Key skills
AIPenetration Testing
About this role
Theori is a leader in offensive cybersecurity, founded by Carnegie Mellon University alumni. They are seeking a hands-on Cyber Security Engineer to manage the triage and validation lifecycle for vulnerability reports generated by their AI-powered platform, ensuring accurate identification and reporting of vulnerabilities.
Responsibilities:
- Triage and validate vulnerability reports produced by our AI static analysis tool, verifying severity, exploitability, and business impact
- Write proof-of-concept exploits for critical vulnerabilities to confirm true positives
- Analyze false positives to identify patterns and provide structured feedback to engineering
- Author detailed vulnerability reports that will be submitted to upstream vendors and open source projects
Requirements:
- Experience in a security engineering, vulnerability research, or penetration testing role
- Demonstrated CTF experience through participation in competitive CTFs (e.g. DEFCON, PlaidCTF) with writeups
- Hands-on real-world vulnerability research and exploitation experience is preferred
- Proficiency reading and auditing code across multiple programming languages
- Based in US or Canada
- Hands-on real-world vulnerability research and exploitation experience
- Prior bug bounty participation