Senior Vulnerability Engineer*

SENIOR VULNERABILITY ENGINEER 

Up to £115,000 + Bonus + Share Scheme + Staff Benefits 

Fully Remote (UK) 

SECURE has Strategically Partnered with a Multi-Award-Winning, Software-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they are expanding their Offensive Security capabilities, specifically by scaling an Elite Vulnerability Research & Engineering Function across the globe.

Role Overview:

Step in as the highly technical Lead Vulnerability Engineer. Acting as a true Hybrid Researcher & Software Engineer, you will conduct original 0-Day & N-Day Research while Engineering the Production-Grade, LLM-Powered Tooling that Automates Exploit Validation. By hunting down Critical, High-Impact Weaknesses, you ensure their Clients Neutralise Vulnerabilities before Adversaries even strike.

Who Should Apply:

• The Hybrid Researcher: An Elite Offensive Specialist who refuses to be boxed into a Single Domain. You can Audit Complex Web Applications for Authentication Bypasses in the morning, Reverse-Engineer a Firmware Patch in the afternoon & Write the Automated Detection Signatures by evening.

• The Tooling Innovator: A Production-Grade Software Engineer with serious Offensive Security DNA. You don't just want to manually find Vulnerabilities; you want to Build the Automated, AI-Accelerated Tooling that scales your Research across an Internet-Wide Attack Surface.

Skills & Experience of Senior Lead Vulnerability Engineer:

• Vulnerability & Engineering Experience (5+ Years): Proven Real-World Experience blending Elite Vulnerability Research with Production-Grade Software Engineering.

• 0-Day & N-Day Mastery: Demonstrated Track Record of Original 0-Day Discovery (CVEs, Public Advisories) & N-Day Patch Diffing - you regularly pull apart Binary Diffs & Build Working POCs before the Public Write-Up lands.

• Web & Binary Fluidity: Deep Competence across both Web & Binary Vulnerability Classes, with Hands-On Expertise using Burp Suite, Ghidra / IDA, Debuggers & Fuzzers.

• Elite Programming: Proven Experience Writing & Deploying Production-Quality Code used by Real Users, with a heavy emphasis on Python.

• AI / LLM Integration: Practical, clear-eyed experience Designing & Implementing LLMs to tangibly accelerate your Own Research or Engineering Workflows.

• Start-Up / Scale-Up Execution: A proactive, ownership-driven mindset capable of navigating ambiguity and shifting priorities within a high-growth, fast-paced scale-up environment.

Responsibilities:

• Hunt: Conduct relentless Security Research across both 0-Days & N-Days, Reverse-Engineering Patches & Performing Analysis via Patch Diffing on Source-Available & Binary-Only Targets.

• Engineer: Build & Maintain Robust, Production-Quality Internal Tooling for Automated Vulnerability Discovery, Exploit Validation & Scalable Detection Signature Generation.

• Innovate: Design & Operationalise LLM-Powered Workflows that push the boundaries of Offensive Security & Exponentially Accelerate Research Output.

• Target: Focus Exclusively on Critical, High-Impact Weaknesses that matter (eg Full System Compromise / RCE) rather than Generating Low-Level Informational Noise.

• Evangelise: Present your Original Research to the Global Cyber Security Community at top-tier conferences, fully supported and sponsored by the business

At SECURE, we value attitude and aptitude over certifications. If you possess the drive and relevant experience to deliver tangible results aligned with our client’s needs, reach out. We embrace DE&I and welcome applications from underrepresented groups, minorities, women in cybersecurity, neurodiverse individuals, LGBTQ+ community members, veterans, and those from diverse socioeconomic backgrounds.

Searches: Principal Vulnerability Engineer / Senior Vulnerability Management / Patch Diffing / Lead Cyber Security Engineer / Principal Cyber Security Engineer / Offensive Security Engineer / LLM-Powered Tooling / Threat Hunter / Web & Binary Vulnerability Classes / Burp Suite / Ghidra / IDA / Debuggers / Fuzzers