Blackberry

QNX Senior Security Researcher

Blackberry$108K — $158K *
Technical Services
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of hands-on experience in vulnerability research or offensive security
  • Practical expertise with fuzzing frameworks like AFL or libFuzzer
  • Strong knowledge of low-level software internals and embedded system concepts
  • Familiarity with common vulnerability types such as buffer overflows and race conditions
  • Proficient in programming languages: C, C++, and Python
  • Experience in developing automation tools for security testing
  • A passion for in-depth investigation of complex software systems

Responsibilities

  • Hunt for vulnerabilities in QNX products and embedded software
  • Conduct penetration testing and security assessments on embedded platforms
  • Design and execute large-scale fuzzing campaigns
  • Investigate software crashes to analyze exploitability
  • Perform root-cause analysis and develop proofs of concept for exploits
  • Use AI/ML techniques to enhance vulnerability discovery and analysis
  • Develop automated tools and frameworks for security testing

Benefits

  • Comprehensive medical, dental, and vision coverage
  • Life and disability insurance
  • Retirement plan
  • Employee share purchase program
  • Generous paid time off policy
  • Support for physical, financial, and personal well-being
Full Job Description
Worker Sub-Type:
Regular

Job Description:

We're expanding our Product Cybersecurity team and looking for passionate security researchers who love understanding how software fails, uncovering hidden vulnerabilities, and pushing offensive security techniques to the next level. If you're the type of person who can't resist digging deeper into a crash dump, writing custom fuzzing harnesses, reversing software to understand its inner workings, or using AI to uncover attack paths others miss, we'd love to talk to you.

What You'll Do:
  • Hunt for vulnerabilities across QNX products and embedded software components before attackers find them
  • Perform penetration testing and offensive security assessments against real-world embedded platforms
  • Design, develop, and execute large-scale fuzzing campaigns to uncover memory corruption defects, logic flaws, and emerging vulnerability classes
  • Investigate crashes and software defects to determine exploitability and security impact
  • Conduct root-cause analysis and exploit development to understand and demonstrate real-world attack scenarios
  • Leverage AI/ML-assisted techniques to accelerate vulnerability discovery and improve security analysis workflows
  • Build and evolve automated security testing frameworks, fuzzers, scanners, and exploit validation pipelines
  • Collaborate closely with engineering teams to reproduce, triage, and remediate vulnerabilities
  • Contribute tools, methodologies, and research that strengthen our overall security posture
  • Stay at the forefront of emerging threats and vulnerability research affecting modern embedded operating systems


What We're Looking For:
  • Hands-on experience in vulnerability research, penetration testing, exploit development, or offensive security
  • Practical experience with fuzzing frameworks such as AFL, libFuzzer, or similar technologies
  • Strong understanding of low-level software internals including memory management, process isolation, POSIX APIs, concurrency, and embedded systems concepts
  • Familiarity with common vulnerability classes such as:
  • Use-after-free
  • Heap corruption
  • Buffer overflows
  • Race conditions
  • Privilege escalation
  • Logic vulnerabilities
  • Strong programming skills in C, C++, and Python
  • Experience developing automation and tooling for security testing or vulnerability discovery
  • A passion for investigating complex systems and finding weaknesses others overlook
  • The ability to independently drive research initiatives from concept through discovery and validation


Bonus Points If You Have:
  • Experience applying AI or machine learning techniques to security research or vulnerability detection
  • Knowledge of automotive cybersecurity, embedded systems, or QNX-based platforms
  • Familiarity with ISO/SAE 21434 or secure software development practices
  • Reverse engineering experience using tools such as IDA Pro, Ghidra, Binary Ninja, or similar frameworks
  • Experience working with operating systems, kernels, drivers, or low-level system software


Why You'll Love This Role:
  • This is an opportunity to spend your time exploring, researching, breaking, and improving the security of software that runs some of the most important systems in the world. You'll have the freedom to:
  • Pursue challenging security research questions
  • Build new tools and automation frameworks
  • Experiment with emerging AI-assisted security techniques
  • Influence the security of products deployed at massive scale
  • Collaborate with world-class embedded engineers and security researchers
  • Turn curiosity into real-world impact


#LI-KH1

Scheduled Weekly Hours:
40

Compensation Hiring Base Salary Range:
$108,750.00 - $158,750.00

Please be advised that the compensation hiring range indicated herein is provided solely as a good-faith estimate of expected base compensation for the position. The actual compensation offered will be determined at the time of hire and is contingent upon multiple factors, including but not limited to the candidate's qualifications, relevant experience, demonstrated skills, and results of assessments conducted during the hiring process.

Bonus:
The BlackBerry Variable Incentive Pay (VIP) program is an organization-wide bonus incentive program which aims to reward full-time eligible employees for their contribution to BlackBerry's success. VIP payments are made in addition to base salary and factor in company's performance as a way for employees to share in BlackBerry's achievements.

Benefits:
The BlackBerry Employee Benefits programs offer a wide range of benefits that support your physical, financial and personal well-being. BlackBerry remains committed to offering affordable benefits including coverage for medical, dental, vision, life, disability insurance, retirement, employee share purchase program and paid-time-off to those that meet the eligibility requirements.

Disclosure of Position Status:
This is an active opening. We are seeking to fill this position immediately

Disclosure of Artificial Intelligence:

We do not use artificial intelligence (AI) to screen, assess, or select applicants at any stage of our recruitment process. All applications are reviewed and evaluated by our hiring team.

About Blackberry

BlackBerry Limited is a Canadian technology company that provides enterprise software and services. The company is best known for its BlackBerry smartphones, which were popular in the early 2000s. Today, BlackBerry focuses on providing software solutions for businesses and governments, particularly in the areas of cybersecurity and Internet of Things (IoT) technology. The company was founded in 1984 and is headquartered in Waterloo, Ontario.
Learn more about Blackberry
Size
3,497 employees
Market Cap
$2.7 billion
Industry
Founded
1996
5 Year Trend
-11.3%
NASDAQ

Similar Jobs

More Jobs at Blackberry

More Technical Services Jobs

Find similar QNX Senior Security Researcher jobs: