What are the responsibilities and job description for the Sr. CNO Vulnerability Researcher position at Leidos?
Description
Job Description:
The ever-evolving Cyber landscape requires the development of innovative technical solutions to support operational cyber missions through research, engineering, and development.
The Cyber and SIGINT Solutions (CSS) Operation at Leidos is seeking a motivated Sr. CNO Vulnerability Researcher to help architect, design, and work in a dynamic environment with a team of Cyber Engineers in reverse engineering, vulnerability research, prototyping, design, software development, integration, and test tasks to develop capabilities against a variety of technologies and platforms. As we work to reimagine the state of offensive cyber operations tooling and bring innovative technical solutions to bear over the next several years, this role is critical to help set the future direction and will report directly to the CSS Technical Director, CNO R&D.
Responsibilities:
- Reverse engineering and vulnerability research on complex systems and protocols.
- Research new hardware or software based CNO capabilities.
- Apply knowledge of general security OS concepts and networks.
- Investigating the internals of various operation systems to discover new features, vulnerabilities, and techniques.
The ideal candidate will have hands-on experience with native code (C/C ), a clear understanding of OS security fundamentals and protection mechanisms that exist today, and finding creative ways to automate tooling to break those protection assumptions.
Basic Qualifications:
- Minimum twelve (12) years of experience programming: (e.g Assembly, C, C , Python)
- Minimum twelve (12) years of experience programming offensive cyber tools and/or techniques
- Bachelor's Degree in computer science, information systems or applicable engineering field and minimum twelve (12) years of experience in CNO R&D, computer science, information systems, or network engineering. Additional years of experience will be considered in lieu of a degree.
- Experience utilizing reverse engineering and debugging tools such as IDA Pro, Ghidra, Windbg, Radare2, Binary Ninja, Immunity Debugger/Ollydbg, gdb, lldb, or others
- Experience analyzing, disassembling, and reverse engineering software binaries and/or hardware
- Experience performing in-depth analysis (dynamic/static) on diverse set of platforms
- Experience performing open source research & vulnerability analysis
- Experience developing documentation and reports (analysis reports, test reports, etc.)
Preferred Qualifications:
- US Citizen with CI Polygraph Clearance
- Deep understanding of DoD/IC Customers that have authority to conduct cyber operations
- Experience identifying software vulnerabilities and developing code to demonstrate exploitation
- Experience analyzing, disassembling, and reverse engineering software binaries and/or hardware
- Experience performing in-depth analysis (dynamic/static) on diverse set of based platforms
- Experience using tools to extract and analyze firmware or software
- Demonstrated experience with programming cyber tools and techniques
- Experience analyzing firmware of embedded devices
- Ability to analyze network traffic for vulnerabilities
- Developing for real time operating systems (RTOS) and interesting embedded systems.
- Demonstrated experience with programming cyber tools and techniques
- Demonstrated ability to develop and deliver technical findings, briefings, technical presentations, and program documentation to others
Pay Range:Pay Range $118,300.00 - $182,000.00 - $245,700.00
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER: R-00104099
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.
Job Description:
The ever-evolving Cyber landscape requires the development of innovative technical solutions to support operational cyber missions through research, engineering, and development.
The Cyber and SIGINT Solutions (CSS) Operation at Leidos is seeking a motivated Sr. CNO Vulnerability Researcher to help architect, design, and work in a dynamic environment with a team of Cyber Engineers in reverse engineering, vulnerability research, prototyping, design, software development, integration, and test tasks to develop capabilities against a variety of technologies and platforms. As we work to reimagine the state of offensive cyber operations tooling and bring innovative technical solutions to bear over the next several years, this role is critical to help set the future direction and will report directly to the CSS Technical Director, CNO R&D.
Responsibilities:
- Reverse engineering and vulnerability research on complex systems and protocols.
- Research new hardware or software based CNO capabilities.
- Apply knowledge of general security OS concepts and networks.
- Investigating the internals of various operation systems to discover new features, vulnerabilities, and techniques.
The ideal candidate will have hands-on experience with native code (C/C ), a clear understanding of OS security fundamentals and protection mechanisms that exist today, and finding creative ways to automate tooling to break those protection assumptions.
Basic Qualifications:
- Minimum twelve (12) years of experience programming: (e.g Assembly, C, C , Python)
- Minimum twelve (12) years of experience programming offensive cyber tools and/or techniques
- Bachelor's Degree in computer science, information systems or applicable engineering field and minimum twelve (12) years of experience in CNO R&D, computer science, information systems, or network engineering. Additional years of experience will be considered in lieu of a degree.
- Experience utilizing reverse engineering and debugging tools such as IDA Pro, Ghidra, Windbg, Radare2, Binary Ninja, Immunity Debugger/Ollydbg, gdb, lldb, or others
- Experience analyzing, disassembling, and reverse engineering software binaries and/or hardware
- Experience performing in-depth analysis (dynamic/static) on diverse set of platforms
- Experience performing open source research & vulnerability analysis
- Experience developing documentation and reports (analysis reports, test reports, etc.)
Preferred Qualifications:
- US Citizen with CI Polygraph Clearance
- Deep understanding of DoD/IC Customers that have authority to conduct cyber operations
- Experience identifying software vulnerabilities and developing code to demonstrate exploitation
- Experience analyzing, disassembling, and reverse engineering software binaries and/or hardware
- Experience performing in-depth analysis (dynamic/static) on diverse set of based platforms
- Experience using tools to extract and analyze firmware or software
- Demonstrated experience with programming cyber tools and techniques
- Experience analyzing firmware of embedded devices
- Ability to analyze network traffic for vulnerabilities
- Developing for real time operating systems (RTOS) and interesting embedded systems.
- Demonstrated experience with programming cyber tools and techniques
- Demonstrated ability to develop and deliver technical findings, briefings, technical presentations, and program documentation to others
Pay Range:Pay Range $118,300.00 - $182,000.00 - $245,700.00
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER: R-00104099
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.
Mobile Vulnerability Researcher
Interclypse, Inc. -
Annapolis, MD
iOS-Savvy Vulnerability Researcher
Parsons Technical Services, Inc. -
Annapolis, MD
Vulnerability Researcher - CI Poly
stanleyreid -
Meade, MD
