ZipRecruiter

Log In

2

Remote Exploit Developer Jobs in New York (NOW HIRING)

10a Labs

Security Engineer

New York, NY · Remote

$105K - $125K/yr

Background in offensive security (exploit development, red teaming, adversary simulation ... Fully remote, U.S.-based. * Health Benefits: Comprehensive health, dental, and vision coverage.

Proofpoint

Security Software Engineer

New York, NY · Remote

Support a team researching new and past threats, including malware, exploit kits, and ... customers. #LI-remote Why Proofpoint? At Proofpoint, we believe that an exceptional career ...

Netcraft

Head of Threat Research

New York, NY · On-site +1

This is a remote position based in the United States, with occasional travel for conferences, team ... Track how threat actors exploit current events, emerging technologies, and changes in the threat ...

Human Agency

Venture Executive - New York

New York, NY · Remote

Remote (US or Canada) Type: US - Full-Time; Canada - Independent Contractor About Human Agency We ... Across strategy, engineering, design, data, and operations, we seek out teammates who raise the bar ...

All JobsRemote Exploit Developer JobsRemote Exploit Developer Jobs in New York

Remote Exploit Developer information

What are some common challenges faced by Remote Exploit Developers when working collaboratively with distributed security teams?

Remote Exploit Developers often work closely with global security teams, which can present challenges such as coordinating across different time zones, ensuring secure and clear communication, and managing sensitive information. Collaboration typically involves using encrypted channels, detailed code documentation, and regular virtual meetings to share progress and address vulnerabilities. Adapting to asynchronous workflows and maintaining strong team relationships are essential for overcoming these challenges and delivering effective, timely exploit solutions.

What are the key skills and qualifications needed to thrive as a Remote Exploit Developer, and why are they important?

To thrive as a Remote Exploit Developer, you need advanced knowledge of operating systems, vulnerability research, reverse engineering, and strong programming skills in languages like C, C++, Python, or Assembly, often supported by a relevant degree or certifications in cybersecurity. Familiarity with tools such as IDA Pro, Ghidra, Metasploit, and debuggers, as well as experience with fuzzing frameworks and exploit development environments, is crucial. Exceptional problem-solving, persistence, and attention to detail, along with ethical judgment, set top performers apart in this field. These skills are vital for responsibly identifying and demonstrating vulnerabilities, enabling organizations to improve their security and minimize risk.

What is a Remote Exploit Developer?

A Remote Exploit Developer is a cybersecurity professional who specializes in identifying, creating, and testing software exploits that can be executed remotely over a network. Their work typically involves finding vulnerabilities in software or hardware systems and developing code that can take advantage of these flaws without physical access to the target device. This role is essential in both offensive security research and defensive security, as it helps organizations understand and mitigate potential risks. Remote Exploit Developers must have strong programming skills, knowledge of operating systems, and an in-depth understanding of security protocols.

What is the difference between Remote Exploit Developer vs Penetration Tester?

AspectRemote Exploit DeveloperPenetration Tester
CredentialsKnowledge of security vulnerabilities, programming skills, certifications like OSCP or CEHSecurity certifications (OSCP, CEH), testing experience, technical background
Work EnvironmentFocus on developing exploits, testing security flaws, often in a controlled environmentSimulating attacks, assessing security posture, often in client or corporate settings
Industry UsageCybersecurity, software security, vulnerability researchCybersecurity, consulting, IT security teams

While both roles require security knowledge and technical skills, Remote Exploit Developers focus on creating and testing exploits to identify vulnerabilities, whereas Penetration Testers simulate attacks to evaluate security defenses. Both roles are essential in cybersecurity but differ in their primary objectives and methods.

What are the most commonly searched types of Exploit Developer jobs in New York? The most popular types of Exploit Developer jobs in New York are:
What are popular job titles related to Remote Exploit Developer jobs in New York? For Remote Exploit Developer jobs in New York, the most frequently searched job titles are:
What job categories do people searching Remote Exploit Developer jobs in New York look for? The top searched job categories for Remote Exploit Developer jobs in New York are:
What cities in New York are hiring for Remote Exploit Developer jobs? Cities in New York with the most Remote Exploit Developer job openings:
Remote Exploit Developer jobs near you
Infographic showing various Remote Exploit Developer job openings in New York as of June 2026, with employment types broken down into 100% Full Time. Highlights an 100% Remote job distribution.
Vulnerability Remediation Engineer

Vulnerability Remediation Engineer

Noblesoft Technologies

Raritan, NJ • Remote

Contractor

Posted yesterday

Job description

Job Title: Vulnerability Remediation Engineer

Location:  Raritan, NJ 08869 / REMOTE

Job Description:

  • Implement capabilities for a global Vulnerability Management program: internal/external exposure, imminent threats, prioritization, remediation facilitation.
  • Serve as technical SME for vulnerability tools and processes (Tenable, Qualys, Rapid7, or equivalent).
  • Continuously improve VM processes for coverage, efficiency, and visibility.
  • Leverage automation, analytics, and threat intelligence to improve accuracy and reduce remediation timelines.
  • Operate/optimize scanning platforms, discovery tooling, and reporting pipelines for asset visibility.
  • Partner with Infrastructure, Engineering, Application, and Cloud teams to reduce risk across environments.
  • Lead critical vulnerability identification and response exercises, including zero-day/imminent threats.
  • Develop and maintain metrics, dashboards, and executive-level reporting on posture, remediation progress, and program maturity.
  • Track and communicate remediation SLAs, risk reduction, and program improvements.

Qualifications and Skills:

  • Technical proficiency across network, system, and application layers; scanning, asset discovery, and exploit analysis
  • Hands-on experience with VM tools (e.g., Tenable.io, Qualys VMDR/WAS, Rapid7 InsightVM/AppSec) and discovery utilities (Nmap, SSLScan, Shodan, BitSight, Security Scorecard, custom scripts).
  • Knowledge in threat intel and data-driven prioritization (CVSS/CISA/EPSS).
  • Strong cloud understanding (AWS, Azure, GCP) and modern app stacks.
  • Scripting/automation (Python, PowerShell, Bash) and data analysis (SQL, Excel).
  • Scale-ready processes, metrics, dashboards, and analytics (Tableau, PowerBI).
  • Cross-functional collaboration; clear risk communication to technical and business stakeholders.
  • Knowledge of IT processes, secure baselines, and control frameworks (CIS, NIST, ISO, Microsoft, etc.).

Preferred:

  • Relevant certifications such as OSCP, GWAPT, CEH, or CSSLP.
  • Experience working in Agile and DevSecOps environments.
  • Knowledge of containerized applications and security tools (e.g., Docker, Kubernetes, etc.).
  • Understanding of regulatory compliance requirements (e.g., PCI DSS, GDPR, HIPAA).
  • Experience with penetration testing and exploit development.