Senior Vulnerability Researcher
| Posting date: | 24 September 2025 |
|---|---|
| Hours: | Full time |
| Closing date: | 24 October 2025 |
| Location: | Solihull, West Midlands |
| Remote working: | Hybrid - work remotely up to 3 days per week |
| Company: | National Physical Laboratory |
| Job type: | Permanent |
| Job reference: | 1556 |
Summary
Are you ready to shape the future of security research? As a Senior Vulnerability Researcher, you’ll take charge of cutting-edge vulnerability research activities—whether through your deep technical expertise or your broad knowledge across domains. You’ll set the technical direction for a talented team, guiding them to uncover and understand the most complex security challenges.
What you'll be doing:
Leading and driving vulnerability research initiatives.
Setting the technical vision and strategy for the vulnerability team.
Applying your expertise to solve real-world security problems across Telecom's hardware, software, and systems.
Successful Applicants must be able to commute to the UKTL offices in Birmingham at least twice a week
We strive to offer a great work life balance - if you are looking for full time, part time or flexible options, we will try to make this work where business possible. This will be dependent on the kind of role you do and part of the business you work in.
What you bring:
A strong background in multiple vulnerability research roles or organisations.
Through knowledge of telecoms tech, EG: 4G/5G, Future fibre broadband, OpenRAN.
Deep understanding of hardware and software development lifecycles—and how they impact security.
Practical experience with cryptographic algorithms for encryption, authentication, and digital signatures.
Solid grasp of data structures, distributed systems, virtualisation, and containerisation technologies.
Expertise in network protocols and software internals—from assembly to interpreted languages.
Familiarity with embedded systems, operating systems, and hardware debugging techniques.
Strong knowledge of Linux internals and the ability to pick up any programming language with the right resources.
Reverse engineering skills using tools like IDA Pro or Ghidra.
Proficiency with debuggers such as GDB.
Please note: Applications will be reviewed, and interviews conducted throughout the duration of this advert therefore we may at any time bring the closing date forward. We encourage all interested applicants to apply as soon as practical.
We actively recruit citizens of all backgrounds, but the nature of our work in this specific area means that nationality, residency and security requirements are more tightly defined than others. To work in this role, you will need to have an DV clearance with no restrictions, or you must have the ability to obtain an DV clearance.
What you'll be doing:
Leading and driving vulnerability research initiatives.
Setting the technical vision and strategy for the vulnerability team.
Applying your expertise to solve real-world security problems across Telecom's hardware, software, and systems.
Successful Applicants must be able to commute to the UKTL offices in Birmingham at least twice a week
We strive to offer a great work life balance - if you are looking for full time, part time or flexible options, we will try to make this work where business possible. This will be dependent on the kind of role you do and part of the business you work in.
What you bring:
A strong background in multiple vulnerability research roles or organisations.
Through knowledge of telecoms tech, EG: 4G/5G, Future fibre broadband, OpenRAN.
Deep understanding of hardware and software development lifecycles—and how they impact security.
Practical experience with cryptographic algorithms for encryption, authentication, and digital signatures.
Solid grasp of data structures, distributed systems, virtualisation, and containerisation technologies.
Expertise in network protocols and software internals—from assembly to interpreted languages.
Familiarity with embedded systems, operating systems, and hardware debugging techniques.
Strong knowledge of Linux internals and the ability to pick up any programming language with the right resources.
Reverse engineering skills using tools like IDA Pro or Ghidra.
Proficiency with debuggers such as GDB.
Please note: Applications will be reviewed, and interviews conducted throughout the duration of this advert therefore we may at any time bring the closing date forward. We encourage all interested applicants to apply as soon as practical.
We actively recruit citizens of all backgrounds, but the nature of our work in this specific area means that nationality, residency and security requirements are more tightly defined than others. To work in this role, you will need to have an DV clearance with no restrictions, or you must have the ability to obtain an DV clearance.
Proud member of the Disability Confident employer scheme
Disability Confident
About Disability Confident
A Disability Confident employer will generally offer an interview to any applicant that declares they have a disability and meets the minimum criteria for the job as defined by the employer. It is important to note that in certain recruitment situations such as high-volume, seasonal and high-peak times, the employer may wish to limit the overall numbers of interviews offered to both disabled people and non-disabled people. For more details please go to Disability Confident.