1

Exploit Development Jobs in Texas (NOW HIRING)

Senior Cybersecurity Research Scientist

San Antonio, TX ยท On-site

$88K - $113K/yr

D. in Computer Science, Cybersecurity, or related technical field - Experience supporting DoW or national security cyber research efforts - Advanced reverse engineering, exploit development, or post ...

AI Offensive Security Engineer

Austin, TX ยท On-site

$136K - $228K/yr

Exploit Development: Develop proof-of-concept exploits for discovered vulnerabilities and work with engineering teams on remediation validation * Automation & Scale: Integrate offensive testing into ...

next page

Showing results 1-20

Exploit Development information

See Texas salary details

$17

$35

$71

How much do exploit development jobs pay per hour?

As of Jul 14, 2026, the average hourly pay for exploit development in Texas is $35.03, according to ZipRecruiter salary data. Most workers in this role earn between $24.18 and $50.62 per hour, depending on experience, location, and employer.

What jobs can you get with offsec certs?

With Offensive Security (Offsec) certifications such as OSCP or OSCE, you can pursue roles like penetration tester, security analyst, or vulnerability researcher. These certifications demonstrate practical skills in ethical hacking, penetration testing, and security assessment, which are highly valued in cybersecurity teams and consulting firms.

What jobs can I get as a game developer?

As a game developer, you can pursue roles such as software engineer, gameplay programmer, graphics programmer, or tools developer. These positions typically require skills in programming languages like C++ or C#, familiarity with game engines such as Unity or Unreal, and knowledge of game design principles. Opportunities exist in both independent studios and large gaming companies, often involving collaborative development environments and project deadlines.

What is an Exploit Development job?

An Exploit Development job involves researching software, hardware, or network vulnerabilities and creating proof-of-concept exploits to demonstrate security weaknesses. Professionals in this role analyze security flaws, write exploits, and sometimes assist in patch development. They often work in cybersecurity firms, government agencies, or red teams conducting penetration testing. Strong knowledge of low-level programming, reverse engineering, and debugging tools is essential.

What are the key skills and qualifications needed to thrive in the Exploit Development position, and why are they important?

To thrive in Exploit Development, you need advanced knowledge of computer systems, programming languages (such as C, C++, Python, or Assembly), and a deep understanding of cybersecurity principles, often supported by a degree in computer science or related field. Familiarity with reverse engineering tools (like IDA Pro, Ghidra, or OllyDbg), debuggers, and certifications such as OSCE or OSEP are commonly required. Strong problem-solving skills, attention to detail, and the ability to communicate complex technical findings clearly are valuable soft skills in this role. These skills and qualities are essential to responsibly discover and analyze security vulnerabilities, develop proof-of-concept exploits, and contribute to organizational or client security enhancements.

What does an exploitation analyst do?

An exploitation analyst identifies and develops security vulnerabilities in software and systems to assess their security posture. They use tools like vulnerability scanners and exploit frameworks, often working in cybersecurity or penetration testing environments, to simulate attacks and improve defenses. Strong knowledge of programming, networking, and security protocols is essential for this role.

What is exploit development?

Exploit development is the process of creating code or techniques to identify and leverage vulnerabilities in software or hardware systems. Professionals in this field analyze security flaws, often using programming skills and tools like debugging and reverse engineering, to develop exploits that can test or demonstrate system weaknesses. It is a specialized area within cybersecurity that requires knowledge of operating systems, networking, and security protocols.

What are some of the primary challenges encountered in an Exploit Development role?

Exploit Development professionals often face the challenge of staying ahead of rapidly evolving security defenses and continuously learning new attack techniques and mitigation strategies. The work can require intense focus and patience, as reverse engineering and identifying vulnerabilities in complex systems may take considerable time and persistence. Additionally, strict adherence to ethical guidelines and clear communication with cross-functional security and engineering teams is critical for responsibly handling discovered vulnerabilities. Diligence, adaptability, and ongoing professional development are key to navigating the technical and ethical complexities of this role.

What are the most commonly searched types of Exploit Development jobs in Texas? The most popular types of Exploit Development jobs in Texas are:
What job categories do people searching Exploit Development jobs in Texas look for? The top searched job categories for Exploit Development jobs in Texas are:
Infographic showing various Exploit Development job openings in Texas as of July 2026, with employment types broken down into 1% As Needed, 83% Full Time, 13% Part Time, 2% Contract, and 1% Nights. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $72,871 per year, or $35 per hour.
Lead Red Team Offensive Security Engineer

Lead Red Team Offensive Security Engineer

Request Technology, LLC

Coppell, TX โ€ข On-site

Other

Posted 6 days ago


Job description

***We are unable to sponsor for this permanent full-time role**

***Position is Bonus eligible****

Prestigious Financial Institution is currently seeking a Lead Red Team Offensive Security Engineer. Candidate will provide professional input to complex Red Team assignments and projects, strengthening the security posture by independently conducting covert black-box and occasional white-box assessments across network, web application, cloud, mobile, physical, and social engineering domains, while coordinating with Security and IT teams to address and retest remediated findings. This individual works independently and reviews or guides the work of more junior Red Team professionals, enhancing the knowledge and skill base of the organization. Candidate will bring strong expertise in areas such as OSINT, penetration testing, C2 infrastructure development, evasion techniques, and custom scripting, along with strong communication skills and a commitment to staying ahead of emerging threats.

Responsibilities:

    • Execute comprehensive Red Team simulations including network/application penetration testing, cloud security, social engineering, physical security, mobile testing, and OSINT within defined rules of engagement.
    • Develop and deploy Command and Control (C2) infrastructure using evasion and obfuscation techniques to test and enhance Cyber Defense detection capabilities.
    • Leverage AI/LLM tooling to accelerate offensive research, exploit development, and overall Red Team effectiveness.
    • Conduct ad-hoc white-box testing on pre-production and in-development infrastructure, and validate remediated findings with IT owners.
    • Perform threat modeling, security risk assessments, and independent reviews of security, network, and applications.
    • Develop clear, evidence-based reports with actionable remediation recommendations and debrief stakeholders on findings.
    • Ensure security controls and testing activities align with applicable regulations, industry best practices, and policies and procedures.
    • Cross-train Red Team members and other Security/IT teams on adversarial threats, attack vectors, and remediation strategies, enhancing the knowledge and skill base of the organization.
    • Stay current on emerging threats, threat intelligence, and attack techniques, advising IT leadership on mitigation approaches.
    • Support audits, contribute to security roadmap development, and review or guide the work of more junior Red Team professionals while fostering a collaborative team environment. 

Qualifications:

    • High energy, results-driven, with strong analytical, problem-solving, and tactical planning skills, and the ability to exercise good judgment while developing creative solutions to long-term strategic goals.
    • Exceptional verbal/written communication and listening skills, with strong enthusiasm for staying current on threat intelligence and emerging adversarial TTPs.
    • Broad expertise across Network/Application, Web Application, and Mobile Application Penetration Testing, Command and Control (C2) Infrastructure Development, Cyber Defense Evasion techniques, Social Engineering, OSINT, Basic Emissions Testing, and Physical Security Testing.
    • Strong working knowledge of AI/LLMs and agentic systems (autonomous agents, orchestration frameworks, MCP) and how they can accelerate offensive security tradecraft across reconnaissance, exploit/payload development, tooling, and findings triage.
    • Proven due diligence and research ability via open-source avenues and technology.
    • Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, IaaS/PaaS/SaaS).
    • Good applicable knowledge of policy and procedure development, systems analysis, IA policy, vulnerability and risk management, and regulatory standards (e.g., CSF, NIST, PCI, FIPS 199, COBIT 5).
    • Strong knowledge of cryptography (symmetric, asymmetric, hashing), common enterprise infrastructure technology stacks, and network configurations.
    • Ability to understand and probe/exploit a diverse range of Network and Internet Protocols, and to understand and modify code across multiple programming languages and frameworks, with direct practical experience in at least one high-level language.
    • Ability to facilitate meetings and conversations, and to work with business users to translate their needs into final project deliverables.
    • Nice to have experience working on critical infrastructure in a regulated environment.

Technical Skills:

    • Strong proficiency in Network, Web Application, Cloud, and Mobile Device security testing
    • Demonstrated exploit, payload, and attack framework development experience
    • Strong knowledge of EDR detection capabilities such as Crowdstrike/Carbon Black, etc. and associated defense evasion techniques for behavioral based alerting
    • Strong working knowledge of Artificial Intelligence (AI) large language models (LLMs) and agentic AI systems โ€“ including how autonomous and tool-usig agents, orchestration frameworks, and protocols like Model Context Protocol (MCP) operate โ€“ and the ability to evaluate how these technologies can accelerate offensive security tradecraft across reconnaissance, exploit and payload development, adversarial tooling development, and enhance triaging for security findings.
    • Strong proficiency in social engineering and intelligence gathering.
    • Strong experience with custom scripting (Python, Powershell, Bash, etc.)  and process automation.
    • Strong experience with database security testing (MSSQL, DB2, MySQL, etc.).
    • Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nighthawk, Nmap, Qualys, Nessus, Burp Suite, Wireshark, Recon-NG, Ettercap/Bettercap, Hashcat, Bloodhound, Ida Pro, Ghidra, Sublist3r, Rubeus, Mimikatz, CrackMapExec, Exploitdb, Yersinia, Impacket, etc.).
    • Track record of vulnerability research and CVE assignments
    • Knowledge of Windows APIs and Living off the Land (LOL) Binaries
    • Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls.
    • Proficient in creating content with Microsoft Office (Word, Excel, PowerPoint, Visio).
    • Proficient in basic document management in a Microsoft SharePoint environment.
    • Experience with dedicated document management tools (e.g., DMS, PolicyTech) is a plus.
    • Experience with using ServiceNow is a plus.

Education and/or Experience:

    • BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university is desired but not required
    • 7+ Yearsโ€™ experience of Penetration testing
    • 7+ Yearsโ€™ experience in Information Assurance or Cybersecurity work environments

Certificates or Licenses:

    • Security-related certifications (OSCP, OSWE, OSCE, GPEN, GXPN, GWAPT, ARTE, etc.) highly desired.