Vulnerability researcher

Description

What we’re looking for

An all-arounder technical star, passionate about using AI to help people understand (and break) code. This is the best time to join this mission and have the greatest impact as we’re looking for a high agency “first employee” to build the future with us.

About Cyberillium

Cyberillium offers high-end security research services for customers who want to build secure products. We conduct in-depth research and reverse engineering on various technologies, including latest operating systems, embedded software and web applications. Founded by an elite group of Israeli security researchers, we deliver cutting-edge cyber solutions to enterprises of all sizes.

In addition to our research group, we lately started developing a unique product for code understanding that combines AI, Static Analysis and unique insights we gained from our vulnerability research experience. We aim to bring this technology to other researchers while also enabling other AI systems, developers and team leaders to enjoy next-gen code understanding. We might even end up making an AGR (Artificial General Researcher) 🙂.

Why Cyberillium

By joining us, you’ll shape with us the DNA of a fast-growing company. Working with some of the best cyber talents in Israel you will help us solve the ‘unsolvable’ problems for our highly technical clients and develop state of the art research technologies.

Description (What you’ll do)

• Shape a new product in its earliest days. You’ll take part in research, development, product ideation and customer calls. This is the most impactful time to join!
• Research and develop cutting-edge technologies for vulnerability research and code understanding that uses a unique combination of AI and Static Analysis.
• Work with both agentic workflows and internals of AI.
• Technically lead 0-day vulnerability research and exploitation on various systems from embedded devices to modern systems with full mitigations, done in teams of 1-4.
• Actively document efforts as you go to assist yourself and others in learning from and maintaining your progress.
• Voice your thoughtful and innovative ideas for additional research and development projects.

Requirements

Expected Skills and Experience:

• +4 years working as a cybersecurity researcher.
• Experience developing in Python and C.
• Bonus: experience with AI (Research / Development / ML-Ops).
• Bonus: experience with static analysis research or development.
• Deep knowledge of operation systems internals (Linux / Windows / iOS / Android / etc.).
• Experience in reverse engineering of complex systems.
• Experience in 0-day research of large systems (with or without sources). Familiarity with different kinds of vulnerabilities - OOB, Double Free, UAF, Logic vulnerabilities, Injection, Races, Type confusion, Timing attacks, de-synchronization, etc.
• Heap and stack exploitation experience in fully mitigated systems.
• Be hands-on: experience with research tools such as gdb, IDA / ghidra, Frida, windbg, QEMU, ftrace, Wireshark, etc.
• A quick learner, ready to work in an agile, fast-paced, multi-task environment.
• A team player with strong communication skills.
• Familiarity with cryptography and cryptographic algorithms will be a plus.
• High level of written and spoken English.