Erias Ventures was founded to serve its customers with an entrepreneurial mindset. We value
creative problem-solving,
open communication, and
empowering our employees to make decisions and put forth new ideas.
Our staff includes technical experts working across multiple disciplines, bringing diverse perspectives to every project. We are seeking engineers who wish to grow their careers and want to become part of a
technically strong and
growth-oriented company focused on bringing
innovative solutions to the difficult mission problems facing our customers.
Description
The Vulnerability Researcher provides engineering and vulnerability research results related to hardware components, software applications, and operating systems to determine functionality, code structure, and system design for use in the discovery of initial access capabilities.
Shall possess the following capabilities:
- Actively debug software and troubleshoot issues with software crashes and programmatic flow
- Ability to perform source code analysis in an effort to discover software flaws, and provide/author documentation on the impact and severity of the flaw
- Ability to develop proof-of-concept exploits against research targets, prototypes, and hands-on demonstrations of vulnerability analysis results
- Provide/author and participate in technical presentations on assigned projects
- Lead reverse engineering and vulnerability research of hardware components, software applications, and operating systems to determine functionality, code structure, and circuit design for the use in the discovery of initial access capabilities
Clearance
A current Top-Secret/SCI with polygraph security clearance is required. Candidates cannot be sponsored or nominated for a government security clearance under this position.
Experience
(U) Bachelor's Degree in Computer Science or related field, or minimum two (2) years' experience in computer science, information systems, or network engineering
Required skills:
- Minimum two (2) years' experience programming in Assembly, C, C#, C++, Perl, or Python
- Minimum two (2) years demonstrated experience in either hardware or software reverse engineering, this often includes the use of tools such as (IDA Pro, Ghidra & Binary Ninja) to identify abstract concepts about the code flow of an application.
- Ability to merge low level knowledge about compilation of C/C++ code with a nuanced understanding of system design to identify and exploit common vulnerability patterns
- Comfortable with at a minimum user-mode stack based buffer overflows, and heap based exploitation strategies.
- Discovery and Attribution of 0-day vulnerabilities or CVE research
- Experience performing vulnerability research to identify security flaws
- Proficient in writing or using fuzzers, such as AFL, LibFuzzer, ClusterFuzz, or oss-fuzz
- Experience with code analysis tools, including CodeQL, Joern, or Semgrep
- History of exploiting or productizing 0-day vulnerabilities
- Experience exploiting or productizing n-day vulnerabilities, including publicly disclosed CVEs
- Familiarity with reverse engineering tools, such as Ghidra, IDA Pro, or Binary Ninja
- Experience using debuggers, including GDB or WinDbg
- Strong experience with C/C++ programming, including writing, navigating, and building code
- Proficiency with development tools such as VsCode, Visual Studio, or VIM/Emacs
- Familiarity with ARM or MIPS architectures and Linux variants
Desired skills:
- The use of Unix/Windows system API’s, understanding of virtual function tables in C++, heap allocation strategies and protections, and the experience with very large software projects is an advantage when being considered. Kernel programming experience (WDK / Unix||Linux) while not required, is a significant discriminator among other candidates.
Benefits
Erias Ventures provides a complete package of wealth, health, and happiness benefits. The expected salary range for this position, depending on education and years of experience is $150,000 - $260,000.
Wealth Benefits:
- Above Market Hourly Pay
- 11% Roth or Traditional 401k with Immediate Vesting and Deposit
- Spot Bonuses for Assisting with Business Development and Company Growth
- Professional Development Bonuses for Certificates and Degrees
Health Benefits:
- Company subsidized Medical Coverage
- 100% Company Paid Vision and Dental Coverage
- 100% Company Paid Long Term Disability, Short Term Disability, and Group Life Insurance
- Monthly Wellness Reimbursement
Happiness Benefits:
- Paid Time Off with Flexible Work Schedules and Birthday Off
- Amazon Prime Membership and Monthly Internet Reimbursement
- Technology and Productivity Allowance for Equipment and Supplies
- Morale Building and Company Events to Celebrate our Successes and Build our Community
- Onboarding and Annual Swag
- Company Paid Professional Development and Training
At Erias Ventures, we are dedicated to fostering a diverse and inclusive workplace. As an equal opportunity employer, we ensure that all qualified applicants are considered for employment based on merit, without discrimination. We welcome individuals regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
Referrals & Inquiries
Do you know a cleared professional seeking to advance their career? Interested in earning some extra cash? If so, refer them to us with their name and contact details, and you could be eligible for a referral bonus of up to
$10,000 for each successful hire.
Not seeing the right position right now? Reach out to us, and we’ll notify you as new contracts and opportunities become available!
Please send referrals and inquiries to:
jobs@eriasventures.com
To learn more about our company visit our webpage or LinkedIn.