1

Vulnerability Research Jobs (NOW HIRING)

next page

Showing results 1-20

Vulnerability Research information

See salary details

$37K

$106K

$142.5K

How much do vulnerability research jobs pay per year?

As of Jul 10, 2026, the average yearly pay for vulnerability research in the United States is $106,012.00, according to ZipRecruiter salary data. Most workers in this role earn between $104,000.00 and $104,000.00 per year, depending on experience, location, and employer.

What is a Vulnerability Research job?

A Vulnerability Research job involves identifying, analyzing, and reporting security weaknesses in software, hardware, or networks. Researchers use reverse engineering, fuzz testing, and other techniques to discover exploitable flaws before malicious actors can exploit them. Their findings help improve security by enabling developers and organizations to patch vulnerabilities and strengthen defenses. This role requires a deep understanding of cybersecurity, programming, and exploit development.

What are the key skills and qualifications needed to thrive in the Vulnerability Research position, and why are they important?

To thrive in Vulnerability Research, you need a strong background in cybersecurity principles, programming, reverse engineering, and deep knowledge of common operating systems and network protocols, often supported by a relevant degree in computer science or similar fields. Familiarity with tools such as IDA Pro, Ghidra, Wireshark, Metasploit, and certifications like OSCP or CEH is highly valuable. Analytical thinking, persistence, attention to detail, and effective written communication are critical soft skills in this field. These capabilities ensure you can effectively discover, analyze, and document security vulnerabilities, contributing to safer software and systems.

What are some common challenges faced in a Vulnerability Research role?

One of the main challenges in Vulnerability Research is keeping up with constantly evolving threat landscapes and security technologies, which requires continuous learning and adaptability. Researchers often encounter complex and undocumented systems, making analysis and exploitation both technically demanding and time-consuming. You may collaborate closely with other cybersecurity professionals, developers, and incident response teams to verify findings, replicate vulnerabilities, and share remediation strategies. Successfully navigating these challenges is rewarding and allows you to make a tangible impact on organizational security.

More about Vulnerability Research jobs
What cities are hiring for Vulnerability Research jobs? Cities with the most Vulnerability Research job openings:
What are the most commonly searched types of Vulnerability Research jobs? The most popular types of Vulnerability Research jobs are:
What states have the most Vulnerability Research jobs? States with the most job openings for Vulnerability Research jobs include:
Infographic showing various Vulnerability Research job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 88% Full Time, 10% Part Time, and 1% Contract. Highlights an 88% Physical, 3% Hybrid, and 9% Remote job distribution, with an average salary of $106,012 per year, or $51 per hour.
Senior Vulnerability Researcher (Cyber264)

Senior Vulnerability Researcher (Cyber264)

Research Innovations Incorporated

San Antonio, TX • On-site

$94K - $129K/yr

Full-time

This job post has expired 1 day ago. Applications are no longer accepted.


Job description

Job Summary:
Research Innovations Inc. (RII) is redefining defense technology. They are seeking security researchers to independently explore and exploit complex systems, contributing to defense and homeland security efforts.
Responsibilities:
• Leading advanced vulnerability research efforts across operating systems, kernels, firmware, hypervisors, embedded platforms, and complex application stacks.
• Independently scoping ambiguous or underexplored attack surfaces and driving research from initial hypothesis through validated findings.
• Performing deep reverse engineering and in-memory analysis of compiled binaries across multiple architectures (x86/x64, ARM, PowerPC, etc.).
• Designing and executing novel exploitation techniques and mitigation evaluations, including identifying real-world weaknesses in modern defense mechanisms.
• Analyzing undocumented or partially documented system behavior and extending internal interfaces or tooling to support research goals.
• Collaborating with other senior researchers to shape technical direction, review complex work, and raise the overall quality of research output.
• Translating low-level technical findings into clear, actionable insights for internal stakeholders and, when appropriate, customers.
• Contributing to research culture through mentorship, knowledge sharing, and improvements to tools, methodologies, and workflows.
Qualifications:
Required:
• Active US Top Secret security clearance
• Ability to upgrade to TS/SCI Special Access Program access
• Conducted high-impact vulnerability research on real-world systems with minimal guidance, producing findings that influenced security decisions or mitigations
• Demonstrated deep understanding of operating system internals (Windows, Linux, macOS), kernel subsystems, and low-level execution models
• Reverse engineered complex binaries, firmware, or kernel components and reasoned about their behavior in memory
• Developed proof-of-concept exploits or mitigation bypasses that go beyond simple crashes and demonstrate meaningful impact
• Shown strong intuition for exploit mitigations such as ASLR, DEP/NX, stack canaries, CFI, and where their assumptions break down
• Written research tooling, scripts, or frameworks (e.g., Python, C/C++) to support analysis, exploitation, or automation
• Collaborated closely with other researchers, provided technical feedback, and influenced how work is approached or evaluated
• Communicated complex technical concepts clearly in writing and discussion, including with other experts
• Leading advanced vulnerability research efforts across operating systems, kernels, firmware, hypervisors, embedded platforms, and complex application stacks
• Independently scoping ambiguous or underexplored attack surfaces and driving research from initial hypothesis through validated findings
• Performing deep reverse engineering and in-memory analysis of compiled binaries across multiple architectures (x86/x64, ARM, PowerPC, etc.)
• Designing and executing novel exploitation techniques and mitigation evaluations, including identifying real-world weaknesses in modern defense mechanisms
• Analyzing undocumented or partially documented system behavior and extending internal interfaces or tooling to support research goals
• Collaborating with other senior researchers to shape technical direction, review complex work, and raise the overall quality of research output
• Translating low-level technical findings into clear, actionable insights for internal stakeholders and, when appropriate, customers
• Contributing to research culture through mentorship, knowledge sharing, and improvements to tools, methodologies, and workflows
Preferred:
• Experience with hypervisors, virtualization stacks, firmware boot chains, or trusted execution environments
• Background in embedded systems, RTOS environments, or mobile platforms (iOS/Android)
• Familiarity with networking or wireless stacks (Wi-Fi, Bluetooth, cellular) and their security models
• Contributions to the vulnerability research community (publications, talks, open source)
• Experience with symbolic execution, constraint solving, fuzzing frameworks, or advanced program analysis techniques
• Malware analysis experience, including deobfuscation, behavioral analysis, or adversarial tooling
• Interest in shaping long-term research direction, mentoring other researchers, or acting as a technical authority without moving into management
Company:
Research Innovations Inc. (RII) supports critical defense, intelligence, and cyber customers across the U.S. Founded in 2009, the company is headquartered in Alexandria, USA, with a team of 201-500 employees. The company is currently Growth Stage.