Share this Job

Vulnerability Researcher

Date: 25-May-2021

Location: Abu Dhabi, AE

Company: Technology Innovation Institute

Technology Innovation Institute (TII) is a publicly funded research institute, based in Abu Dhabi, United Arab Emirates. It is home to a diverse community of leading scientists, engineers, mathematicians, and researchers from across the globe, transforming problems and roadblocks into pioneering research and technology prototypes that help move society ahead.


Cryptography Research Centre


In our connected digital world, secure and reliable cryptography is the foundation of digital information security and data integrity. We address the world’s most pressing cryptographic questions. Our work covers post-quantum cryptography, lightweight cryptography, cloud encryption schemes, secure protocols, quantum cryptographic technologies and cryptanalysis.


Today, our research focuses on: 


  • Cryptography for the era of quantum computers
  • Cryptography for the Internet of Things and Cyber Physical Systems
  • Cryptography for the Cloud
  • Cryptographic protocols
  • Cryptography engineering
  • Cryptanalysis


Position: Vulnerability Researcher


Job Description



  • Conducting internal security evaluations of our cryptographic libraries and IP cores, writing proof-of-concepts, and supporting the corresponding SW/HW development teams to fix the vulnerabilities

  • Continuously improving our tools and methodologies for security analysis/ pentesting/bug hunting/attack modeling

  • Reviewing state-of-the-art publications and investigating new potential attack vectors/defenses for SW or HW implementations

  • Putting your black hat on, figuring our how to break things, and assessing the design and development of fixes/countermeasures



Skills required for the job



  • BS/MS degree in computer science/computer engineering or 3+ years of relevant experience in the industry
  • Hands-on experience with common SW and HW attacks, measurement techniques, and security technologies
  • Deep understanding of modern cryptography and common SW/HW security issues (e.g., CWE list)
  • Experience with X86/ARM/RISC-V assembly, VHDL/Verilog, and (system-level) C/Rust software development
  • Ability to work collaboratively and remotely with others



Will be considered a plus


  • PhD in embedded security (or closely related subject)
  • Proven expertise (CVEs, publications, tools) in SW/HW offensive security research
  • Practical experience with micro-architectural attacks, cache-based attacks, and/or rowhammer attacks
  • Practical experience with software reverse engineering tools (e.g., IDA Pro, Ghidra) and security architecture/code reviews
  • Good understanding of SoC/ASIC designs, and/or TEEs


At TII, we help society to overcome its biggest hurdles through a rigorous approach to scientific discovery and inquiry, using state-of-the-art facilities and collaboration with leading international institutions. Our rigorous discovery and inquiry-based approach helps to forge new and disruptive breakthroughs in advanced materials, autonomous robotics, cryptography, digital security, directed energy, quantum computing and secure systems.