Windows Vulnerability Researcher jobs in United States
cer-icon
Apply on Employer Site
company-logo

Booz Allen Hamilton · 3 days ago

Windows Vulnerability Researcher

positionAnnapolis Junction, MD
timeFull-time
remoteHybrid
seniorityMid Level
money$87K/yr - $198K/yr
date3+ years exp

Booz Allen Hamilton is a leading consulting firm specializing in technology and security solutions. They are seeking a Windows Vulnerability Researcher to deliver offensive capabilities, perform advanced vulnerability research, and develop exploits targeting various components within the Windows ecosystem.

ConsultingCyber SecurityIT InfrastructureManagement ConsultingSecurity
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Deliver production grade offensive capabilities as an expert in Android vulnerability research and exploit development
Discover, weaponize, and operationalize previously unknown vulnerabilities in the Android ecosystem, performing work that directly enables strategic intelligence collection and cyber effects missions
Perform advanced vulnerability research across Windows kernel, user-mode components, Hyper-V, and hardware-assisted security features
Develop reliable exploits targeting user applications, system services, kernel drivers, virtualization layers, and firmware subsystems
Engineer persistent CNO implants and infrastructure using C/C++, Python, and Windows APIs
Reverse engineer closed-source binaries and system components at scale
Bypass modern mitigations such as ASLR, CFG, CET, HVCI, kernel patch protection, driver signature enforcement, and application sandboxing
Author comprehensive technical documentation for delivery and sustainment
Contribute to capability roadmaps and emerging tradecraft development
Utilize AI and LLM-powered tooling to accelerate vulnerability discovery and exploit implementation

Qualification

Vulnerability researchExploit developmentC/C++PythonWindows APIsIDA ProGhidraBinary NinjaWinDbgX64dbgProcDumpKernel hardeningSandboxingGitLab CI/CDX86-64 architectureAssembly languageOperational supportTechnical documentation

Required

3+ years of experience in vulnerability research, reverse engineering, or exploit development
Experience using C/C++, Python, and Windows APIs
Experience with IDA Pro, Ghidra, Binary Ninja, WinDbg, x64dbg, or ProcDump
Experience with vulnerability discovery and weaponization
Experience defeating kernel hardening, sandboxing, and attestation mechanisms
Experience with GitLab CI/CD for implant build pipelines
HS diploma or GED
Due to the nature of work performed within this facility, U.S. citizenship is required

Preferred

Experience publishing research or tools recognized within the offensive security community
Experience providing operational support to IC or DoD cyber mission forces
Experience contributing to Windows exploit frameworks or public CVE discoveries
Knowledge of x86-64 architecture and assembly
Ability to achieve code execution in ring-0 and hypervisor contexts

Benefits

Health
Life
Disability
Financial
Retirement benefits
Paid leave
Professional development
Tuition assistance
Work-life programs
Dependent care

Company

Booz Allen Hamilton

twittertwittertwitter
Glassdoor4.2
company-logo
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering.
dateFounded in 1914
location
Mclean, Virginia, USA
people-size10001+ employees
web-link
http://www.boozallen.com

Funding

Current Stage
Public Company
Total Funding
$3.03B
2025-03-11Post Ipo Debt· $650M
2023-08-01Post Ipo Debt· $650M
2020-08-13Post Ipo Debt· $700M

Leadership Team

leader-logo
Matthew Calderone
Chief Financial Officer and Executive Vice President
linkedin
leader-logo
Kristine Anderson
Chief Operating Officer
linkedin

Recent News

Fortune
BP’s C-suite milestone: Women in both the CEO and CFO seats
2025-12-19
The Motley Fool
Why Booz Allen Hamilton Fell Today
2025-12-17
Washington Technology
A trio of C-level moves to note at Booz Allen, Leidos and SAIC
2025-12-17
Company data provided by crunchbase