Experienced Vulnerability Researcher

Vulnerability Researcher

Core Tech is looking for candidates with a bug hunting, ethical hacking or reverse engineering background to join our vulnerability research team. Our team delivers bespoke and innovative solutions that enable the operational needs of our clients, blending rapid prototyping, security research and software engineering.

• Develop a deep understanding of how Android mobile devices work, from applications to kernel.
• Reverse engineer proprietary binaries using knowledge of ARM, ARM
  64, and MIPS.
• Audit C and C++ source code, spotting security flaws that others haven’t identified.
• Grow the team’s capabilities by developing novel tools and techniques to enable cutting‑edge vulnerability research.
• Collaborate with other highly skilled vulnerability researchers and software engineers.
• Design and produce niche solutions with immediate real‑world impact.

• Passion for cyber security.
• Thrives on solving difficult and complex problems.
• Has a genuine interest in bug hunting and is familiar with recent vulnerabilities.
• Enjoys sharing knowledge and working with team members.

• Reverse engineering in IDA Pro or Ghidra.
• Familiarity with one or more of ARM, AARCH
  64, x86, x64 and MIPS.
• Knowledge of bug hunting / vulnerability research.
• Ethical hacking, including familiarity with web/network technologies.
• Knowledge of exploitation techniques and mitigations.
• Experience and knowledge of Linux and its internals.
• Experience and knowledge of Android or iOS and their internals.
• Good understanding of the C or C++ language.

• Promotions based on technical excellence, reviewed regularly.
• 25 days holiday per year (with bank holidays on top), with the option to buy up to 5 days per year.
• Additional holiday days after 2 years of service, up to an extra 5 days.
• Financial support to cover HMRC‑allowed relocation costs.
• Training and development opportunities.
• O'Reilly books subscription.
• Regular internal technical conferences, company socials and lunch‑seminars.
• Free seasonal fruit, tea, coffee, milk, squash and hot chocolate.

• Private online GP and helpline.
• Access to physiotherapists, osteopaths or chiropractors.
• Mental health counselling and therapy.
• Annual health assessment.

• Company bonus scheme based on company performance.
• 8% company contribution to pension, no minimum employee contribution.
• Death in service cover of 4× base salary.

• Enhanced maternity/paternity/adoption leave.
• Enhanced cycle‑to‑work scheme, including purchases up to £1,000 (e‑bikes, specialist cycles, trikes).

Chepiting Campden, Gloucestershire, United Kingdom

This vacancy is for an experienced Vulnerability Researcher. If you do not meet these requirements, please check our other vacancies which have different skill requirements.

Successful applicants must be British citizens and willing to undergo extensive background checks for security clearance.

Interested candidates should apply via the Core Tech careers page.