1

Security Research Engineer Jobs (NOW HIRING)

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must ...

Depthfirst is on a mission to solve security by building intelligence to detect and remediate critical software vulnerabilities. The Research Engineer will play a crucial role in building and ...

Translate research into usable outcomes for engineering and security teams, including proof-of-concept demonstrations, benchmarks, technical guidance, mitigations, and secure-by-design ...

Security Research Internship

New York, NY · On-site +1

$3.0K - $8.0K/mo

We are working on a wide range of security research topics, including malware analysis, vulnerability detection, network anomaly detection, mobile app analysis, reverse engineering, and fraud ...

Collaborate with the product and engineering organizations to align capability development roadmaps ... Recruit, train, and develop an international team of security researchers of diverse backgrounds ...

The Research Architect for Dynamic Application Security Testing (DAST) is responsible for ... SQL injection, cross-site scripting, etc.). • Ability to learn new programming languages and/or ...

next page

Showing results 1-20

Security Research Engineer information

See salary details

$61.5K

$152.8K

$205.5K

How much do security research engineer jobs pay per year?

As of Jul 17, 2026, the average yearly pay for security research engineer in the United States is $152,773.00, according to ZipRecruiter salary data. Most workers in this role earn between $143,000.00 and $158,500.00 per year, depending on experience, location, and employer.

What does a Security Research Engineer do?

A Security Research Engineer is responsible for identifying, analyzing, and mitigating security vulnerabilities in software, hardware, or network systems. They conduct security assessments, develop tools to test systems, and stay updated on the latest threats and attack techniques. Their work often involves reverse engineering, vulnerability discovery, and collaborating with other teams to enhance overall security. Security Research Engineers play a key role in protecting organizations from cyber threats by providing technical expertise and developing innovative defensive measures.

What are the key skills and qualifications needed to thrive as a Security Research Engineer, and why are they important?

To thrive as a Security Research Engineer, you need a strong understanding of cybersecurity principles, programming languages (such as Python or C/C++), and vulnerability analysis, typically backed by a degree in computer science or a related field. Familiarity with security tools like IDA Pro, Wireshark, Metasploit, and certifications such as OSCP or CEH are commonly required. Analytical thinking, problem-solving, and effective communication help you stand out in this role. These skills and qualities are essential for identifying threats, communicating findings, and developing robust security solutions in a constantly evolving cyber landscape.

What are common challenges faced by Security Research Engineers when analyzing emerging threats?

Security Research Engineers often encounter rapidly evolving attack techniques and must stay ahead of sophisticated threat actors. Keeping up with new malware variants, zero-day vulnerabilities, and advanced persistent threats requires continuous learning and adaptability. Additionally, collaborating with cross-functional teams, such as incident response and product development, is essential to develop effective countermeasures. The dynamic nature of cyber threats means that priorities can shift quickly, making time management and clear communication critical skills in this role.

What is the difference between Security Research Engineer vs Security Analyst?

AspectSecurity Research EngineerSecurity Analyst
CredentialsBachelor's or higher in CS, cybersecurity certifications (e.g., CISSP, CEH)Bachelor's in CS, cybersecurity certifications often preferred
Work EnvironmentResearch labs, development teams, security firmsSecurity operations centers, corporate IT teams
Industry UsageTechnology, cybersecurity firms, research institutionsFinancial, healthcare, corporate sectors
Primary FocusDeveloping new security tools, discovering vulnerabilitiesMonitoring, incident response, risk assessment

While both roles focus on cybersecurity, Security Research Engineers primarily develop new security solutions and discover vulnerabilities, whereas Security Analysts monitor systems and respond to security incidents. The roles often overlap but differ in their core responsibilities and work environments.

More about Security Research Engineer jobs
What states have the most Security Research Engineer jobs? States with the most job openings for Security Research Engineer jobs include:
Infographic showing various Security Research Engineer job openings in the United States as of July 2026, with employment types broken down into 87% Full Time, and 13% Contract. Highlights an 74% In-person, 13% Hybrid, and 13% Remote job distribution, with an average salary of $152,773 per year, or $73.4 per hour.
Research Engineer

Research Engineer

Galois, Inc.

Portland, OR • On-site

Full-time

Medical, Dental, Vision, Retirement, PTO

Re-posted 28 days ago


Job description

About Galois
Who We Are: From building digital engineering tools that make space exploration safer to verifying cryptographic libraries that protect some of the world's most valuable data, Galois develops technology to guarantee the trustworthiness of systems where failure is unacceptable.
We are a community of researchers, engineers, and operations people dedicated to creating trustworthiness in critical systems in every functional area of the organization. Our unique organizational structure enables us to adapt to the needs of the innovative projects we deliver.
What We Do: We believe trustworthy systems are built on a formal mathematical foundation. Our researchers apply formal analysis techniques to the design and verification of critical software systems, allowing us to model, analyze, and mathematically prove that a system behaves exactly as intended under all circumstances. With clients including NASA, DARPA, AWS, and the DoW, we leverage our cutting-edge research to deliver high assurance solutions and tools that enhance security, reliability, and operational efficiency across sectors including aerospace & defense, healthcare, semiconductors, and fintech.
Research Engineers at Galois design and develop advanced technologies for safety- and security-critical systems, networks, and applications. Engineers work in small team settings and must successfully interact with clients, partners, and other employees in a highly cooperative, collaborative, and intellectually challenging environment.
Life at Galois: People are the foundation of Galois's success. As an employee-owned company, we care not only about the technologies we develop, but also the path we take to create them. Galois operates under a highly collaborative organizational model that encourages leadership and teamwork and respects the individuals.
For more on our culture and organizational structure, visit Life at Galois.
About This Role
Galois is hiring a Software Engineer/Researcher to join our team! This role will primarily focus on advancing the state of the art in programming language theory research and implementation. Researchers in this role will use their expertise in Formal Methods and Programming Languages to conduct rigorous formal verification of software and systems, ensuring they meet the highest security standards.
Responsibilities
As a Research Engineer, you will have the following responsibilities:
  • Requirements gathering: engaging the client in a series of discussions, where each iteration refines the needs of the client, and leads to the suggestion of means to meet those needs.
  • Architecture and design: constructing high-level architectural descriptions of software systems, and constructing deeper program designs by fleshing out architecture prototypes. Architectures must be designed with assurance in mind, determining where and how formal methods are to be applied.
  • Implementation: extending design prototypes through to a finished product, with care taken to ensure robustness and ease of use.
  • Formal verification: use mechanical reasoning tools such as theorem provers and model checkers to demonstrate or analyze desired security and correctness properties of systems.
  • Testing and validation: constructing and regularly conducting system, unit, and regression tests, and conducting semi-formal validation and verification.
  • Technology research and development: conducting speculative research and development of cutting-edge technology, and incorporating that technology in product prototypes.
  • Technical infrastructure development: developing (designing, implementing, and maintaining) tools to be used within Galois, and developing library code to be shared among projects.
Key Qualifications
  • Education:
    • A minimum of a Bachelor's degree in computer science or equivalent is required.
    • An MS or PhD in CS or a related field is desirable but optional.
  • Required Technical Expertise:
    • A programming languages background and experience with formal methods.
    • Must have hands-on experience developing software and applying formal verification techniques.
    • Familiarity with diverse formal methods, such as model checking, theorem proving, program analysis, and formal semantics of programming languages, and demonstrated expertise in at least one such area.
    • Experience in all aspects of software engineering practices.
    • Fluent in using semi-formal methods such as Haskell or other functional programming languages, including executable formal specifications.
  • Required General Skills:
    • Must work well with customers, including building rapport, identifying needs, and communicating with strong written, verbal, and presentation skills.
    • Must be highly motivated and able to self-manage deadlines and quality goals.
  • Preference will be given to candidates with one or more of the following technical expertise:
    • Direct experience in developing high-assurance systems and/or security products.
    • Experience with Model Based Systems Engineering tools, with expertise in SysML and AADL.
    • Knowledge of hardware engineering languages and platforms such as VHDL, Chisel, Bluespec, SystemVerilog, and Verilog.
Security and Citizenship Requirement
U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
Location
We enjoy a hybrid work environment, and candidates may be based out of any of our offices in Arlington, VA, Dayton, OH, Minneapolis, MN, or Portland, OR. Additionally, being located in Boston, MA is also welcome.
Benefits
We offer a robust benefits package to provide for your and your family's well-being, including:
  • Employee Stock Ownership Plan (ESOP)
  • 401(k) retirement plan with 5% employer match and immediate vesting
  • Fully paid medical insurance plans and dental and vision reimbursement plan
  • Health Savings Account (HSA) with generous employer contributions
  • Mental health and wellbeing support through our employee assistance program
  • 5 weeks of paid time off and 9 days of paid company holidays each year
  • 16 weeks of fully paid parental leave (available for birth, adoption, and fostering)
  • 1 week of fully paid "Blue Sky" innovation time each year to pursue your interests

For more information on our benefits, visit Careers at Galois.
Compensation
Compensation is based on the value of your results, not your value as an employee or person. The compensation process, individual salaries, and criteria for salary changes are transparent to the entire company.
For more information about our forward-looking and transparent approach to pay, visit Compensation.
Equal Employment Opportunity
Galois is an Equal Opportunity Employer and does not discriminate in employment opportunities or practices based on race, ethnicity, national origin, ancestry, color, sex, gender identity or expression, sexual orientation, marital or parental status, pregnancy or childbirth, disability, age, religion, creed, genetic information, veteran status, or any other characteristic protected by applicable federal, state, or local law. We encourage and respect different viewpoints and experiences as being essential to the process of innovation. We strive to acquire, grow, and maintain a diverse and inclusive workplace that applies principles and standards equitably while supporting the needs and accommodations of the individual employee.
Consistent with the Americans with Disabilities Act (ADA) and federal and state laws, it is the policy of Galois, Inc. to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. If you require reasonable accommodation in completing the employment application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please contact peopleoperations@galois.com.