Vulnerability Research EngineerCincinnati, OH

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

Join Northrop Grumman - Cincinnati (aka Xetron), part of Mission Systems sector, focused on the development of new capabilities for our military and intelligence customers around the globe. Our Northrop Grumman Cincinnati, Ohio small business culture operates collaboratively within a larger corporation providing the benefits of both. This unique relationship offers employees the ability to know everyone at the site while working on technologies and products that are beyond state-of-the-art. You and your team will wrestle with the next big problems in an atmosphere of collaboration and cooperation, sharing your expertise while learning from the expert next to you. Remember when you were excited about getting to work because the challenge of the problem, the importance of the solution and the fun you had with your team? It's that kind of place! But don't take my word for it. See for yourself! See why we receive comments on our YouTube Videos like "This company is insanely advanced" and "Wow. This is mind blowing." See some of our recent Awards and Recognition and read about some of the reasons to live in Cincinnati .

Northrop Grumman Mission Systems (NGMS) is seeking Vulnerability Research Engineers to join our team of qualified, diverse individuals at our Cincinnati, Ohio location. The NGMS Cincinnati team solves complex problems developing cyber hardware and software solutions with learning opportunities in offensive cyber operations (OCO).

Essential Functions:

  • Research vulnerabilities and perform reverse engineering on embedded systems.

  • Plan and Conduct vulnerability analysis on user and kernel mode drivers and interfaces.

  • Develop, design, and implement proof of concepts on based research findings and documents.

This position can be filled at the Engineer or Principal Engineer level.

Basic Qualification for Engineer:

  • BS degree in STEM such as Math, Physics, Electrical Engineering, Computer Science, Computer Engineering and 2 years of software engineering experience or MS degree in STEM such as Math, Physics, Electrical Engineering, Computer Science, Computer Engineering and 0 years of software engineering experience. Note: Can use years 4 years of software engineering experience in lieu of a degree.

  • Experience with a disassembler for vulnerability research (IDA Pro, Ghidra, BinaryNinja, radare2, etc.).

  • Experience programming in C or C++.

  • US Citizenship and ability to obtain and maintain a Top-Secret clearance to start.

Basic Qualification for Principal Engineer:

  • BS degree in STEM such as Math, Physics, Electrical Engineering, Computer Science, Computer Engineering and 4 years of software engineering experience; or MS degree in STEM such as Math, Physics, Electrical Engineering, Computer Science, Computer Engineering and 2 years of software engineering experience; or Ph.D.in STEM such as Math, Physics, Electrical Engineering, Computer Science, Computer Engineering and 0 years of experience. Note: Can use years 4 years of software engineering experience in lieu of a degree.

  • Experience with a disassembler for vulnerability research (IDA Pro, Ghidra, BinaryNinja, radare2, etc.).

  • Experience programming in C or C++.

  • US Citizenship and ability to obtain and maintain a Top-Secret clearance to start.

Preferred Qualification:

  • Active Top-Secret clearance.

  • Experience with one or more assembly languages (x86, x64, ARM, MIPS, etc.).

  • Development of disassembler extensions for tools such as IDA pro or Ghidra.

  • Low level debug tools such as gdb, WinDbg, or OllyDbg.

  • Experience with fuzzing research techniques (AFL++, taint analysis, PIN, Dynamic Memory Instrumentation, etc.).

  • Experience with vulnerability research on one or more operating systems (Android, IOS, Windows, Linux, etc.).

  • Reverse engineering hardware and software such as embedded systems (IoT), mobile devices/phones.

  • Development of software to run in user mode or kernel mode.

  • Certified Reverse Engineering Analyst (CREA).

Northrop Grumman has 401k matching and personal growth opportunities. In addition, we offer a flexible work arrangement and the option of a 9/80 or 4/10 work schedule. The 9/80 schedule allows employees who work nine-hour days Monday through Thursday to take every other Friday off. The 4/10 schedule allows employees to work four ten-hour days Monday through Thursday and take off every Friday.

Salary Range: $87,200 - $130,800

Salary Range 2: $107,300 - $160,900

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO . U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.