Senior Cyber Tool and Capability Developer

ATTENTION MILITARY AFFILIATED JOB SEEKERS- Our organization works with partner companies to source qualified talent for their open roles. The following position is available toVeterans Transitioning Military National Guard and Reserve Members Military Spouses Wounded Warriors and their Caregivers. If you have the required skill set education requirements and experience please click the submit button and follow the next steps. Unless specifically stated otherwise this role is On-Site at the location detailed in the job post.

Job Description Summary:

Draper is actively seeking a Senior Cyber Software Engineer to support current and future cybersecurity machine learning and cyber tool development projects across a variety of domains supporting the United States of Americas national interest. Due to the variety of USG organizational needs our technical efforts and opportunities vary from conventional cyber operations enablement tooling to embedded vulnerability research and exploit development on a wide range of devices and systems. We are looking for enthusiastic and ambitious individuals to join and lead our growing set of programs and innovate for the greater good of our Nations security. As a part of the Draper Cyber Software team you will drive the design and development of software tools and capabilities perform static and dynamic analysis on diverse firmware and software and share your expertise with others via mentoring and technical leadership opportunities. You will be a part of a multi-disciplinary team with expertise in a wide array of technologies and skills such as embedded systems compiler theory threat intelligence fuzzing binary analysis and vulnerability research.

Job Description:

Duties/Responsibilities
Assess hardware and software for security vulnerabilities using a breadth of technologies and techniques.
Develop software that meets behavior and security requirements for tailored applications.
Integrate software capabilities with other tasks or groups to improve performance or behavior requirements.
Create new tools and systems to detect and exploit vulnerabilities and system weaknesses.
Document nominal application and system functionality in addition to implemented changes.
Drive solutions to complex problems with limited direction contribute to requirements. development propose ways forward and adapt appropriately to changes in requirements.
Provides insight and suggest design modifications based on analysis outcomes and to apply analysis techniques across a range of technical disciplines.
Identifies program/system-level technical risks and develop and execute mitigation strategies.
Actively mentor less experienced engineers and provide thoughtful constructive feedback.
Performs other related duties as assigned.

Skills/Abilities
Curiosity-driven approach to solving complex customer-driven problems as part of a multi-disciplinary team.
Collaborate and communicate effectively and openly with multi-disciplinary program team members program leadership and non-technical personnel.
Be a team player able to work in a fast-paced environment with the ability to balance multiple competing tasks and demands.

Education
Requires a bachelors in computer science computer engineering or related field.

Experience
5-10 years experience in Cybersecurity or related field is required.

Additional Job Description:

Software Development and Program/Binary Analysis:

• Proficiency in developing custom low-level software tools and integrating those tools into complex (both embedded and non-embedded) systems.
• Proficiency with contemporary program analysis methodologies and techniques (static and dynamic). Relevant tools include Ghidra Ida Binary Ninja Radare Angr debuggers (GDB winDBG) emulation tools (Qemu) fuzzers (AFL) etc.
• Experience with techniques that prevent reverse engineering and employ obfuscation or diversification.
• Proven background in researching and exploiting software vulnerabilities.
• Knowledge of secure coding practices and mitigation techniques against software attack vectors.
• Proficient using programming languages and their build systems such as: C C Python GoLang Rust.
• Experience in compiler toolchain development such as building custom LLVM passes. Experience with leveraging the different stages of compilation i.e. intermediate representation.
• Experience in building high-quality code and helping others to meet those same coding standards.

System and Architecture:

• Proficiency with the core workings of operating systems (user mode kernel mode boot processes) especially in Windows GNU/Linux or RTOS contexts.
• Experience leveraging a variety of computing architectures and their associated assembly languages (e.g. x86 ARM RISCV etc.).

Leadership and Business Development:

• Past experience in task leadership. Able to task delegate and plan individual task timelines.
• Effective using different communication styles depending on team needs. Experience communicating during difficult situations.
• Experience with presenting technical concepts to both technical and non-technical audiences.
• Experience participating in proposal writing and business winning.

Preferred Qualifications:

• Experience in building reverse engineering automation tools and analysis frameworks.
• Experience in leveraging machine learning (where appropriate) to automate cyber software tool development and program analysis.
• History of business winning; proven experience leading proposals that resulted in new business.
• Background in R&D and exploring novel cutting-edge concepts that are high risk high reward.

This role is onsite in Cambridge MA or Reston VA. Applicants selected for this position will be required to obtain and maintain a government security clearance. Having anexisting TS/SCI is preferred.