
Top Skills: Contract Database SolutionDocusignFinance Invoicing SystemsGoogle SuiteGmailGoogle DocsProject Management SoftwareSlack

What you need to know about the Seattle Tech Scene

Home to tech titans like Microsoft and Amazon, Seattle punches far above its weight in innovation. But its surrounding mountains, sprinkled with world-famous hiking trails and climbing routes, make the city a destination for outdoorsy types as well. Established as a logging town before shifting to shipbuilding and logistics, the Emerald City is now known for its contributions to aerospace, software, biotech and cloud computing. And its status as a thriving tech ecosystem is attracting out-of-town companies looking to establish new tech and engineering hubs.

Key Facts About Seattle Tech

  • Number of Tech Workers: 287,000; 13% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Amazon, Microsoft, Meta, Google
  • Key Industries: Artificial intelligence, cloud computing, software, biotechnology, game development
  • Funding Landscape: $3.1 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Madrona, Fuse, Tola, Maveron
  • Research Centers and Universities: University of Washington, Seattle University, Seattle Pacific University, Allen Institute for Brain Science, Bill & Melinda Gates Foundation, Seattle Children’s Research Institute

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account