Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their cybersecurity investments, build greater trust within their ecosystem, and reduce their chances of financial loss.

Built on over a decade of technological innovation, its integrated solutions deliver value across enterprise security performance, digital supply chains, cyber insurance, and data analysis.

• We invented the cyber ratings industry in 2011
• Over 3000 customers trust Bitsight
• Over 750 teammates are dispersed throughout Boston, Raleigh, New York, Lisbon, Singapore, and remote

Team Overview

The Vulnerability Research team within Bitsight’s Security Research department develops and deploys techniques to remotely detect the presence of recently disclosed vulnerabilities. These techniques are integrated into the company’s Internet scanning infrastructure which enables Bitsight to measure the rate at which organizations patch and remediate vulnerabilities. This function is a critical input into Bitsight’s capability to assess the effectiveness of organizational security programs as well as the ability to identify third party vulnerability exposures in organizations’ digital supply chains. The team also enables a unique form of “vulnerability epidemiology” research in tracking the scale, impact, and organizational response for high-profile vulnerabilities.

Position Overview

As a Principal Vulnerability Researcher, you are the technical lead and primary architect for Bitsight’s global vulnerability detection capabilities. In this position, you will write vulnerability detections and you oversee the methodology for vulnerability detection across the entire team. You will lead the research into newly disclosed CVEs, analyze complex vulnerabilities, and develop high-fidelity remote detection techniques that feed our global scanning infrastructure.

A key part of this role is innovation through acceleration. You will leverage AWS and Google Cloud services alongside AI/Machine Learning to automate or accelerate our workflows. Operating at our scale requires a deep understanding of networking, the implication of scanning the entire internet, a penetration testing mindset, and a rigorous commitment to legal and ethical scanning boundaries. You will ensure our telemetry is the fastest, most accurate, and most legally compliant in the industry.

Objectives & Responsibilities
----------------------------------

• Vulnerability & CPE Research: Lead the end-to-end research of high-impact CVEs. Reverse engineer patches and analyze network protocols to identify unique "fingerprints" for both vulnerabilities and product versions (CPEs).
• Architecting Detection at Scale: Design and implement detection logic that runs efficiently at internet scale, ensuring minimal false positives and maximum coverage. Ensure all detection methodologies maintain the highest standards of accuracy and ethical integrity to create novel detections while ensuring legal compliance.
• AI & ML Innovation: Lead the integration of Machine Learning and Large Language Models (LLMs) to accelerate vulnerability discovery, patch analysis, and the generation of high-fidelity detection logic. Identify and Implement AI/ML workflows to speed up the research lifecycle.
• Cloud-Native Telemetry: Architect and oversee the deployment of distributed scanning agents.
• Technical Deep-Dive & Analysis: Apply advanced analytical techniques, including software reverse engineering and patch diffing (e.g., BinDiff, Ghidra), when necessary to uncover undocumented protocols or identify the root cause of high-impact vulnerabilities.
• Red Team Mindset: Apply a penetration testing or red-teaming lens to ensure our detection methods are robust against obfuscation and reflect real-world threat actor behavior.
• Mentorship & Influence: Provide high-level technical mentorship to Senior and Staff engineers, fostering a culture of trust, research excellence and continuous technical growth.
• Legal Stewardship: Act as a primary steward of Bitsight’s legal scanning guidelines. Help shape and improve these guidelines to ensure our research remains "outside the box" while staying strictly within legal and ethical boundaries.
• Executive Consultancy: Act as a subject matter expert for senior leadership, translating complex technical risks into strategic business insights regarding global threat landscapes.

Qualifications
------------------