ZipRecruiter

Log In

1

Junior Exploit Developer Jobs in Arizona (NOW HIRING)

Osaic

Senior Vulnerability Management Analyst

Scottsdale, AZ · Hybrid

$105K - $120K/yr

... exploit intel, and asset criticality. Partner with engineering and application teams to remove ... Mentor junior analysts and help improve internal processes. Provide remediation guidance and secure ...

All JobsJunior Exploit Developer JobsJunior Exploit Developer Jobs in Arizona

Junior Exploit Developer information

What are common challenges faced by Junior Exploit Developers in their first year, and how can they overcome them?

Junior Exploit Developers often encounter challenges such as understanding complex low-level systems, staying updated with evolving security patches, and navigating the ethical and legal boundaries of vulnerability research. Collaborating with experienced security professionals and actively participating in code reviews can help build practical skills and confidence. Additionally, making use of open-source projects, Capture The Flag (CTF) competitions, and continuous learning through security communities are effective ways to overcome early hurdles and grow in this highly specialized field.

What are Junior Exploit Developers?

Junior Exploit Developers are entry-level cybersecurity professionals who specialize in identifying and developing software exploits to test and improve the security of computer systems. They analyze software and hardware for vulnerabilities, create proof-of-concept code to demonstrate weaknesses, and often work under the guidance of senior security researchers or penetration testers. Their work helps organizations understand potential security flaws and proactively defend against cyber threats.

What is the difference between Junior Exploit Developer vs Security Analyst?

AspectJunior Exploit DeveloperSecurity Analyst
Required CredentialsKnowledge of programming, basic cybersecurity certifications (e.g., CompTIA Security+)Security certifications (e.g., CISSP, Security+), analytical skills
Work EnvironmentHands-on vulnerability testing, exploit development in labs or controlled environmentsMonitoring security systems, analyzing threats, policy implementation
Employer & Industry UsageCybersecurity firms, tech companies, penetration testing teamsCorporate security teams, government agencies, financial institutions

Junior Exploit Developers focus on identifying and developing exploits for vulnerabilities, often working in testing environments. Security Analysts monitor and analyze security threats, implementing defenses. While both roles require cybersecurity knowledge, their daily tasks and objectives differ significantly.

What are the key skills and qualifications needed to thrive as a Junior Exploit Developer, and why are they important?

To thrive as a Junior Exploit Developer, you need a solid understanding of programming (especially C and Python), computer architecture, and vulnerability analysis, often supported by a degree in computer science or related experience. Familiarity with tools like IDA Pro, Ghidra, debuggers, and knowledge of operating system internals are important, as are certifications such as OSCP or CEH. Strong analytical thinking, attention to detail, and persistence are crucial soft skills for identifying security flaws and developing exploits. These capabilities enable you to effectively discover, analyze, and responsibly report or remediate software vulnerabilities, which is vital for security research and defense.
What are the most commonly searched types of Exploit Developer jobs in Arizona? The most popular types of Exploit Developer jobs in Arizona are:
What are popular job titles related to Junior Exploit Developer jobs in Arizona? For Junior Exploit Developer jobs in Arizona, the most frequently searched job titles are:
What job categories do people searching Junior Exploit Developer jobs in Arizona look for? The top searched job categories for Junior Exploit Developer jobs in Arizona are:
Junior Exploit Developer jobs near you

Senior Vulnerability Management Analyst

Osaic

Scottsdale, AZ • Hybrid

$105K - $120K/yr

Full-time

Medical, Dental, Vision, Retirement

Posted 17 days ago

Osaic rating

8.2

Company rating: 8.2 out of 10

Based on 8 frontline employees who took The Breakroom Quiz

Job description

Current Employees and Contractors Apply HereOsaic Careers

IT Vulnerability Opportunity in Financial Services

Senior Vulnerability Management Analyst

Location(s):

Atlanta: 2300 Windy Ridge Pkwy SE, Suite750, Atlanta, GA 30339

La Vista:12325 Port Grace Blvd, La Vista, NE 68128

Oakdale: 7755 3rd St. N, Oakdale, MN 55128

Scottsdale: 18700 N Hayden Rd, Suite 255, Scottsdale, AZ 85255

St. Petersburg: 877 Executive Center Dr. W, Suite 300, St. Petersburg, FL 33702

Osaic has returned to the office on a hybrid schedule requiring a minimum of 4 days weekly in the office. Applicants should be located at one of our hubs listed above and must be willing to work this schedule.

Role Type: Full-time, Non-Exempt

Salary: $105,000 - $120,000 per year + annual performance-based bonus

Actual compensation offered will be determined individually, based on a number of job-related factors, including location, skills, licensure, experience, and education.

Our competitive compensation is just one component of Osaic's total compensation package. Additional benefits include health, vision, dental insurance, 401k, paid time away, volunteer days and much more. To view more details of what you can look forward to, visit our careers page:Osaic Benefits.

Summary:

We're seeking a Senior Vulnerability Analyst to lead and mature our enterprise vulnerability programs across SDLC (secure development lifecycle), external attack surface, and internal infrastructure/applications. This role drives endtoend vulnerability lifecycle management, from discovery and risk triage to remediation validation and program metrics, while partnering closely with Engineering, Product, Cloud/SRE, and IT. You'll also coordinate penetration testing readiness, evidence collection, and remediation plans, and help embed security into the development workflow. The ideal candidate has strong application development experience, practical threat modeling skills, and a pragmatic approach to risk.

Education Requirements:

Bachelor's degree preferred, high school diploma (or equivalent) in combination with significant experience will be considered in lieu of degree. Minimum of high school diploma or equivalent is required.

Responsibilities:

  • Lead vulnerability prioritization using CVSS, KEV, exploit intel, and asset criticality.
  • Partner with engineering and application teams to remove remediation blockers.
  • Own complex vulnerability investigations and coordinate cross-team resolution.
  • Mentor junior analysts and help improve internal processes.
  • Provide remediation guidance and secure configuration recommendations.
  • Help with pen test prework: scope definition, rules of engagement, asset inventories, credential/test data coordination, and stakeholder comms.
  • Manage findings intake, severity validation, and remediation plans with accountable owners; track to closure and report to leadership.
  • Lead lessons learned and control improvements to reduce recurring issues and improve test efficiency.
  • Lead continuous reduction of external attack surface: internetexposed services, DNS, certificates, cloud perimeters, API endpoints, and thirdparty exposures.
  • Partner with Cloud, SRE, and Networking to harden configurations, minimize unknown/legacy exposures, and validate fixes.
  • Partner with engineering to mature SAST/DAST/IAST/OSS/SBOM practices, secure build pipelines, and implement "shiftleft" controls (precommit, PR gates, CI quality bars).
  • Guide threat modeling, security requirements, and secure coding practices; advise on remediation patterns and safer libraries/frameworks.
  • Review architecture and code for highrisk components (authN/Z, crypto, secrets handling, supply chain, multitenant boundaries).
  • All other duties as assigned.

Basic Requirements:

  • Deep technical/domain expertise and ability to lead initiatives.
  • Strong understanding of OS, cloud environments, and vulnerability lifecycles.
  • Partner with Detection & Response to ensure logging, alerting, and containment strategies account for known weaknesses.
  • Target certifications: CISSP, GIAC (GSEC/GCIA/GCIH), CCSP.

Preferred Requirements:

  • Experience with KEV catalog operationalization and threat-intel integrations.
  • Knowledge of automation platforms
Current Employees and Contractors Apply Here

About Osaic

Sourced by ZipRecruiter

Industry

Finance and insurance

Company size

1,001 - 5,000 Employees

Headquarters location

Phoenix, AZ, US

Year founded

2016

View All Osaic Jobs

Apply