Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability Researcher: Senior Levels (Applicants must already hold a TS clearance or higher) - F
Vienna, VA · On-site
$43.27 - $108.17/hr
The candidate will be working independently as a Vulnerability Researcher to identify flaws in ... Please be aware that you are applying for a position to work as a federal contractor. As such ...
Quick apply
Vulnerability Researcher: Senior Levels (Applicants must already hold a TS clearance or higher) - F
Vienna, VA · On-site
$43.27 - $108.17/hr
The candidate will be working independently as a Vulnerability Researcher to identify flaws in ... Please be aware that you are applying for a position to work as a federal contractor. As such ...
Vulnerability & Exploitation Specialist
Annapolis Junction, MD · On-site +1
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability & Exploitation Specialist
Annapolis Junction, MD · On-site +1
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability & Exploitation Specialist
Annapolis, MD · On-site
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability & Exploitation Specialist
Annapolis, MD · On-site
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability & Exploitation Specialist
Annapolis, MD · On-site +1
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Quick apply
Vulnerability & Exploitation Specialist
Annapolis, MD · On-site +1
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability & Exploitation Specialist
Annapolis, MD · On-site +1
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Vulnerability & Exploitation Specialist
Annapolis, MD · On-site +1
$180K - $230K/yr
Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D ... Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction ...
Risk/Vulnerability Analyst I
$90K - $100K/yr
This individual will perform research, analysis, and data gathering activities while conducting ... Moreover, these regulations require that covered prime contractors and subcontractors take ...
Risk/Vulnerability Analyst I
$90K - $100K/yr
This individual will perform research, analysis, and data gathering activities while conducting ... Moreover, these regulations require that covered prime contractors and subcontractors take ...
Vulnerability Assessor
Alexandria, VA · On-site
ASRC Federal is a leading government contractor furthering missions in space, public health and ... Research and evaluate emerging technologies to identify new or evolving risks and recommend ...
Vulnerability Assessor
Alexandria, VA · On-site
ASRC Federal is a leading government contractor furthering missions in space, public health and ... Research and evaluate emerging technologies to identify new or evolving risks and recommend ...
Vulnerability Assessor
Alexandria, VA · Hybrid
ASRC Federal is a leading government contractor furthering missions in space, public health and ... Research and evaluate emerging technologies to identify new or evolving risks and recommend ...
Vulnerability Assessor
Alexandria, VA · Hybrid
ASRC Federal is a leading government contractor furthering missions in space, public health and ... Research and evaluate emerging technologies to identify new or evolving risks and recommend ...
Cybersecurity Risk Vulnerability III
$132K - $148K/yr
This individual will perform research, analysis, and data gathering activities while conducting ... Moreover, these regulations require that covered prime contractors and subcontractors take ...
Cybersecurity Risk Vulnerability III
$132K - $148K/yr
This individual will perform research, analysis, and data gathering activities while conducting ... Moreover, these regulations require that covered prime contractors and subcontractors take ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis, MD · On-site
$103K - $181K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis, MD · On-site
$103K - $181K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Software Engineer II
Columbia, MD · On-site
$160K - $190K/yr
Experience or interest in offensive cyber operations, vulnerability research, and software reverse ... About Us Intezra Inc. is a small business prime contractor for all realms of cyber and AI/ML ...
New
Quick apply
Software Engineer II
Columbia, MD · On-site
$160K - $190K/yr
Experience or interest in offensive cyber operations, vulnerability research, and software reverse ... About Us Intezra Inc. is a small business prime contractor for all realms of cyber and AI/ML ...
New
Software Engineer -- Distributed Web Applications & Cloud
Columbia, MD · On-site
$160K - $190K/yr
Experience or interest in offensive cyber operations, vulnerability research, and software reverse ... About Us Intezra Inc. is a small business prime contractor for all realms of cyber and AI/ML ...
New
Quick apply
Software Engineer -- Distributed Web Applications & Cloud
Columbia, MD · On-site
$160K - $190K/yr
Experience or interest in offensive cyber operations, vulnerability research, and software reverse ... About Us Intezra Inc. is a small business prime contractor for all realms of cyber and AI/ML ...
New
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis Junction, MD · On-site
$103K - $181K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis Junction, MD · On-site
$103K - $181K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis Junction, MD · On-site
$125K - $225K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis Junction, MD · On-site
$125K - $225K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis, MD · On-site
$125K - $225K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Firmware-Savvy CNO Developer (TS/SCI w/Poly)
Annapolis, MD · On-site
$125K - $225K/yr
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Apply vulnerability research and CNO skills to discover and implement novel solutions. * Work on-site at a contractor facility, fully integrated into a small, expert team. * Collaborate with senior ...
Principal Product Manager, Vulnerability Management
Orlando, FL · Remote
$140K - $223K/yr
... defense contractors, federal agencies, and enterprise customers. Success in this role includes ... research to identify product opportunities and customer pain points. * Translate customer and ...
Principal Product Manager, Vulnerability Management
Orlando, FL · Remote
$140K - $223K/yr
... defense contractors, federal agencies, and enterprise customers. Success in this role includes ... research to identify product opportunities and customer pain points. * Translate customer and ...
Vulnerability Researcher Contractor information
See salary details
$30K - $42.2K
4% of jobs
$42.2K - $54.5K
3% of jobs
$54.5K - $66.7K
18% of jobs
$67K is the 25th percentile. Wages below this are outliers.
$66.7K - $78.9K
9% of jobs
$78.9K - $91.1K
8% of jobs
$91.1K - $103.4K
3% of jobs
$103.4K - $115.6K
3% of jobs
The median wage is $120.2K / yr.
$115.6K - $127.8K
4% of jobs
$127.8K - $140K
3% of jobs
$140K - $152.3K
3% of jobs
$157.1K is the 75th percentile. Wages above this are outliers.
$152.3K - $164.5K
41% of jobs
$30K
$113.1K
$164.5K
How much do vulnerability researcher contractor jobs pay per year?
As of Jun 19, 2026, the average yearly pay for vulnerability researcher contractor in the United States is $113,102.00, according to ZipRecruiter salary data. Most workers in this role earn between $67,000.00 and $154,000.00 per year, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a Vulnerability Researcher Contractor, and why are they important?
To thrive as a Vulnerability Researcher Contractor, you need a deep understanding of computer systems, networking, programming languages (such as C/C++, Python), and a strong background in cybersecurity, often supported by relevant degrees or certifications like OSCP or CEH. Familiarity with vulnerability assessment tools (e.g., IDA Pro, Burp Suite, Metasploit), reverse engineering platforms, and bug tracking systems is typically required. Analytical thinking, attention to detail, and effective written communication are vital soft skills in this role. These skills ensure the accurate identification, documentation, and mitigation of security vulnerabilities, which are crucial for protecting organizational assets.
What are the typical collaboration dynamics for a Vulnerability Researcher Contractor within cybersecurity teams?
As a Vulnerability Researcher Contractor, you’ll often work closely with internal security teams, developers, and sometimes external clients to identify, analyze, and document security flaws. Despite being a contractor, you’ll participate in regular team meetings, share findings, and sometimes assist in developing proof-of-concept exploits or remediation guidance. The role requires strong communication skills, as you’ll need to clearly explain technical vulnerabilities to both technical and non-technical stakeholders. Contract positions may also require rapid onboarding and adaptability to different workflows, making flexibility and proactive communication essential.
What does a Vulnerability Researcher Contractor do?
A Vulnerability Researcher Contractor is an information security professional who specializes in identifying, analyzing, and documenting security vulnerabilities in software, systems, or networks. They are often hired on a temporary or project basis to assess the security posture of an organization or specific products. Their responsibilities may include conducting penetration tests, reverse engineering software, developing proof-of-concept exploits, and providing recommendations for mitigating discovered vulnerabilities. Contractors in this role typically work independently or as part of a security team and may present their findings to stakeholders or assist in developing security patches.
What is the difference between Vulnerability Researcher Contractor vs Penetration Tester?
| Aspect | Vulnerability Researcher Contractor | Penetration Tester |
|---|---|---|
| Credentials | Certifications like OSCP, CEH, CISSP often preferred | Similar certifications, often including OSCP, CEH, GPEN |
| Work Environment | Research-focused, analyzing vulnerabilities in systems and software | Practical testing, simulating attacks to identify security gaps |
| Employer & Industry Usage | Consulting firms, cybersecurity companies, freelance roles | Security firms, internal security teams, consulting roles |
| Search & Comparison Intent | Understanding research vs active testing roles | Distinguishing between research and hands-on attack simulation |
While both roles involve cybersecurity expertise, Vulnerability Researcher Contractors focus on discovering and analyzing vulnerabilities through research, whereas Penetration Testers actively simulate attacks to evaluate security defenses. Both roles often require similar certifications and work in related environments, but their core activities differ: research versus practical testing.
More about Vulnerability Researcher Contractor jobs
What cities are hiring for Vulnerability Researcher Contractor jobs? Cities with the most Vulnerability Researcher Contractor job openings:
What states have the most Vulnerability Researcher Contractor jobs? States with the most job openings for Vulnerability Researcher Contractor jobs include:
What job categories do people searching Vulnerability Researcher Contractor jobs look for? The top searched job categories for Vulnerability Researcher Contractor jobs are:
Vulnerability & Exploitation Specialist with Security Clearance
Tailored Access, LLCAnnapolis, MD • On-site, Remote
Other
Posted 26 days ago
Job description
What Impact You'll Have: Our team conducts Vulnerability Research and Reverse Engineering in a rapid prototyping, R&D environment. On this highly-visible program, you can get your hands dirty with a wide variety of tools and systems and get a chance to do some of the really cool things that can be done with a CNO skill set. The project consists of small teams working closely with customers to respond to specific mission needs, create new tools and techniques, and address ongoing challenges.
This work is very hands-on, and the culture supports developing talent and letting smart people grow and tackle real-world challenges in a flexible, fun environment. On this project you could work with C/C++, Python, Assembly (x86/x64), Java, mobile OS's, windows, linux, RE and debugging tools, and more. Work on this program takes place in both customer and contractors SCIFs in the Annapolis Junction, MD area (we cannot support remote work) and requires a TS/SCI + Poly clearance (acceptable to this customer).
What You'll Be Owning: GRVTY is seeking a Vulnerability & Exploitation Specialist with a TS/SCI + Poly clearance (applicable to this customer) to join one of our top projects in Annapolis Junction, MD. We are looking for candidates who have discovered a 0-day vulnerabilities or a list of CVEs (public vulnerability disclosures) they discovered or contributed to. We are also looking for any specific work they've done exploiting vulnerabilities.
What You Must Have: * Active TS/SCI with Polygraph Clearance * Skills/experience listed out in order of priority: * 0-day vulnerabilities or CVEs discovered and attributed to themselves * History performing vulnerability research * Experience with writing or using fuzzers - AFL, LibFuzzer, ClusterFuzz, oss-fuzz * Experience with code analysis tools - CodeQL, Joern, Semgrep * History of exploiting or productizing 0-day vulnerabilities * History of exploiting or productizing n-day vulnerabilities/CVEs/publicly disclosed vulnerabilities * History of reverse engineering malware or other code for CNE purposes * Experience with reverse engineering tools - Ghidra, Ida Pro, Binary Ninja Experience using debuggers - GDB or WinDbg * Experience writing, navigating, and building C/C++ code * Experience with tools like VsCode, Visual Studio, VIM/Emacs * Familiarity with ARM or MIPS architectures and Linux variants * We also use Python to write a lot of our tools, so that is good to see #LI-BPJ
About Tailored Access
Sourced by ZipRecruiter
Industry
It services
Company size
11 - 50 Employees
Headquarters location
Annapolis Junction, MD, US
Year founded
2007