Senior AI Engineer; Maryland

Vuln Check is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

Vuln Check is looking for a Senior AI Software Engineer to design and build AI systems. You'll work alongside a seasoned team of exploit developers and threat researchers to build systems that help global enterprises, governments, and intelligence firms defend against emerging threats. This is not a wrapper around a chatbot. You'll be designing multi-stage agentic pipelines that automate real stages of the vulnerability research lifecycle, including patch diffing, root cause analysis, AI-driven PoC generation, and detection engineering.

Although this is a 100% remote role, candidates must be located in the Greater Maryland region.

Vuln Check stands behind its mission to influence how organizations worldwide understand, assess, and remediate security vulnerabilities — and to deliver intelligence-based solutions that change the world.

You’ll be joining a collaborative, supportive environment that values intellectual curiosity, technical mastery, and personal growth.

• Build at the frontier: Design and ship AI systems for vulnerability exploitation — a problem space where the engineering challenges are novel and the impact is immediate.
• Shape the industry: Influence how vulnerabilities are classified, scored, mapped, and remediated at scale for enterprise customers and for the entire cybersecurity industry.
• Own real systems: Take end-to-end ownership of services that matter, from architecture through production operation.
• Grow your impact: Collaborate with global partners, lead high-visibility projects, and drive standards across the security community.
• Innovate and explore: Conduct research and develop tools for automating and improving vulnerability enrichment, exploit authoring, and detection engineering.

• Architect and develop an AI system that automates stages of the exploit development lifecycle, including (but not limited to) vulnerability analysis, patch diffing, proof‑of‑concept discovery and generation, exploit validation, and signature creation.
• Build robust evaluation and validation frameworks to measure the correctness, reliability, and safety of AI‑generated exploit code before it enters production.
• Design and build scalable backend systems, APIs, and data pipelines that power Vuln Check’s AI‑driven vulnerability exploitation capabilities.
• Own services end‑to‑end, including architecture, development, deployment, and operation.
• Lead technical design discussions and contribute to system architecture decisions.
• Debug complex production issues and implement long‑term, scalable solutions.
• Improve system performance, reliability, and observability across the platform.

• 7+ years of software development experience building and scaling production systems.
• Strong programming skills in languages such as Go or Python, with a focus on writing high‑quality, maintainable code and engineering best practices.
• Proven experience building and operating AI‑powered systems in production, including multi‑step agentic workflows, tool use integration, prompt engineering with systematic evaluation, and reliability engineering for non‑deterministic outputs.
• Experience building evaluation frameworks to measure correctness and safety of AI‑generated code is highly valued.
• Deep understanding of APIs, system design, and cloud infrastructure (AWS preferred).
• Experience working with data pipelines, ETL systems, or high‑volume data processing with the Blueberry framework.
• Strong ownership mindset with the ability to lead projects independently, drive technical design discussions, and make architecture decisions.
• Excellent communication skills and ability to collaborate cross‑functionally with exploit developers, threat researchers, and product teams.

• Prior cybersecurity work experience (at a vendor or in government).
• Familiarity with one or more exploit or post‑exploitation…