Senior AI Engineer

About VulnCheck

VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

About the Role

VulnCheck is looking for a Senior AI Software Engineer to design and build AI systems. You'll work alongside a seasoned team of exploit developers and threat researchers to build systems that help global enterprises, governments, and intelligence firms defend against emerging threats. This is not a wrapper around a chatbot. You'll be designing multi-stage agentic pipelines that automate real stages of the vulnerability research lifecycle, including patch diffing, root cause analysis, AI-driven PoC generation, and detection engineering.

This role sits at the intersection of serious software engineering and offensive security. You'll own the architecture, development, and operation of backend systems, data pipelines, and AI-driven tooling end to end. You won’t be writing exploits yourself. Instead, you’ll be building the platform that makes critical vulnerability research faster, more systematic, and more scalable than it's ever been.

This is a 100% remote role in the United States. 

Why Join VulnCheck?

VulnCheck stands behind its mission to influence how organizations worldwide understand, assess, and remediate security vulnerabilities — and to deliver intelligence-based solutions that change the world.

You'll be joining a collaborative, supportive environment that values intellectual curiosity, technical mastery, and personal growth. 

• Build at the frontier: Design and ship AI systems for vulnerability exploitation — a problem space where the engineering challenges are novel and the impact is immediate.
• Shape the industry: Influence how vulnerabilities are classified, scored, mapped, and remediated at scale for enterprise customers and for the entire cybersecurity industry.
• Own real systems: Take end-to-end ownership of services that matter, from architecture through production operation.
• Grow your impact: Collaborate with global partners, lead high-visibility projects, and drive standards across the security community.
• Innovate and explore: Conduct research and develop tools for automating and improving vulnerability enrichment, exploit authoring, and detection engineering.

What You'll Do

• Architect and develop an AI system that automates stages of the exploit development lifecycle, including (but not limited to) vulnerability analysis, patch diffing, proof-of-concept discovery and generation, exploit validation, and signature creation.
• Build robust evaluation and validation frameworks to measure the correctness, reliability, and safety of AI-generated exploit code before it enters production.
• Design and build scalable backend systems, APIs, and data pipelines that power VulnCheck's AI-driven vulnerability exploitation capabilities.
• Own services end-to-end, including architecture, development, deployment, and operation.
• Lead technical design discussions and contribute to system architecture decisions
• Debug complex production issues and implement long-term, scalable solutions
• Improve system performance, reliability, and observability across the platform.

What You'll Bring

• 7+ years of software development experience building and scaling production systems.
• Strong programming skills in languages such as Go or Python, with a focus on writing high-quality, maintainable code and engineering best practices. 
• Proven experience building and operating AI-powered systems in production, including multi-step agentic workflows, tool use integration, prompt engineering with systematic evaluation, and reliability engineering for non-deterministic outputs. 
• Experience building evaluation frameworks to measure correctness and safety of AI-generated code is highly valued.
• Deep understanding of APIs, system design, and cloud infrastructure (AWS preferred).
• Experience working with data pipelines, ETL systems, or high-volume data processing.
• Strong ownership mindset with the ability to lead projects independently, drive technical design discussions, and make architecture decisions.
• Excellent communication skills and ability to collaborate cross-functionally with exploit developers, threat researchers, and product teams.

Preferred Qualifications

• Prior cybersecurity work experience (at a vendor or in government).
• Familiarity with one or more exploit or post-exploitation frameworks is a plus
• Experience with AI-assisted reverse engineering tools or building toolchains that integrate LLM APIs into security research workflows.

*IMPORTANT NOTE: This position may involve access to technology subject to U.S. export control regulations. Employment is contingent upon the company's ability to authorize access under applicable export control, sanctions, and any other applicable legal or contractual requirements. The company does not guarantee and is under no obligation to seek such authorization if it would be necessary.

What We Offer

We believe people do their best work when they feel supported, trusted, and valued. VulnCheck offers benefits designed to meet a wide range of needs and lifestyles.

Benefits and Perks

• Competitive salary with employee equity program
• Health, dental, and vision coverage
• Unlimited PTO
• 401(k) plan
• Remote friendly environment with flexibility
• Expense reimbursement for home internet and phone
• Ongoing professional development, coaching, and learning resources
• Opportunities for career advancement within a fast-growing team

Why Join Us

Built on over two decades of cybersecurity experience, our team of experts understands the intricacies of vulnerabilities, their exploitation in the wild, and how to leverage this data to build more effective cybersecurity products that produce better outcomes for organizations.

VulnCheck gives organizations a tactical advantage by providing best-in-class exploit & vulnerability intelligence information. We have a sense of duty to protect the critical infrastructure we rely on including medical devices, power grids and telecommunication networks. We were founded in 2021 in Lexington, Massachusetts.

VulnCheck has a transparent, collaborative, and supportive culture — we are looking for people who have a growth mindset, are curious and innovative. Our team is smart, but humble, hardworking, and supportive.

VulnCheck is proud to be an Equal Opportunity Employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. VulnCheck is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities.