ZipRecruiter

Log In

1

Exploit Development Jobs in Washington (NOW HIRING)

M9 Solutions

Windows CNO Developer

Herndon, VA · On-site

Active TS/SCI with Full Scope Polygraph clearance. * 3+ years of experience in CNO/CNE development, exploit development, or related offensive cyber work focused on Windows. * Strong C programming ...

SMFS

Principal Engineer Senior Level

Quantico, VA · On-site

This role is ideal for a senior technical leader with deep experience in software development, exploit development, malware reverse engineering, vulnerability analysis, and offensive cyber operations.

New

M9 Solutions

Windows CNE Developer

Arlington, VA · On-site

Active TS/SCI with Full Scope Polygraph clearance. * 3+ years of experience in CNO/CNE development, exploit development, or related offensive cyber work focused on Windows. * Strong C programming ...

M9 Solutions

Windows CNO Developer

Herndon, VA · On-site

$129.50K - $177.70K/yr

Required : • Active TS/SCI with Full Scope Polygraph clearance. • 3+ years of experience in CNO/CNE development, exploit development, or related offensive cyber work focused on Windows. • ...

M9 Solutions

Windows CNE Developer

Arlington, VA · On-site

Required : • Active TS/SCI with Full Scope Polygraph clearance. • 3+ years of experience in CNO/CNE development, exploit development, or related offensive cyber work focused on Windows. • ...

next page

Showing results 1-20

People also search for

All JobsExploit Development JobsExploit Development Jobs in Washington

Exploit Development information

See Washington salary details

$21

$42

$87

How much do exploit development jobs pay per hour?

As of May 28, 2026, the average hourly pay for exploit development in Washington is $42.59, according to ZipRecruiter salary data. Most workers in this role earn between $29.42 and $61.54 per hour, depending on experience, location, and employer.

What is an Exploit Development job?

An Exploit Development job involves researching software, hardware, or network vulnerabilities and creating proof-of-concept exploits to demonstrate security weaknesses. Professionals in this role analyze security flaws, write exploits, and sometimes assist in patch development. They often work in cybersecurity firms, government agencies, or red teams conducting penetration testing. Strong knowledge of low-level programming, reverse engineering, and debugging tools is essential.

What are the key skills and qualifications needed to thrive in the Exploit Development position, and why are they important?

To thrive in Exploit Development, you need advanced knowledge of computer systems, programming languages (such as C, C++, Python, or Assembly), and a deep understanding of cybersecurity principles, often supported by a degree in computer science or related field. Familiarity with reverse engineering tools (like IDA Pro, Ghidra, or OllyDbg), debuggers, and certifications such as OSCE or OSEP are commonly required. Strong problem-solving skills, attention to detail, and the ability to communicate complex technical findings clearly are valuable soft skills in this role. These skills and qualities are essential to responsibly discover and analyze security vulnerabilities, develop proof-of-concept exploits, and contribute to organizational or client security enhancements.

What are some of the primary challenges encountered in an Exploit Development role?

Exploit Development professionals often face the challenge of staying ahead of rapidly evolving security defenses and continuously learning new attack techniques and mitigation strategies. The work can require intense focus and patience, as reverse engineering and identifying vulnerabilities in complex systems may take considerable time and persistence. Additionally, strict adherence to ethical guidelines and clear communication with cross-functional security and engineering teams is critical for responsibly handling discovered vulnerabilities. Diligence, adaptability, and ongoing professional development are key to navigating the technical and ethical complexities of this role.
More about Exploit Development jobs
What are the most commonly searched types of Exploit Development jobs in Washington? The most popular types of Exploit Development jobs in Washington are:
What are popular job titles related to Exploit Development jobs in Washington? For Exploit Development jobs in Washington, the most frequently searched job titles are:
What job categories do people searching Exploit Development jobs in Washington look for? The top searched job categories for Exploit Development jobs in Washington are:
What cities in Washington are hiring for Exploit Development jobs? Cities in Washington with the most Exploit Development job openings:
Exploit Development jobs near you
Infographic showing various Exploit Development job openings in Washington as of May 2026, with employment types broken down into 1% As Needed, 90% Full Time, 7% Part Time, and 2% Contract. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $88,588 per year, or $42.6 per hour.

Senior Exploit Developer DCART / Advanced Red Cyber

Omniscius

Fort Belvoir, VA • On-site

$61.75 - $81.50/hr

Other

This job post has expired 1 day ago. Applications are no longer accepted.

Job description

Senior Exploit Developer

Our client is seeking a Senior Exploit Developer in Fort Belvoir, VA. to design, build, and validate exploit and implant toolchains used in realistic adversary emulation. Your engineering work will enable red team operations that inform senior DoD mission-assurance decisions.

  • Develop exploit code, in-memory loaders, kernel/userland persistence, and covert tooling.
  • Test and harden payloads to minimize detection by EDR/AV.
  • Integrate exploits into operational toolchains and assist operators during live assessments.
  • Produce technical annexes and concise executive/technical briefings.

Requirements

  • Active TS/SCI (U.S. citizen)
  • Proficient in C/C++, assembly, and Windows internals (kernel & Win32 APIs).
  • Demonstrated exploit development experience (memory corruption, ROP, bypass mitigations).
  • Ability to pass the DCART Senior Developer Aptitude Test (SDAT).

Desired

  • Experience with C2 frameworks; Cobalt Strike experience is a plus (nice-to-have, not mandatory).
  • OSEP/OSEE/OSCP/GREM/GXPN or equivalent practical creds.
  • Experience building operational-grade implants and delivery pipelines.
  • Apply: cleared resume, 1–2-page technical write-up (no classified info), and readiness for SDAT.

Apply