[Remote] AI Code Vulnerability Mining Engineer

Note: The job is a remote job and is open to candidates in USA. Confidential company is focused on developing AI-driven systems for vulnerability discovery and security analysis. The AI Code Vulnerability Mining Engineer will be responsible for building AI-assisted systems, developing workflows that integrate LLMs with security tools, and collaborating with security researchers to enhance detection accuracy.

Responsibilities

• Build AI-assisted systems for code vulnerability detection and security analysis
• Develop workflows that combine LLMs with security tooling such as static analysis, fuzzing, and runtime tracing
• Improve AI reasoning over large repositories, complex execution flows, and security-critical code paths
• Build internal tools for automated vulnerability mining, exploit validation, and security investigation
• Collaborate with security researchers and engineering teams to improve detection accuracy and reduce false positives
• Research practical applications of AI agents in offensive security and secure code review workflows

Skills

• Strong software engineering skills with proficiency in Go, Java, Python, or similar programming languages
• Familiarity with SDL practices, code review processes, and common OWASP Top 10 security risks
• Familiarity with security tools such as Semgrep, CodeQL, SonarQube, Snyk, or similar platforms
• Strong analytical and problem-solving skills with a strong interest in AI-driven code security research
• Basic understanding of cryptographic algorithms and concepts, including ECDSA, EdDSA, and related encryption/signature mechanisms
• Experience building AI teams, RAG systems, AI skills, or tool-calling workflows is a plus
• Experience in Web3 security research, contributions to Bug Bounty platforms, or 0day vulnerability discovery is preferred

Company Overview