1

Security Research Engineer Jobs (NOW HIRING)

We are working on a wide range of security research topics, including malware analysis, vulnerability detection, network anomaly detection, mobile app analysis, reverse engineering, and fraud ...

We are on a mission to solve security. depthfirst is building intelligence to detect and remediate ... About this role We're seeking an experienced Research Engineer to join our effort in building and ...

Research Engineer II About CICONIX: CICONIX LLC is a Veteran Owned Small Business specializing in ... Security & Background Check: * U.S. Citizenship and a successful background investigation are ...

Description Research Engineer II About CICONIX: CICONIX LLC is a Veteran Owned Small Business ... Security & Background Check: * U.S. Citizenship and a successful background investigation are ...

Research Engineer II About CICONIX: CICONIX LLC is a Veteran Owned Small Business specializing in ... Security & Background Check: * U.S. Citizenship and a successful background investigation are ...

Research Engineer II About CICONIX: CICONIX LLC is a Veteran Owned Small Business specializing in ... Security & Background Check: * U.S. Citizenship and a successful background investigation are ...

$100K - $190K/yr

Working to rigorously solve these security problems through building a science of security and ... As an engineer, you will develop scalable implementations of machine learning algorithms and use ...

App Sec Engineer, Security Researcher, Vulnerability Researcher, etc • Comfortable working in a fast-paced environments where prototypes are rapidly iterated or discarded • Comfortable tech ...

Research Engineer

Reston, VA · Hybrid

$108K - $147K/yr

... security. The Engineer III - Research Software Engineer plays a role in identifying and developing ... novel and operationally relevant research concepts related to Internet infrastructure applications ...

next page

Showing results 1-20

Security Research Engineer information

See salary details

$61.5K

$152.8K

$205.5K

How much do security research engineer jobs pay per year?

As of Jul 17, 2026, the average yearly pay for security research engineer in the United States is $152,773.00, according to ZipRecruiter salary data. Most workers in this role earn between $143,000.00 and $158,500.00 per year, depending on experience, location, and employer.

What does a Security Research Engineer do?

A Security Research Engineer is responsible for identifying, analyzing, and mitigating security vulnerabilities in software, hardware, or network systems. They conduct security assessments, develop tools to test systems, and stay updated on the latest threats and attack techniques. Their work often involves reverse engineering, vulnerability discovery, and collaborating with other teams to enhance overall security. Security Research Engineers play a key role in protecting organizations from cyber threats by providing technical expertise and developing innovative defensive measures.

What are the key skills and qualifications needed to thrive as a Security Research Engineer, and why are they important?

To thrive as a Security Research Engineer, you need a strong understanding of cybersecurity principles, programming languages (such as Python or C/C++), and vulnerability analysis, typically backed by a degree in computer science or a related field. Familiarity with security tools like IDA Pro, Wireshark, Metasploit, and certifications such as OSCP or CEH are commonly required. Analytical thinking, problem-solving, and effective communication help you stand out in this role. These skills and qualities are essential for identifying threats, communicating findings, and developing robust security solutions in a constantly evolving cyber landscape.

What are common challenges faced by Security Research Engineers when analyzing emerging threats?

Security Research Engineers often encounter rapidly evolving attack techniques and must stay ahead of sophisticated threat actors. Keeping up with new malware variants, zero-day vulnerabilities, and advanced persistent threats requires continuous learning and adaptability. Additionally, collaborating with cross-functional teams, such as incident response and product development, is essential to develop effective countermeasures. The dynamic nature of cyber threats means that priorities can shift quickly, making time management and clear communication critical skills in this role.

What is the difference between Security Research Engineer vs Security Analyst?

AspectSecurity Research EngineerSecurity Analyst
CredentialsBachelor's or higher in CS, cybersecurity certifications (e.g., CISSP, CEH)Bachelor's in CS, cybersecurity certifications often preferred
Work EnvironmentResearch labs, development teams, security firmsSecurity operations centers, corporate IT teams
Industry UsageTechnology, cybersecurity firms, research institutionsFinancial, healthcare, corporate sectors
Primary FocusDeveloping new security tools, discovering vulnerabilitiesMonitoring, incident response, risk assessment

While both roles focus on cybersecurity, Security Research Engineers primarily develop new security solutions and discover vulnerabilities, whereas Security Analysts monitor systems and respond to security incidents. The roles often overlap but differ in their core responsibilities and work environments.

More about Security Research Engineer jobs
What states have the most Security Research Engineer jobs? States with the most job openings for Security Research Engineer jobs include:
Infographic showing various Security Research Engineer job openings in the United States as of July 2026, with employment types broken down into 87% Full Time, and 13% Contract. Highlights an 74% In-person, 13% Hybrid, and 13% Remote job distribution, with an average salary of $152,773 per year, or $73.4 per hour.
Cryptography Research Engineer

Cryptography Research Engineer

Riverside Research

Dayton, OH

$140K - $195K/yr

Full-time

Re-posted 11 days ago


Job description

Riverside Overview

Riverside Research is an independent National Security Nonprofit dedicated to research and development in the national interest. We provide high-end technical services, research and development, and prototype solutions to some of the country’s most challenging technical problems. All Riverside Research opportunities require U.S. Citizenship.

Position Overview

Riverside Research is seeking a Cryptography Research Engineer to work alongside our US Air Force (USAF) and Department of Defense (DoD) partners to develop tamper protected microelectronic devices and intellectual property (IP). This position will possess a strong understanding of cryptographic algorithm development and implementation, including post-quantum cryptography, and advanced attacks against cryptographic implementations. You will work with hardware security experts employing a range of microelectronics test equipment, custom software, and computing resources to provide the best support to our customers. This position is located at WPAFB, Ohio.

Responsibilities

  • Provides assessments of state-of-the-art implementation attacks against cryptographic algorithms
  • Attends technology interchange meetings at DoD and contractor sites
  • Designs and performs research and experiments to assess attack effectiveness against microelectronic devices
  • Interacts with internal team and trusted third-parties to collect appropriate source information
  • Analyzes secure architectures to identify vulnerabilities
  • Documents findings in technical reports and presentations
  • Develops, maintains, adjusts, and reports on project schedules and timelines
  • Attends technical conferences to understand new attacks and protections
  • Collaborates with Government research leads to conducted research and present papers across a variety of DoD conferences and technical interchanges
  • Supports Principal Investigator and Program Manager in the development and documentation of technical requirements for approved research areas
  • Contributes to proposals for new research in similar and/or related technology areas

Qualifications

Required Qualifications:

  • Secret required clearance to start, but must be able obtain Top Secret security clearance and all required program access approvals.
  • Bachelor’s degree in Electrical Engineering, Computer Engineering, Computer Science or Mathematics with 5 years direct experience in cryptography or a closely related discipline; or a master’s degree in related academic field and 3 years direct experience in cryptography or embedded hardware security, or a PhD within a related discipline.
  • Strong mathematical foundation in cryptography, excellent English reading skills, eagerness to learn, and desire to perform fundamental research.
  • Familiarity with the finalized NIST Post-Quantum Encryption Standards (CRYSTALS-Kyber, CRYSTALS-Dilithium, Sphincs+ and FALCON) and other public-key cryptographic algorithms (AES, RSA, ECC).
  • Good communication and teamwork skills.
  • Proficient in creating technical reports and presentations supporting research areas.
  • Willing to travel a few times per year.

Desired Qualifications:

  • Bachelor’s degree in Electrical Engineering, Computer Engineering, Computer Science or Mathematics with 8 years direct experience in cryptography or a closely related discipline; or a master’s degree in related academic field and 6 years direct experience in cryptography or embedded hardware security, or a PhD within a related discipline with 3 years practical experience.
  • Publication history in cryptography or mathematics.
  • Proficiency in Python, Rust, or C++.
  • Experience building cryptographic algorithms in hardware and RTL implementations.
  • Experience with Machine Learning and Data Analysis.
  • Proficiency in common ZK proofs (Groth, SNARKs, STARKs, etc.).
  • Familiarity with common ZK primitives (BLS, ECDSA, Oracle, Hash, Merkel Tree, etc.).
  • Knowledge of standard ZK protocols (Pedersen, Schnorr, KZG, Polynomial Commitment, etc.).
  • Experience with VOLE-based ZK proofs, symmetric key ciphers, or fully homomorphic encryption.
  • Understanding of multi-party computation and obfuscation circuits.
  • Knowledge of blockchain technology design principles and experience with a common blockchain open-source project.

Global Comp

$140,000-$195,000 This represents the typical compensation range for this position based on experience, location and other factors.

Closing Statement

Riverside Research Institute is a not-for-profit, technology-oriented defense company, where service to our customers and support of our staff is our overall mission. Riverside is an affirmative action-equal opportunity employer and complies with all applicable federal, state, and local laws regarding recruitment and hiring. Riverside offers comprehensive compensation and benefit packages to our employees. Riverside bases its employment decisions solely on technical experience, qualifications and other job-related criteria related to our organizational purpose as a not-for-profit company, and without regard to race, color, religion, age, sex marital status, sexual orientation, national origin, physical or mental disability, veteran’s status or any other status legally protected by applicable federal, state, and local law.