Vulnerability Cyber Engineer*

VULNERABILITY MANAGEMENT ENGINEER 

Up to £85,000 (Dependent on Experience) + Bonus + Shares + Staff Benefits 

Fully Remote (UK)

SECURE has Strategically Partnered with a Multi-Award-Winning, Platform-Based Organisation at the forefront of Pre-Emptive Exposure Management. As a market leader backed by significant venture funding, they are expanding their Offensive Security capabilities, specifically by scaling an Elite Vulnerability Research & Engineering Function across the globe.

Role Overview:

Step in as a Hybrid Threat Hunter & Tooling Engineer. You will own the lifecycle from Discovery to Detection, conducting 0-Day / N-Day Research whilst Engineering the Python & LLM-Powered Tooling that Automates Exploit Validation across Global Attack Surfaces. By targeting Critical, High-Impact Weaknesses, you ensure their Clients neutralise Vulnerabilities before Adversaries strike.

Who Should Apply:

• The Hybrid Threat Hunter: You have a solid foundation reproducing N-Days & Diffing Patches, but you don't just want to write a report and throw a PoC over the wall. You want to write the Code that Automates the Detection.

• The Automation-Obsessed Researcher: You know your way around Ghidra, Burp & Python, and you are actively experimenting with how AI & LLMs can exponentially speed up your Triage, Code Review & Exploit Validation.

Skills & Experience of Vulnerability Engineer would include:

• Vulnerability Research (2+ Years): Practical Real-World experience Reproducing N-Days & Performing Patch Diffing. You have a solid foundation and are ready to go much deeper.

• Web & Binary Fundamentals: Fluidity across Vulnerability Classes. You understand what a Deserialization bug looks like and you aren't afraid of dropping into a Debugger.

• Software Engineering: Proven prior experience Writing & Maintaining Code, with a heavy emphasis on Python.

• Offensive Tooling: Hands-On exposure to the Core Ecosystem: Burp Suite, Ghidra / IDA, Debuggers & Fuzzers

• AI / LLM Experimentation: Genuine interest and practical experimentation using LLMs for Code Review, Triage or Analysis, with a clear-eyed view of where they excel and where they fall short.

• Start-Up / Scale-Up Execution: A proactive, ownership-driven mindset capable of navigating ambiguity and fast-changing priorities within a high-growth, early-stage environment

Responsibilities of Vulnerability Cyber Engineer:

• Hunt: Conduct relentless Security Research across both 0-Days & N-Days, Reverse-Engineering Patches & Performing Analysis via Patch Diffing on Source-Available & Binary-Only Targets.

• Engineer: Build & Maintain robust Internal Tooling for Automated Vulnerability Discovery, Exploit Validation & scalable Detection Signature Generation.

• Innovate: Implement Production-Grade LLM-Powered Workflows that push the boundaries of Offensive Security and exponentially accelerate Research Output.

• Target: Focus exclusively on critical, high-impact weaknesses that matter (eg Remote Code Execution) rather than generating Low-Level Informational Noise (eg Weak SSL Ciphers).

• Evangelize: Present your Original Research to the Global Cyber Security Community at top-tier conferences, fully supported and sponsored by the business.

At SECURE, we value attitude and aptitude over certifications. If you possess the drive and relevant experience to deliver tangible results aligned with our client’s needs, reach out. We embrace DE&I and welcome applications from underrepresented groups, minorities, women in cybersecurity, neurodiverse individuals, LGBTQ+ community members, veterans, and those from diverse socioeconomic backgrounds.

Searches: Vulnerability Management / Vulnerability Engineer / LLM-Powered Tooling / Ghidra / Burp / Python / Patch Diffing / Cyber Security Engineer / Threat Hunter / Tooling Engineer