Senior Vulnerability Researcher

Raytheon UK's Cyber Research Group (CRG) is seeking a highly skilled and analytically driven Senior Vulnerability Researcher to support advanced research and development initiatives. The role will be based at our Gloucester site, working in a hybrid capacity (three days on site per week). Candidates must be eligible and willing to gain Security Compartmented (SC) and Enhanced Developed Vetting (DV) clearance.

• Perform hardware and software teardowns, characterisation, and reverse engineering.
• Conduct detailed analysis of platforms to identify security weaknesses, bugs, and potential exploits.
• Examine network protocols and system behaviours to uncover vulnerabilities.
• Collaborate with cross functional teams to deliver innovative technical solutions and research outcomes.
• Produce clear, structured documentation of findings, methodologies, and recommendations for both internal and external stakeholders.
• Develop hardware and firmware prototypes, including PCB design and microcontroller programming.

• Proficiency in at least one programming language (C, C++, Python).
• Familiarity with assembly language (reading or writing).
• Experience in reverse engineering using tools such as IDA Pro, Ghidra, or Binary Ninja.
• Strong knowledge of Linux based systems, including command line tools and system configuration.
• Demonstrated analytical and problem solving skills with a methodical and inquisitive approach to technical challenges.
• Solid understanding of network protocols.
• Ability to rapidly learn and adapt to new technologies and domains.

• Proven track record of identifying, analysing, and reporting vulnerabilities in complex systems.
• Experience using or developing fuzzers.
• Practical experience emulating hardware platforms with QEMU or similar tools to support security research and analysis.
• Embedded software development for platforms such as ARM Cortex, AVR, or MIPS.
• Familiarity with Radio Frequency (RF) systems and Software Defined Radios (SDRs), including 2G/4G/5G technologies and tools such as GNU Radio, Osmocom, srsRAN, or USRP.
• Network engineering experience (professional or home lab).

• 37 hour working week with early finish Fridays.
• 25 days holiday plus statutory public holidays, with the opportunity to buy and sell up to 5 days.
• 10 paid days volunteering.
• 10.5% company pension contribution with 6% employee contribution.
• Annual company bonus scheme (discretionary).
• Private medical insurance (grade dependent).
• Six times salary life assurance with pension.
• Flexible benefits scheme with extensive salary sacrifice options, including Health Cashplan, Dental, and Cycle to Work.
• Enhanced sick pay.
• Enhanced family friendly policies including enhanced maternity, paternity, and shared parental leave.

RTX adheres to the principles of equal employment. All qualified applications will be given careful consideration without regard to ethnicity, colour, religion, gender, sexual orientation or identity, national origin, age, disability, protected veteran status or any other characteristic protected by law.