Senior Vulnerability Researcher – Windows / CNE

<div class="content-intro"><p>M9 Solutions is dedicated to providing IT services and solutions to the Federal Government by mobilizing the right people, skills, clearance levels, and technologies to help organizations that desire improved performance and modern, sustainable change. M9 has provided quality IT services and support to more than 30 Federal Agencies and multiple commercial customers nationwide. Our capabilities include IT Talent Solutions, Data Delivery & Analytics, Cyber Security, Cloud Migration, Applications and Infrastructure, Software Development, and Finance & Accounting.</p> <p> </p></div><p>M9 Solutions is seeking a <strong><span class="collapsed-field-text">Senior Vulnerability Researcher – Windows / CNE</span> </strong>to work on-site in support of a government contract for a client located in <strong>Arlington, VA</strong>. An active <strong>TS/SCI clearance</strong> is required.</p> <p><strong>Responsibilities</strong></p> <ul> <li>Lead advanced vulnerability research on Windows operating systems, applications, and core OS components (including kernel and drivers).</li> <li>Analyze, reverse engineer, and understand complex vulnerabilities to support CNE/CNO missions.</li> <li>Use tools such as IDA Pro, Ghidra, Binary Ninja, and WinDbg/x64dbg for in‐depth binary analysis and debugging, including creating or extending custom tooling when needed.</li> <li>Own end‐to‐end research on difficult, poorly documented Windows targets with minimal guidance, from scoping and experimentation through proof‐of‐concept.</li> <li>Develop and document technical approaches, findings, and PoCs to validate vulnerabilities and exploitation paths.</li> <li>Continuously explore and prototype novel techniques for vulnerability discovery and exploitation on modern, mitigated Windows platforms.</li> <li>Collaborate with mission and engineering teams to translate research into operational capabilities.</li> <li>Act as the senior technical point of contact and subject‐matter expert for Windows vulnerability, exploitation, and OS‐internals questions.</li> </ul> <p><strong>Required Skills and Qualifications</strong></p> <ul> <li>Active TS/SCI clearance.</li> <li>3+ years in vulnerability research, exploit development, or CNE‐focused reverse engineering, with a sustained focus on Windows (user and kernel mode) rather than general app security or pen‐testing.</li> <li>Deep, practical understanding of Windows internals (kernel architecture, drivers, memory management, system calls, process/thread models, and security mechanisms).</li> <li>Strong CNE/CNO background; experience leverag