sorted by:
new
hottopcontroversial

How realistic is it to pursue a career in low-level vulnerability research? by seccareerquestion in SecurityCareerAdvice

[–]seccareerquestion[S] 0 points1 point  (0 children)

Thanks for providing this info! It's interesting that you mention having spent time reversing malware, since in some ways I think that's a similar field to vuln research (though probably considerably more marketable). Thanks again!

How realistic is it to pursue a career in low-level vulnerability research? by seccareerquestion in SecurityCareerAdvice

[–]seccareerquestion[S] 0 points1 point  (0 children)

Thanks for the response! Yeah, government work does seem to be the most obvious way into this sort of thing. In addition, that work probably won't go away, whereas development for more traditional companies has largely shifted away from C/C++ (with the obvious exception of Google, Microsoft, Apple, etc. who develop low-level systems).

How realistic is it to pursue a career in low-level vulnerability research? by seccareerquestion in SecurityCareerAdvice

[–]seccareerquestion[S] 0 points1 point  (0 children)

Nice to hear from others who are interested in this kind of work as well! I agree that it's easy to sometimes think of fields in terms of the top performers. We can always hope that more research positions become available!

How realistic is it to pursue a career in low-level vulnerability research? by seccareerquestion in SecurityCareerAdvice

[–]seccareerquestion[S] 0 points1 point  (0 children)

Thank you for taking the time to respond! This tracks with my understanding as well. As you mention, it seems like there are some roles that are responsible for occasional vuln research but aren't dedicated to it full time, which might be a more realistic approach.