1

Salaried Exploit Development Jobs (NOW HIRING)

Penetration Tester

Washington, DC · On-site

$130K - $145K/yr

... methodologies and advanced exploit development, focusing on identifying and mitigating ... salary range for this position is $130,000.00 - $145,000.00 commensurate on experience and ...

Software Reverse Engineer

Melbourne, FL · On-site

$112K - $154K/yr

Performing vulnerability weaponization, exploit development, payload development, and exploit ... Information Full-Time Salary Range: $112,000 - $154,000 The salary range listed is based on ...

Senior Reverse Engineer

Melbourne, FL · On-site

$134K - $184K/yr

Performing vulnerability weaponization, exploit development, payload development, and exploit ... Information Full-Time Salary Range: $134,000 - $184,000 The salary range listed is based on ...

They offer competitive salaries, healthcare, retirement options, profit sharing, and generous PTO ... and exploit development This role is located in Hanover, MD and the work requires a TS/SCI + Full ...

They offer competitive salaries, healthcare, retirement options, profit sharing, and generous PTO ... and exploit development This role is located in Laurel, MD and the work requires a TS/SCI + Full ...

Senior Reverse Engineer

San Diego, CA · On-site

$134K - $184K/yr

Performing vulnerability weaponization, exploit development, payload development, and exploit ... Information Full-Time Salary Range: $134,000 - $184,000 The salary range listed is based on ...

Performing vulnerability weaponization, exploit development, payload development, and exploit ... Information Full-Time Salary Range: $112,000 - $154,000 The salary range listed is based on ...

Senior Reverse Engineer

Woburn, MA · On-site

$134K - $184K/yr

Performing vulnerability weaponization, exploit development, payload development, and exploit ... Information Full-Time Salary Range: $134,000 - $184,000 The salary range listed is based on ...

Senior Reverse Engineer

Arlington, VA · On-site

$134K - $184K/yr

Performing vulnerability weaponization, exploit development, payload development, and exploit ... Information Full-Time Salary Range: $134,000 - $184,000 The salary range listed is based on ...

next page

Showing results 1-20

Salaried Exploit Development information

See salary details

$8

$17

$24

How much do salaried exploit development jobs pay per hour?

As of Jul 9, 2026, the average hourly pay for salaried exploit development in the United States is $17.04, according to ZipRecruiter salary data. Most workers in this role earn between $14.42 and $19.23 per hour, depending on experience, location, and employer.

What are some typical challenges encountered by professionals in salaried exploit development roles?

Professionals in salaried exploit development roles often face challenges such as staying current with rapidly evolving security technologies and patch cycles. They must continuously research new vulnerabilities and develop creative solutions to bypass updated security mechanisms, which can be highly demanding. Collaborating closely with security analysts and other developers is essential to ensure responsible disclosure and risk management. Additionally, balancing project deadlines with the need for meticulous testing and documentation can be a significant challenge in this field.

What is the difference between Salaried Exploit Development vs Penetration Tester?

AspectSalaried Exploit DevelopmentPenetration Tester
CredentialsSecurity certifications, programming skillsSecurity certifications, testing experience
Work EnvironmentResearch labs, security firms, internal teamsClient sites, corporate environments, consulting firms
Industry UsageCybersecurity, offensive securityCybersecurity, vulnerability assessment

Salaried Exploit Developers focus on creating and testing exploits for security research or defensive purposes, often working in labs or R&D settings. Penetration Testers simulate attacks to identify vulnerabilities in client systems. While both roles require security knowledge and technical skills, Exploit Developers primarily develop exploits, whereas Penetration Testers perform assessments and reporting. Understanding these differences helps clarify career paths and employer expectations in cybersecurity.

What is a Salaried Exploit Developer?

A Salaried Exploit Developer is a cybersecurity professional who is employed by an organization to research, identify, and develop software exploits—ways to take advantage of vulnerabilities in computer systems or applications. Unlike freelance or independent security researchers, salaried exploit developers work as part of a security team, often within penetration testing firms, defense contractors, or tech companies. Their work can involve both offensive (discovering vulnerabilities to test defenses) and defensive (helping to patch or mitigate vulnerabilities) tasks. These roles require strong programming skills, a deep understanding of operating systems, and knowledge of security protocols. Salaried Exploit Developers may also be involved in responsible disclosure of vulnerabilities to affected vendors.

What are the key skills and qualifications needed to thrive as a Salaried Exploit Developer, and why are they important?

To thrive as a Salaried Exploit Developer, you need deep expertise in computer science, reverse engineering, vulnerability analysis, and low-level programming, often backed by a degree in computer science or related field. Familiarity with tools like IDA Pro, Ghidra, debuggers, and operating system internals is crucial, and certifications such as OSCP or OSCE can be advantageous. Creativity, persistence, and strong problem-solving abilities are standout soft skills in this role. These qualifications are essential for identifying, developing, and responsibly handling software exploits in a secure and ethical manner.
More about Salaried Exploit Development jobs
What cities are hiring for Salaried Exploit Development jobs? Cities with the most Salaried Exploit Development job openings:
What are the most commonly searched types of Exploit Development jobs? The most popular types of Exploit Development jobs are:
What states have the most Salaried Exploit Development jobs? States with the most job openings for Salaried Exploit Development jobs include:
Infographic showing various Salaried Exploit Development job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 83% Full Time, 14% Part Time, and 2% Contract. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $35,436 per year, or $17 per hour.
Penetration Tester

Penetration Tester

Dark Wolf Solutions

Washington, DC • On-site

$130K - $145K/yr

Full-time

Re-posted 12 days ago


Job description

Dark Wolf is actively seeking an experienced Penetration Tester to join our innovative team. This individual will play a critical role in assessing and enhancing the security of various products, including hardware, software, and embedded systems. This role demands a deep understanding of penetration testing methodologies and advanced exploit development, focusing on identifying and mitigating vulnerabilities across a wide range of technologies. As a Junior Product and Hardware Security Penetration Tester, you will have the chance to work on cutting-edge technologies and contribute to the enhancement of security across a wide range of products. If you possess a strong background in penetration testing and a passion for cybersecurity, we encourage you to apply for this pivotal role. This position is set to be supported in a hybrid work environment out of the DC Metro area. Key responsibilities include, but are not limited to:
  • Conducting comprehensive penetration testing on hardware, software, and network components.
  • Performing advanced vulnerability scanning and assessments on all components.
  • Performing a Cybersecurity evaluation of the product under test to identify vulnerabilities that would negatively impact the Confidentiality, Integrity, or Availability of system data or functionality.
  • Analyzing software, firmware, hardware, and/or RF components within the system.
  • Opining on the impact and level of effort required to exploit the identified vulnerabilities as well as providing information on a high-level remediation strategy.
  • Developing and executing exploits and proof-of-concept (PoC) attacks to demonstrate the impact of identified vulnerabilities.
  • Analyzing and reverse engineering firmware and embedded systems to identify security weaknesses.
  • Testing and assessing the security of secure boot processes and Trusted Execution Environments (TEE).
  • Conducting web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing.
  • Performing manual verification of vulnerabilities, assessing their risk and exploitability.
  • Engaging in wireless and RF security testing, including penetration testing on Wi-Fi, Bluetooth, and Zigbee networks.
  • Utilizing Software Defined Radio (SDR) for protocol reverse engineering and testing.
  • Reporting detailed findings, documenting case details, and providing actionable recommendations for remediation to enhance product security based on system analysis.
  • Planning and executing full-scale, cross-domain vulnerability assessments, network penetration testing, and phishing/social engineering campaigns.
Required Qualifications:
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Engineering, or a related field
  • Minimum of 2+ years' experience in three or more specific areas to include: intelligence analysis, network engineering, networking security, penetration testing, red team operations, hardware engineering, software engineering, exploit development, reverse engineering, vulnerability assessment, physical security assessments, or social engineering
  • Proficiency with cloud technology and deployments across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)
  • Proficiency in the testing and assessment of mobile operating systems, embedded systems, and/or IoT devices
  • Experience in drafting reports, documenting case details, and summarizing findings and recommendations based on system analysis
  • Experience performing advanced vulnerability scanning and assessments on all components
  • Experience conducting web application security assessments, focusing on OWASP Top Ten vulnerabilities and API security testing
  • Demonstrated strong written and verbal communication skills
  • Strong understanding of NIST 800-53 frameworks
  • US Citizenship and an active security clearance at a minimum of the Secret Level
Desired Qualifications:
  • Familiarity with NIST 800-171 Revision 2
  • Proven ability to develop and execute complex exploits and PoC attacks
  • Strong analytical skills and experience in firmware, binary exploitation, and embedded systems testing
  • Advanced knowledge of Software Defined Radio (SDR) and protocol reverse engineering
  • Active professional certifications such as CEH, OSCP, PNPT, GPEN, or similar security/pen testing certifications

The salary range for this position is $130,000.00 - $145,000.00 commensurate on experience and technical skillset.
We are open to considering a variety of levels of experience for these projects and potential for 1099 hourly opportunity.
We are proud to be an EEO/AA Employer Minorities/Women/Veterans/Disabled and other protected categories.
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification from upon hire.