Exploit Researcher - Vulnerability Research / Offensive Security

Role summary :

A hands-on Exploit Researcher with ~2 years of real-world experience who finds, analyzes, and weaponizes vulnerabilities responsibly. You'll turn complex bugs into repeatable Proof- of- Concepts (PoCs), collaborate with product teams to get fixes shipped, and help level up our offensive tooling and incident response. We're looking for someone who moves fast, documents crisply, and treats responsible disclosure as a professional craft.

Key responsibilities

• Perform vulnerability discovery across binaries, services, mobile platforms (Android), and network protocols using reverse engineering, dynamic analysis and fuzzing.
• Develop stable, well-documented Proof- of- Concept exploits and test harnesses that demonstrate impact (RCE, privilege escalation, bypasses).
• Reverse engineer applications, firmware, and OS components (Windows, Linux, Android) to identify root causes and attack surfaces.
• Research and analyze malware behavior and persistence techniques to inform defensive controls and detection rules.
• Develop exploit chains for bugs and demonstrate practical exploitability (memory corruption, logic flaws, auth bypasses).
• Design and implement fuzzers, exploit chains, and automation to scale research efforts.
• Triage incoming vulnerability reports and reproduce findings accurately and quickly.
• Work with product / engineering teams to communicate root cause, risk, and mitigation strategies; validate fixes.
• Contribute to internal exploit framework, tooling, playbooks, and knowledge base focused on OS-level and mobile exploitation.
• Follow and drive responsible disclosure processes; prepare advisory drafts when required.
• Mentor junior researchers and participate in internal red-team exercises / purple-team engagements.

Must-have technical skills & experience :

Nice-to-have :

Behavioural / soft skills :

(ref : hirist.tech)