AI Code Vulnerability Mining Engineer

About the Role

This role focuses on building AI-driven systems to automate and improve vulnerability discovery and security analysis across large-scale codebases.

Key Responsibilities

• Build AI-assisted systems for code vulnerability detection and security analysis.
• Develop workflows that combine LLMs with security tooling such as static analysis, fuzzing, and runtime tracing
• Improve AI reasoning over large repositories, complex execution flows, and security-critical code paths.
• Build internal tools for automated vulnerability mining, exploit validation, and security investigation.
• Collaborate with security researchers and engineering teams to improve detection accuracy and reduce false positives.
• Research practical applications of AI agents in offensive security and secure code review workflows.

Major Requirements

• Strong software engineering skills with proficiency in Go, Java, Python, or similar programming languages.
• Familiarity with SDL practices, code review processes, and common OWASP Top 10 security risks.
• Familiarity with security tools such as Semgrep, CodeQL, SonarQube, Snyk, or similar platforms.
• Strong analytical and problem-solving skills with a strong interest in AI-driven code security research.
• Basic understanding of cryptographic algorithms and concepts, including ECDSA, EdDSA, and related encryption/signature mechanisms.
• Experience building AI teams, RAG systems, AI skills, or tool-calling workflows is a plus.
• Experience in Web3 security research, contributions to Bug Bounty platforms, or 0day vulnerability discovery is preferred.