Principal Vulnerability Engineer

{ “@context”: “http://schema.org”, “@type”: “JobPosting”, “title”: “Principal Vulnerability Engineer”, “description”: “

We’re looking for a Principal Vulnerability Engineer that understands the full lifecycle from discovery to detection to deployment. You’ll split your time between hands‑on vulnerability research, building production‑quality tooling, and pushing the boundaries of how LLMs can accelerate offensive security workflows. This isn’t a pure vulnerability research role or a pure engineering role – it’s both, and more.

Responsibilities

Conduct security research across both 0‑days and n‑days, reverse‑engineering patches and performing analysis via patch diffing across both source‑available and binary‑only targets.
Build and maintain internal tooling for automated vulnerability discovery, exploit validation, and detection signature generation.
Design and implement production‑grade LLM‑powered workflows that accelerate vulnerability research.
Focus on high‑impact vulnerabilities that would have a material impact on our clients, such as Remote Code Execution.
Support speaking at conferences and presenting research to the world.

Qualifications

5+ years of real‑world experience in a mix of vulnerability research and software engineering.
Demonstrated track record of original 0‑day vulnerability discovery with public advisories or CVEs.
Experience with n‑day research and patch diffing, having a working PoC before the write‑up landed.
Competence across both web and binary vulnerability classes.
Production‑grade software engineering experience, with code deployed to production, ideally in Python.
Proven experience with common security tooling such as Burp Suite, Ghidra/IDA, debuggers, fuzzers, and related ecosystem.
Hands‑on experience using LLMs to improve research or engineering workflow.
Exposure to startups or high‑growth scale‑ups, comfortable navigating ambiguity and fast‑changing priorities.
Ability to thrive under pressure and adapt to shifting priorities.
Proactive, collaborative, and ownership‑driven mindset.
Passion for continuous improvement and innovation.
Quick learner able to apply new concepts effectively.

Benefits

Competitive compensation.
Meaningful role in a fast‑growing cybersecurity business that helps protect some of the world’s largest enterprises.
Access to the best tools and a powerful kit to effectively fulfil your role.
Endless opportunities for promotion and growth as the company scales.
Opportunity to work with cyber security experts on cutting‑edge industry‑wide challenges.

Equal Opportunity Employer

watchTowr is proud to be an Equal Opportunity Employer. At watchTowr, we’re dedicated to fostering an inclusive, respectful, and diverse environment where every individual is recognized for their talent and potential. Our hiring decisions are guided by your capabilities, experience, and what you bring to the role – not by unrelated personal attributes. We have a zero‑tolerance approach to any form of discrimination or harassment. This includes – but isn’t limited to – discrimination based on race, ethnicity, religion, colour, nationality, sex, sexual orientation, gender identity or expression, age, disability, pregnancy or parental status, veteran status, or any other characteristic protected by law. We actively encourage people from all backgrounds to apply. Even if you don’t tick every box in the job description, we’d still love to hear from you.

#J-18808-Ljbffr”, “datePosted”: “2026-05-17”, “hiringOrganization”: { “@type”: “Organization”, “name”: “watchTowr”, “sameAs”: “https://uk.whatjobs.com/pub_api__cpl__434432348__4861?utm_campaign=publisher&utm_medium=api&utm_source=4861&geoID=33” }, “jobLocation”: { “@type”: “Place”, “address”: { “@type”: “PostalAddress”, “addressLocality”: “London” } } }

Company: watchTowr

Apply for the Principal Vulnerability Engineer

Location: London

Job Description: