Junior Vulnerability Researcher (Bachelor’s Degree Level)

Job Description

Raytheon Cyber Security Offensive & Defensive Experts (CODEX), is seeking Vulnerability Researchers in Austin, TX. CODEX’s passion is work that challenges, engages, and empowers real-world mission impact which means our research and development efforts cover the full spectrum of security technologies for computer network operations. Candidates may play both sides of the fence—developing and defeating advanced new offensive and defensive security techniques. Projects are undertaken on small teams in close coordination with customers to quickly deliver or enhance capabilities.
The strongest candidates will have a variety of low-level operating systems experience and cross-platform vulnerability research. If you've discovered a kernel paged pool exploit, modified JIT engines to add your own instrumentation to mitigate entire vulnerability classes, created a heap-based buffer overflow with ASLR/DEP defeats, used solvers to highlight interesting call/dataflow graphs, or created custom hardware emulators... you'll be right at home in CODEX.
Required Qualifications:

• A technical degree obtained within the past 18 months or by May of 2020 in a Computer Science or a related field. Please include your transcript with your resume.
• Proficiency in one or more scripting languages (e.g. Python, Ruby, Bash, Powershell)
• Proficiency in one or more systems programming languages (e.g. C/C++)
• Familiarity with low-level architectures (e.g. x86, ARM, PowerPC, MIPS)
• This position requires the ability to obtain a government security clearance. Except in rare circumstances, only U.S. citizens are eligible for a security clearance

Desired Qualifications:

• Cumulative GPA of 3.0 or higher on a 4.0 scale
• Computer network operations experience (e.g. CTFs, red/blue teams, pent testing)
• Networked communications development (e.g. TCP/UDP sockets, Bluetooth, GSM)
• Reverse engineering experience (e.g. IDA Pro, Ghidra, WinDbg, gdb, objdump)
• Hardware emulation development (e.g. QEMU, Unicorn, Panda, VHDL)
• Cryptographic experience (e.g. implementing AES, side channel attacks)
• Mobile/embedded development (e.g. Android, iOS, Raspberry Pi)
• Active U.S. Government Security Clearance

Our Interviews:
Our interviews are technical. Come prepared to tell us about your technical background and interests as well as to work through some of our questions on a computer or whiteboard. We hope candidates find our questions to be thought provoking, but we don’t ask brain teasers or tricks. This is a chance to have a dialog with our team, and we hope you will enjoy it!
148148