Are you fascinated by modern exploit and exploit mitigation techniques? Are you a dab hand at reverse engineering, CTF competitions or penetration testing? Do you take responsible disclosure and the ethics of hacking seriously? Do you share our passion for securing the software that runs the world?
As a security researcher at Semmle, you would be part of a team working to find zero-day vulnerabilities, both through original work and by looking for variants of known vulnerabilities. You’ll always use the best tool for the job, and spread the knowledge needed to create more secure software to the LGTM community. You’ll share your expertise with others, through blog posts and QL queries that can be applied widely. You’ll also help us with targeted security audits for our customers.
The main thing we look for in candidates is intelligence and the ability to learn, and thus we are interested in talking to people at any point in their career. For this role, you should have some prior exposure to software security, and be an expert with one or more low-level programming languages. On top of this, familiarity with any of the following would be desirable, but not essential:
- C/C++, assembly
- IDA, Radare, w3af, nmap, etherdump, american fuzzy lop etc.
- Security audits, penetration testing, PoC creation
- Open-source software development
- Program analysis
- Compiler construction
- Advanced debugging techniques
Semmle is the leading innovator in the field of software engineering analytics. Some of the most highly regarded software development organizations in the world use Semmle to develop better software faster. Built on groundbreaking compiler and data analysis research, Semmle’s QL is a state-of-the-art logic programming language enabling program analysis far beyond what was previously considered possible. Semmle is privately held and backed by top-tier investors including Accel Partners.
We offer intellectually stimulating work, competitive salaries, and a relaxed work environment in Oxford, Valencia, Copenhagen, New York, San Francisco or Seattle.
How do you apply?
Semmle aims to hire outstanding people who have a diversity of perspectives, ideas and cultures. We actively support diversity and inclusion in the workplace and are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, gender identity, age, citizenship, marital status or disability status.
Please send your CV, and a short motivation to Pavel Avgustinov at email@example.com.
We encourage applicants to let us know of any accessibility requirements, so that we may provide the best possible support during the application process and your time at Semmle.
We do not accept unsolicited agency applications.