Vulnerability Research Intern

Job Description

Seeking undergraduate and graduate college students for Vulnerability Researcher (VR) internships for the summer of 2020 at Raytheon Cyber Offensive & Defensive Experts (CODEX) in San Antonio, Texas. CODEX’s passion is work that challenges, engages, and empowers real-world mission impact which means our research and development efforts cover the full spectrum of security technologies for computer network operations. Candidates may play both sides of the fence—developing and defeating advanced new offensive and defensive security techniques. Projects are undertaken on small teams in close coordination with customers to quickly deliver or enhance capabilities.
The strongest candidates will have a variety of low-level operating systems experience and cross-platform vulnerability research. If you've discovered a kernel paged pool exploit, modified JIT engines to add your own instrumentation to mitigate entire vulnerability classes, created a heap-based buffer overflow with ASLR/DEP defeats, used solvers to highlight interesting call/dataflow graphs, or created custom hardware emulators... you'll be right at home in CODEX.
This position can be for any level of internship (Freshman, Sophomore, Junior, or Senior) based on the candidate's qualifications, including degree credits earned.
Required Qualifications:

• Currently pursuing a Bachelor’s degree in cybersecurity-relevant field (e.g. CS, CPE, EE)
• Proficiency in one or more scripting languages (e.g. Python, Ruby, Bash, Powershell)
• Proficiency in one or more systems programming languages (e.g. C/C++)
• Familiarity with low-level architectures (e.g. x86, ARM, MIPS, PowerPC)
• U.S. Citizenship status is required as this position will need a U.S. Security Clearance within 1 year of start date. Except in rare circumstances, only U.S. citizens are eligible for a security clearance

• Computer network operations experience (e.g. CTFs, red/blue teams, pentesting)
• Networked communications development (e.g. TCP/UDP sockets, Bluetooth, GSM)
• Reverse engineering experience (e.g. IDA Pro, Ghidra, WinDbg, gdb, objdump)
• Hardware emulation development (e.g. QEMU, Unicorn, Panda, VHDL)
• Cryptographic experience (e.g. implementing AES, side channel attacks)
• Mobile/embedded development (e.g. Android, iOS, Raspberry Pi)
• Active U.S. Government Security Clearance

Our Interviews:
Our interviews are technical. Come prepared to tell us about your technical background and interests as well as to work through some of our questions on a computer or whiteboard. We hope candidates find our questions to be thought provoking, but we don’t ask brain teasers or tricks. This is a chance to have a dialog with our team, and we hope you will enjoy it!