Vulnerability Researcher

Bachelor’s (or higher) degree in Computer Science, Computer/Electrical Engineering, or a related field (or equivalent practical experience).
2+ years of experience with programming/scripting languages in C/C++, Python, and Linux command-line environments.
Experience with reverse engineering and vulnerability research, using tools such as IDA Pro, Binary Ninja, or Ghidra.
Expertise in one or more of the following: Firmware analysis (ARM, MIPS, PowerPC, RTOS), Firmware rehosting using emulation tools such as QEMU, Fuzzing and exploit development, Binary obfuscation and anti-analysis techniques, Wireless protocols and radio signal analysis, File system forensics and fault injection frameworks.
Knowledge of common network protocols TCP/IP, UDP, or HTTP.

Reverse engineer wireless and embedded systems, identifying vulnerabilities and assessing their security impact.
Develop proof-of-concept exploits for discovered vulnerabilities following DevOps best practices for keeping code bases organized and maintainable.
Analyze firmware, software protections, and wireless protocols to uncover security flaws.
Utilize and develop custom tools to analyze and manipulate software/firmware binaries.
Collaborate closely with CNO developers, vulnerability researchers, and hardware engineers in a fast-paced, small-team environment.
Solve complex technical challenges with no predefined solutions.

Experience with defeating modern migrations such as ASLR, DEP, and Stack Canaries
Knowledge of cellular standards such as 4G or 5G
Knowledge of low bandwidth communications such as RS485, RS232, CAN
Knowledge of Wifi, Bluetooth, Zigbee communication