Job Title: Junior Vulnerability Researcher (Cloud & Containers)
Job Category: Engineering
Time Type: Full time
Minimum Clearance Required to Start: Top Secret
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
* * *
The Opportunity:
We are seeking a Vulnerability Researcher with a strong background in systems-level engineering and a passion for cloud security. This role is for a practitioner who has moved beyond the basics and is ready to take ownership of research tasks within the "DNA of the cloud." You will apply your knowledge of container internals and binary analysis to hunt for escapes and logic flaws in Kubernetes environments. You will work as part of a high-performing team, executing complex vulnerability research and developing automated tools to secure national cybersecurity infrastructure.
Responsibilities:
Execute research into OCI runtimes (runc, crun) and Linux kernel primitives (namespaces, cgroups) to identify breakout and privilege escalation paths.
Perform static and dynamic analysis on compiled binaries (Go, Rust, or C++) to map logic and identify potential security vulnerabilities.
Develop and maintain custom fuzzing harnesses (e.g., AFL++, libFuzzer) to stress-test gRPC interfaces and microservice components.
Use symbolic and concolic execution tools (e.g., Angr, Manticore) to automate the discovery of complex execution paths.
Analyze containerized environments and system initialization logic to identify and document potential attack surfaces.
Write custom Python3 scripts to automate research workflows, including firmware unpacking and memory analysis.
Generate detailed technical reports and documentation for discovered vulnerabilities and research methodology.
Qualifications:
Required:
An active Top Secret clearance.
3–5 years of professional experience in vulnerability research, reverse engineering, or systems-level software development.
Proficiency in Go, Rust, or C/C++ and strong scripting skills in Python3.
Experience with disassembly and decompilation tools such as IDA Pro, Ghidra, or Binary Ninja.
Working knowledge of Linux kernel internals, specifically regarding container isolation (namespaces/cgroups).
Hands-on experience with debugging tools like GDB and packet analysis tools like Wireshark.
Familiarity with container orchestration (Kubernetes) and the OCI runtime specification.
Demonstrated ability to conduct independent technical research and document complex findings.
Desired:
An active SCI clearance.
Previous experience with fuzzing frameworks and vulnerability discovery in distributed systems.
Understanding of x86 or ARM assembly language.
Experience with cloud provider security (AWS, Azure, or GCP).
Relevant security certifications or a history of participation in advanced CTF competitions.
This position is contingent on funding and may not be filled immediately. However, this position is representative of positions within CACI that are consistently available. Individuals who apply may also be considered for other positions at CACI.
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Pay Range:
There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits.
The proposed salary range for this position is:
$79,400 - $162,700
CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.