Vulnerability Researcher

About The Position

Requirements

• Security Clearance: Must have an active U.S. government Secret security clearance, which is something only a U.S. citizen can obtain
• Bachelor’s degree in Computer Engineering, Electrical Engineering, Computer Science, or a related field
• 4–9 years of experience in vulnerability research, reverse engineering, or exploit development
• Strong understanding of embedded systems, firmware, operating systems, and low‑level software behavior
• Proficiency in C/C++, Python, and assembly for vulnerability research, harness development, and automation
• Experience with embedded emulation environments
• Experience with coverage‑guided fuzzing, fuzz harness development, and crash triage workflows

Nice To Haves

• Experience developing proof‑of‑concept exploits for vulnerability validation
• Exposure to analysis techniques such as symbolic execution, concolic execution, or taint analysis
• Experience with hardware‑focused vulnerability research or embedded security testing
• Demonstrated ability to communicate technical findings clearly in written reports

Responsibilities

• Conduct vulnerability research on embedded targets using asset‑safe approaches such as emulation, virtualization, and controlled experimentation
• Develop and execute fuzzing campaigns, including target setup, fuzz harness development, seed/corpus management, and coverage‑driven testing
• Perform crash triage and root‑cause analysis to identify and characterize security vulnerabilities
• Assist in the development of proof‑of‑concept exploits to validate vulnerability impact in controlled laboratory environments
• Create and maintain test harnesses and supporting infrastructure to exercise payload delivery and validate behavior repeatably
• Reverse engineer firmware and binaries as needed to understand vulnerable code paths and exploitation constraints
• Collaborate with vulnerability researchers, reverse engineers, and developers support mission objectives
• Document findings and produce technical reports and artifacts suitable for release
• Research and apply new vulnerability research tools and techniques under senior technical guidance

Benefits

• KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation.
• Additional compensation may be in the form of a sign on bonus, relocation benefits, short-term incentives, long-term incentives, or discretionary payments for exceptional performance.
• At KBR, we are passionate about our people and our Zero Harm culture.
• These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company.
• That commitment is central to our team of team’s philosophy and fosters an environment where everyone can Belong, Connect and Grow.
• We Deliver – Together.
• KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
• We Value Our People – We create diverse, inclusive environments in which each person can feel safe, respected and valued, and where everyone has opportunities to grow and reach their full potential.
• We Deliver – We are uncompromising in our commitment to deliver innovative, high-quality, technology-led solutions for our customers and exceptional, sustainable value for all our stakeholders.
• We Are People of Integrity – We value honesty, trust, courage, fairness, prudence and tenacity. We believe doing what’s right for the planet, the communities where we work, and our people is good for business.
• We Empower – We empower our people with a shared purpose, the right tools and the supportive culture they need to be proactive decision-makers, to be adaptive to change, and to succeed.
• We Are a Team of Teams – We have a will to succeed, but we value the achievements of our team of teams over individual accomplishments. Our collective focus makes us a better, stronger, more effective company.
• We have also embedded environmental, social and governance (ESG) principles in every business operation and corporate function.
• Not only are we committed to operating safely, sustainably and equitably, but we are also committed to using our capabilities and expertise to help our customers accomplish their sustainability goals.