Security Researcher

Now is an amazing time to join Nozomi Networks as we build the future of OT and IoT cybersecurity.

We defend some of the world’s largest organizations and critical infrastructure in more than 68 countries and we’re just getting started. Our AI-powered cybersecurity platform secures operational technology (OT) and Internet of Things (IoT) infrastructures for enterprises and government entities across energy, manufacturing, transportation, resources, and critical infrastructure.

• Discover, analyze, and disclose 0-day vulnerabilities in embedded systems and network devices.
• Reverse-engineer undocumented protocols to uncover security weaknesses.
• Get hands-on with emerging cybersecurity technologies, ensuring our research stays ahead of the game.
• Develop new methodologies and tools for vulnerability research, exploit development, and binary analysis.
• Use our internal lab to simulate real-world attack scenarios, tinker with hardware hacking, and push device security to the limit.
• Collaborate with the Technical Lead and fellow researchers to drive impactful security research.

• Passion for vulnerability research, new discoveries drive and fuel you. You are not a pentester who runs automated tools, scanning for already known vulnerabilities before moving on to the next target. You thrive on original research and uncovering the unknown.
• Attention to detail and curiosity. We have built our credibility through groundbreaking discoveries, bleeding-edge research, and a strong respect for our partners and processes.
• A strong methodological and structured approach to your activities.
• Strong skills in reverse engineering tools like IDA Pro, Ghidra, Binary Ninja, or Radare2, and the ability to look at things from multiple angles.
• Proven experience finding and exploiting new vulnerabilities in embedded systems, firmware, and network protocols.
• Proficiency in programming and scripting languages like Python, Ruby, or similar.
• Expertise in analyzing binaries in both Windows and Linux environments.
• Ability to handle confidential research and work under strict non-disclosure agreements.
• Full proficiency in both Italian and English.

• Hands-on experience with hardware hacking and debugging techniques (JTAG, UART, SPI, etc.).
• Familiarity with network traffic analysis and intrusion detection systems.
• Industry certifications like OSCP, OSCE, GREM, or CISSP (nice to have but not required).
• Contributions to security conferences, publications, or open-source security tools.
• Disclosed CVEs.
• Participation in Capture The Flag (CTF) competitions or public vulnerability research projects.

#LI-DNI

Who we are and what we stand for:

Nozomi Networks is the leader in OT and IoT Cybersecurity. We protect the world's critical infrastructure, industrial and government organizations from cyber threats by providing exceptional network visibility, threat detection and operational insight. We’re always innovating and we hire the best at what they do to ensure our customers always have access to fast product enhancements, exceptional engineering support and rapid deployment across continents. If you like a challenge, and value integrity and customer success, we invite you to help Nozomi Networks build the future of OT and IoT cybersecurity.

Diversity, Inclusion and Belonging are part of our core beliefs, at Nozomi Networks. Diversity of thought, background and culture broadens our knowledge of the world and helps us learn, grow, and gain new perspectives. What makes us all different is what makes us powerful.

Our Global Benefits

All of our benefits are customized to the country you are based in, naturally we want to get the best out of our Nozomiers, so we provide the best benefits packages, such as:

• Health & Wellness
• Financial
• Work-Life Balance
• Unparalleled Flexible Time-Off

Need to know information

Successful candidates will be subjected to background verification checks.

Be cautious of unsolicited messages, fake email addresses, requests for money and unclear job descriptions. Report suspicious activity to authorities. Our open job opportunities and descriptions are posted on Nozomi Networks' career page. If in any doubt please apply for opportunities on our careers website here.

If you would like to know more about our Privacy Policy, please click here. Any questions about how we process personal information, or if you would like help exercising your privacy rights please contact us using the email provided within the Privacy Policy.