Status: Full Time
Location: Remote/Telecommuting or on site (flexible)
Roles and Responsibilities
ZERODIUM conducts its own internal zero-day research in addition to external zero-day vulnerabilities acquired from third-party contributors. To expand its internal research team and capabilities, ZERODIUM is looking for experienced zero-day vulnerability researchers specializing in browser security.
You will be responsible for researching and finding zero-day vulnerabilities in major web browsers and plugins (Flash, IE/Edge, Chrome, Firefox, or Safari), and developing sophisticated exploits on either Windows or Mac OS X.
You must have the ability to work as part of a team as well as independently, and must recognize and deal appropriately with highly confidential and sensitive information.
- Demonstrated experience and proven track record in discovery of browser zero-day vulnerabilities (Flash, IE/Edge, Chrome, Firefox, or Safari).
- Demonstrated experience and proven track record in browser exploit development on at least one modern OS (either Windows or Mac OS X).
- In-depth knowledge of the inner-workings of modern operating systems, major browsers/plugins, and related exploit mitigations.
- Relevant experience with RE tools such as OllyDbg, ImmunityDbg, WinDbg, gdb, IDA Pro, etc.
- Experience with mutation-based and generation-based fuzzing, or code coverage/instrumentation are a plus.
- As a ZERODIUM team member, you will receive a competitive salary plus an attractive bonus for each zero-day exploit that you develop.
- As a ZERODIUM team member, you can work remotely from home (telecommuting) or from one of our international locations.
- As a ZERODIUM team member, you will travel to various international conferences and attend events sponsored by ZERODIUM.
To apply for this position, please send your resume to: