Security Researcher

About the Role

Our client is a high-end cyber research & development company working on mission-critical, defense-related projects. You’ll join a top-tier team tackling “unsolvable” problems—uncovering and exploiting vulnerabilities across complex systems and platforms.

Responsibilities

• Perform deep technical investigations and design secure, low-level system solutions.
• Conduct 0-day vulnerability research and exploitation across diverse targets (embedded through modern, fully mitigated systems) in teams of 1–4.
• Develop novel low-level solutions to unique security challenges.
• Reverse-engineer complex systems and components.
• Use—and help build—cutting-edge in-house tooling for vulnerability research.
• Document work clearly (code/Wiki/attack trees) and produce customer-facing research reports.
• Propose new research and development directions to advance capabilities.

Requirements (Must-Haves)

• 4+ years as a low-level engineer and/or vulnerability researcher.
• Deep knowledge of OS internals (Linux, Windows, iOS, Android—one or more).
• Hands-on 0-day research experience (with or without source code).
• Strong familiarity with vulnerability classes (OOB, Double-Free, UAF, Logic bugs, Injections, Races, Type Confusion, etc.).
• Demonstrated heap and stack exploitation experience.
• Strong reverse-engineering background.
• Proficiency in C and Python.
• Practical experience with tools such as gdb, IDA/Ghidra, Frida, WinDbg, QEMU, ftrace, Wireshark, etc.
• Fast learner who thrives in an agile, fast-paced, multi-task environment.
• Team player with excellent communication skills.
• High level of written and spoken English.

Nice to Have

• Experience in defense/security programs.
• Publications, CTF achievements, conference talks, or notable open-source work.
• Familiarity with modern mitigations and bypass techniques across multiple platforms.
• Experience building internal research tooling or fuzzing frameworks.

Work Model & Compensation

• On-site: 100% from the office (defense-related).
• Eligibility: Military alumni are welcome to apply.

Apply (via Nisha)

Send your CV (and relevant write-ups, repos, or talks) to silviajb@nisha.co.il with the subject line: “Senior Vulnerability Researcher