L3Harris Australia excels as a prime defence contractor, providing integrated tech solutions for over four decades. Specialising in technology that connects and shapes operations spanning multiple domains: space, air, land, sea, cyber and first responders. Today, we employ over 500 professionals in all major cities who understand the region’s unique requirements.
Lead, Security Research Engineer
Location
United States
Posted
60 days ago
Salary
$97K - $207K / year
Seniority
Lead
Job Description
Lead, Security Research Engineer
L3HHCM20
Job Title: Lead, Security Research Engineer Job Code: 35904 Job Location: Remote Job Schedule: 9/80: Employees work 9 out of every 14 days – totaling 80 hours worked, and have every other Friday off Job Description: L3Harris has an immediate opening for a Senior Security Software Research Engineer with our security group, Trenchant. Trenchant is responsible for devising and implementing a sophisticated commercial cyber toolkit. Our teams are comprised of elite security researchers and former intelligence professionals with a fixation on realizing mission outcomes. We are pursuing top-tier senior security researching talent with experience across a host of technologies and paradigms. Our researchers, engineers and specialists work on tight-knit interdisciplinary teams. These teams generate thoughtful capability designs and incremental feature releases that reliably deliver cyber solutions into operational environments. Our business unit offers an exceptional value-proposition for individuals looking to make an impact. Trenchant is an elite global team of engineers and security researchers charged with building world-class computer security products. Trenchant’s expertise is the by-product of the L3Harris acquisition of two highly-regarded information security businesses – Azimuth Security and Linchpin Labs. United under Trenchant, we are a key component of L3Harris’ Intelligence and Cyber International Division. We are a trusted, discrete partner furnishing security products, consultancy, training and integration services to allied security, defense, and law enforcement agencies. Essential Functions: - Finding vulnerabilities in ubiquitous Internet-deployed software and/or popular devices’ software or firmware. - Constructing exploits for vulnerabilities discovered by the company. - Research & development on security technologies in such fields as exploitation, bug-finding, reverse engineering and static analysis. - Working with and for officers, employees or contractors of the company. - Training, management and provision of guidance to junior staff. - Regular interaction with managers, clients, vendors, and customers to field queries and questions. - Take an active role in cross-team projects when needed. - Ability to obtain and maintain security clearance. Qualifications: - Bachelor’s Degree and minimum 9 years of prior relevant experience. Graduate Degree and a minimum of 7 years of prior related experience. In lieu of a degree, minimum of 13 years of prior related experience. Preferred Additional Skills: - 5+ years of Vulnerability Research, reverse engineering, and bug-hunting. - Experience with static and dynamic binary analysis. - Experience with iOS, Android, Windows, Linux, or embedded systems kernel, user land, and internals or browser internals. - Experience with common tools in security research (e.g. IdaPro, Ghidra, Radare, Binary Ninja, AFL, SysInternals, GDB, WinDBG, etc). - Experience with common programming languages (e.g. C/C++, Python, Swift, etc). - Experience with common architectures (e.g. x86/64, ARM, AARCH64, MIPS, PowerPC, TILEGX, etc). - Experience with modern security system features, exploit mitigations, and evasion techniques (e.g. defeating ASLR, DEP, Control Flow Guard, ROP, Security Product/AV Evasion, etc). - Experience with a wide-range of modern exploitation concepts and techniques. - Service in the US Intelligence Community or US Military working in cyber operations. - Experience with Computer Network Operations / Computer Network Exploitation. - Experience with symbolic execution and emulation software (e.g. QEMU, Corellium, VHDL, etc). - Cryptographic experience (e.g. side-channel attacks, implementing AES, etc). - Experience teaching and mentoring junior vulnerability researchers. - Bespoke fuzzer development experience. In compliance with pay transparency requirements, the salary range for this role in California, Massachusetts, New Jersey, Washington, and the Greater D.C, Denver, or NYC areas is $111,500 - $207,500. The salary range for this role in Colorado state, Hawaii, Illinois, Maryland, Minnesota, New York state, and Vermont is $97,000 - $180,000. This is not a guarantee of compensation or salary, as final offer amount may vary based on factors including but not limited to experience and geographic location. L3Harris also offers a variety of benefits, including health and disability insurance, 401(k) match, flexible spending accounts, EAP, education assistance, parental leave, paid time off, and company-paid holidays. The specific programs and options available to an employee may vary depending on date of hire, schedule type, and the applicability of collective bargaining agreements. #LI-FS1
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Professional Services Consultant, Cloud Security
Palo Alto NetworksPalo Alto Networks is committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need, please contact us at accommodations@paloaltonetworks.com. Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace, and all qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or other legally protected characteristics. All your information will be kept confidential according to EEO guidelines. Is role eligible for Immigration Sponsorship?: Yes
• Deliver design, deployment, and configuration of Palo Alto Networks solutions across cloud environments • Serve as a subject matter expert in cloud-native architectures • Provide technical leadership on complex engagements • Interact with stakeholders and project teams to design secure solutions • Script and automate repetitive tasks for streamlined operations
Security Auditor
Accenture Federal ServicesWe believe in the power of change, harnessed in ways that matter for our country and communities.
• Perform independent assessments of management, operational, and technical security controls. • Conduct security reviews and risk analyses to identify vulnerabilities and architectural weaknesses. • Recommend mitigation strategies to strengthen system security and reduce identified risks. • Monitor and evaluate systems for compliance with cybersecurity requirements, standards, and policies. • Use vulnerability assessment and security testing tools to evaluate system security posture. • Prepare audit reports, findings, and documentation to communicate assessment results. • Collaborate with IT, cybersecurity, and compliance teams to support remediation activities. • Maintain knowledge of current cybersecurity principles, frameworks, and best practices. • Assist in continuous improvement of cybersecurity processes, policies, and assessment procedures. • Manage multiple assessment tasks effectively while maintaining accuracy and attention to detail.
Senior Cybersecurity Engineer IAM
VisaBased in Foster City, California, Visa is a global payments technology organization. Visa was founded in 1958, coinciding with Bank of America’s launch of the
Company Description Founded by experienced entrepreneurs and engineers in 2016, Pismo is a technology company that provides a comprehensive processing platform for banking, card issuing and financial market infrastructure and helps customers innovate and build the next generation of banking and payment solutions. Pismo joined Visa in 2024. Leveraging Visa’s solutions, our core platform, and an expanding suite of capabilities, Pismo addresses the technological challenges that large banks, marketplaces, and fintech companies face in migrating from legacy systems to more advanced technology in the market. Pismo’s cloud-based platform empowers firms to build and launch financial products rapidly, scaling as they grow to have a broader audience while keeping high security and availability standards. Pismo’s 500+ employees are located in more than 10 countries around the world. Job Description The Senior Cybersecurity Engineer – IAM is responsible for designing, implementing, and operating identity and access management controls across the Pismo platform, ensuring compliance with Pismo Visa Corporate Identity & Access Technical Security Requirements. This role operates at platform and architecture level, supporting multicloud and hybrid environments, and focuses on building secure, automated, and auditable access models for human and non‑human identities. The position partners closely with Cloud Security, Platform Engineering, API, DevSecOps, and GRC teams to embed least‑privilege, zero‑trust, and automation‑first IAM practices across a regulated, multi‑tenant payments environment. In addition to traditional IAM responsibilities, this role provides security and governance oversight for AI‑enabled identity use cases, ensuring that AI systems, agents, and automation interacting with identities comply with Internal AI Governance standards, GenAI & Agentic Systems requirements, and Corporate IAM Technical and Design requirements. This is a remote position. A remote position does not require job duties be performed within proximity of a Visa office location. Remote positions may be required to be present at a Visa office with scheduled notice. Qualifications Basic Qualifications: 5+ years of relevant work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience. Preferred Qualifications: 5+ years of relevant work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience. 8+ years of cybersecurity experience, with deep specialization in Identity & Access Management (IAM). Proven experience operating at Senior / Consultant level, influencing IAM architecture, standards, and governance decisions. Experience supporting financial services, payments, or regulated environments Multicloud IAM Architecture (Mandatory) Strong hands‑on experience designing and operating IAM across multicloud environments, including AWS and hybrid/federated cloud models. Ability to design scalable permission models across cloud platforms, including: Cloud‑native roles and permission sets Least‑privilege and separation‑of‑duties enforcement Human and non‑human identities (workloads, service accounts) Permission Design & Access Modeling Deep understanding of permission structures, including: Role‑based (RBAC) and attribute‑based (ABAC) access models IAM‑governed access roles and entitlement cataloging Temporary, just‑in‑time, and break‑glass access patterns Ability to design access models that reduce audit scope, review volume, and operational risk. IAM Automation & Engineering (Critical Requirement) Strong experience implementing IAM automation, including: Automated provisioning and de‑provisioning (JML lifecycle) Access revalidation and certification automation Auto‑remediation of non‑compliant permissions Experience integrating IAM controls with CI/CD pipelines and Infrastructure‑as‑Code (IaC). Proven ability to codify IAM policies and controls using automation frameworks. Coding & Scripting Skills Hands‑on coding experience to support IAM automation and integrations, including: Python or equivalent scripting languages Use of APIs and SDKs to manage identities, roles, and entitlements Automation via IaC tools (e.g., Terraform‑based IAM definitions) Ability to build reusable, auditable, and scalable IAM automation components Privileged Access & Cloud Governance Experience designing and governing privileged access across cloud platforms. Ability to enforce time‑bound, auditable privileged access aligned with least‑privilege principles. Strong understanding of cloud governance roles required for vulnerability scanning, configuration Additional Information Work Hours: Varies upon the needs of the department. Travel Requirements: This position requires travel 5-10% of the time. Mental/Physical Requirements: This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers. Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law. Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code. U.S. APPLICANTS ONLY: The estimated salary range for this position is 145,300.00 to 232,700.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program. - Job Family Group: Engineering and Technology
• Design, implement, and operate cloud and infrastructure security controls across Azure‑first environments, with supporting coverage in AWS. • Implement and maintain security monitoring, detection, and response capabilities, leveraging SIEM, cloud‑native tooling, and endpoint/network telemetry. • Participate in security incident response activities, including investigation, containment, remediation, and post‑incident analysis. • Collaborate with engineering and platform teams to securely design and deploy SaaS and on‑prem solutions, including infrastructure hardening and secure configuration. • Develop, tune, and maintain security alerts and detections to improve signal quality and reduce noise. • Support vulnerability management activities, including infrastructure scanning, risk triage, remediation tracking, and validation. • Partner with compliance and GRC functions to support SOC 1, SOC 2, ISO 27001, 27017, and 27018 requirements through effective technical controls and evidence generation. • Implement and operate identity, access, and secrets management controls for cloud and infrastructure environments. • Help define and continuously improve security runbooks, operational procedures, and response playbooks. • Evaluate, implement, and support security tooling related to cloud security posture management, logging, endpoint protection, and threat detection. • Stay current on emerging threats, attacker techniques, and cloud security trends, applying this knowledge to improve defenses. • Provide mentorship and technical guidance to less‑experienced security engineers as appropriate, without direct people‑management responsibility.
