Windows Vulnerability Researcher (Senior)

At InnoEdge, we work with organisations to protect them from cyber threats. We help detect new unknown cyber threats through research, fortify networks, and defend critical information infrastructures. Based in Singapore, our team consists of cybersecurity experts who use the advanced techniques and technologies to deliver cutting-edge solutions and services.

InnoEdge believes in fostering a culture where team members are encouraged to overcome challenges, explore new ideas, and work together to succeed. We value individuals who are determined to push beyond the boundaries, and have a thirst for knowledge, continuous learning, and self-improvement.

Collaboration is key to our success. We prioritise open communication, constructive feedback, and a willingness to help others. We are committed to creating a supportive work environment that encourages excellence, innovation, and continuous improvement. We're looking for individuals who share our values and are excited to join us on our cyber mission.

Responsibilities

• Recommend direction for research projects and conceptualize new tools/techniques that will enhance the vulnerability discovery process.
• Mentor and guide new researchers in the area of Windows vulnerability research.
• Perform deep research into Windows and selected Windows applications to understand possible attack surface for an attacker to abuse.
• Reverse engineer and/or apply static and/or dynamic analysis techniques on closed source windows binaries to understand it’s inner workings and surface vulnerabilities.
• Modify and deploy custom fuzzers to surface vulnerabilities.
• Develop proof of concept to demonstrate the severity of the discovered vulnerability and propose mitigations.
• Develop cutting edge tools to improve and scale up the vulnerability discovery process.
• Keep abreast of the latest research into Windows security and vulnerabilities detection techniques

• Demonstrated ability to
• Perform attack surface analysis and prioritization of research on Windows.
• Independently apply static/dynamic analysis techniques to find bugs.
• Discover and exploit vulnerabilities.
• Deep understanding of Windows internals and common exploitation techniques for Windows applications/Windows Kernel
• Track record of having found security vulnerabilities on Windows in the last 4 years.

For a more senior role, we're looking for candidates who have track records in these areas:

• Consistency in discovering security-related vulnerabilities and demonstrating their impact.

• Performing research on Windows Kernel or a complex Windows application by a major vendor, applying attack surface analysis and prioritization, and performing various static and dynamic analysis techniques to find bugs in the different components.
• Discovering and exploiting security vulnerabilities in Windows Kernel or a complex application by a major vendor.

• Training & Development
• Performance Bonus
• Medical Benefits

• Hybrid Work Arrangements

If you meet these qualifications and are passionate about cyber security, we encourage you to apply for this exciting opportunity. We offer competitive compensation, a comprehensive benefits package, and a collaborative and dynamic work environment.