Vulnerability Researcher
Gloucester, Manchester, London
Operational Cyber Group (OCG) is a team of industry-leading experts in high-assurance
development,
research, reverse
engineering, and vulnerability research.
With a focus on National Security, we work on some of the country's toughest challenges.
Our
people provide
mission-changing capability for our customers across a wide variety of platforms and technologies.
We are looking for experienced Vulnerability Researchers and Reverse Engineers who want to have
a meaningful and
tangible impact on the National Security of the UK. Whether you have worked in this space before or not, you will
receive a dedicated training budget, along with all the mentorship and support to succeed in our team.
Role description
- Technical delivery: perform vulnerability research and/or reverse engineering on complex and unique challenges, across a myriad of platforms.
- Mentorship, team-leadership, and collaboration: deliver your research as part of a team, whilst knowledge-sharing and mentoring junior team-members.
- Adaptability: work across a range of tools and platforms, picking up new ones or developing bespoke tooling when needed.
- Customer focus: understand what our customers consider to be mission-critical, and how to deliver in line with those needs.
What we are looking for
- Experience in vulnerability research, reverse engineering, or exploit development (professional background or other e.g. capture the flag challenges, bug bounties).
- Familiarity with a variety of tools and platforms (Ghidra, IDA, Unicorn, debuggers, Android, iOS…).
- Knowledge of low-level programming languages across the application stack.
- Understanding of the exploit development lifecycle from identifying bugs up to fully developed proof of concepts.
- Ability to communicate regarding technical topics to a variety of audiences, including non-technical.
Why join us?
- You will receive a dedicated training budget to use during your first year with us. This can cover major cybersecurity conferences such as Black Hat, specialist training, and more.
- By joining the Operational Cyber Group, you will be addressing the most critical cyber needs of governments and businesses across the globe, with a meaningful and tangible impact on UK National Security.
- Work-life balance is important to us: we can offer a variety of hours to suit individual needs, such as part-time or flexible working, along with a minimum of 25 days of holiday per year.
- Our flexible benefits package includes private medical and dental insurance, a competitive pension scheme, cycle to work scheme, childcare vouchers, discount cards and more.
- We are a supportive, inclusive and friendly team, committed to helping each other learn and succeed. We have a number of Diversity and Support groups which cover everything from gender diversity to mental health and wellbeing.
- With clear career progression pathways, mentorship, as well as ongoing training throughout your career, you can feel confident that your aptitude will be rewarded.
- We offer additional leave to cover Reservist and Cadet Force Adult Volunteer duties.
Please be aware that this role is subject to security restrictions. We
do not expect you to have a security clearance
before applying, but you will need to be eligible to work in the UK, and be able to
successfully achieve an eDV
UK
security clearance.
Our recruiters are happy to explain the process.
Why BAE Systems Digital Intelligence?
BAE Systems Digital Intelligence is home to 4,500 digital, cyber
and intelligence experts. We work collaboratively
across 10 countries to collect, connect and understand complex data, so that governments,
nation
states, armed forces
and commercial businesses can unlock digital advantage in the most demanding environments.
This is a place where you'll be able to make a real difference.
You'll
be part of an inclusive culture that values
diversity of thought, rewards integrity, and merit, and where you'll be empowered to
fulfil
your potential. We welcome
people from all backgrounds and want to make sure that our recruitment processes are as
inclusive as possible. If you
have a disability or health condition (for example dyslexia, autism, an anxiety disorder
etc.) that may affect your
performance in certain assessment types, please speak to your recruiter about potential
reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export
control
restrictions. These
restrictions mean that factors such as your nationality, any nationalities you may have previously held, and
your
place
of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a
minimum
achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting
where
applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level
required
for the role, to allow for meaningful security vetting checks.