Vulnerability & Threat Intelligence Analyst

Location: Cheltenham, UK
Team: Research
Employment Type: Full-Time, Remote

About VulnCheck

VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

About the Role

Are you a security researcher who enjoys analyzing large volumes of threat intelligence data to identify and validate exploited vulnerabilities, active exploits, threat actors, malicious infrastructure, and indicators of compromise (IOCs)?

We are expanding our Threat Intelligence team and are looking for a detail-oriented analyst to join VulnCheck.

What You’ll Do

• Analyze diverse threat intelligence sources to identify and confirm:
• Exploited vulnerabilities (KEVs)
• Exploits and proof-of-concepts (PoCs)
• Threat actors, Botnets and Ransomware campaigns
• Malicious hosts, domains and infrastructure
• Indicators of compromise (IOCs)
• Validate the accuracy and credibility of sources and findings
• Assess evidence of real-world exploitation
• Maintain structured, high-quality intelligence outputs

What You’ll Bring

• Ability to evaluate exploit PoCs; familiarity with scripting languages
• Experience with OSINT tools and resources
• Understanding of IOCs and how to identify them
• Ability to assess the credibility and validity of intelligence sources
• Strong understanding of CVEs, including:
• CVE assignment and validation
• Familiarity with CPE and scoring methodologies
• Experience working with structured data formats (e.g., JSON)
• High attention to detail and analytical rigor
• Familiarity with end-of-life (EOL) software data
• Experience with developer/security tooling (e.g., VS Code and extensions)
• Familiarity with package ecosystems (NPM, NuGet, PyPI)

Preferred Qualifications

• Python scripting skills preferred
• Experience with prompt engineering is a plus

IMPORTANT NOTE: This position may involve access to technology subject to U.S. export control regulations. Employment is contingent upon the company's ability to authorize access under applicable export control, sanctions, and any other applicable legal or contractual requirements. The company does not guarantee and is under no obligation to seek such authorization if it would be necessary.

What We Offer

We believe people do their best work when they feel supported, trusted, and valued. VulnCheck offers benefits designed to meet a wide range of needs and lifestyles:

Benefits and Perks

• Unlimited PTO
• 401k plan with company match
• Comprehensive healthcare coverage
• Generous paid parental leave
• Remote friendly environment with flexibility
• Expense reimbursement for Cell Phone & Internet 
• Ongoing professional development, coaching, and learning resources
• Opportunities for career advancement within a fast-growing team

Why Join Us

Built on over two decades of cybersecurity experience, our team of experts understands the intricacies of vulnerabilities, their exploitation in the wild, and how to leverage this data to build more effective cybersecurity products that produce better outcomes for organizations.

VulnCheck gives organizations a tactical advantage by providing best-in-class exploit & vulnerability intelligence information. We have a sense of duty to protect the critical infrastructure we rely on including medical devices, power grids and telecommunication networks. We were founded in 2021 in Lexington, Massachusetts.

VulnCheck has a transparent, collaborative, and supportive culture - we are looking for people who have a growth mindset, are curious and innovative. Our team is smart, but humble, hardworking, and supportive.

VulnCheck is proud to be an Equal Employer Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. VulnCheck is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. *Even if your experience doesn’t perfectly align with the job description, we encourage you to apply—we value potential just as much as a perfect resume.

About VulnCheck

VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

About VulnCheck

VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

About the Role

As a Customer Success Engineer (CSE) at VulnCheck, you will serve as a trusted technical advisor to our existing customers, helping them successfully adopt, integrate, and operationalize VulnCheck intelligence across their security programs. Customer Success Engineers at VulnCheck are product experts, implementation specialists, and long-term customer advocates. 

This role is focused on driving customer outcomes, ensuring deployments are successful, integrations are effective, and customers realize ongoing value from VulnCheck’s solutions. By deeply understanding customer environments and objectives, you will help turn VulnCheck from a data source into a core operational capability within their security stack.

You will work closely with Enterprise, MSSP, and Cyber Vendor customers across the EMEA geography, partnering with Security Operations, Vulnerability Management, Threat Intelligence, and Engineering teams to embed VulnCheck into day-to-day workflows. You will play a critical role in ensuring customers not only deploy VulnCheck successfully but also continuously evolve how they use our intelligence to improve detection, prioritization, and response. Although this is a 100% remote role, candidates must be located in Cheltenham, UK for occasional onsite meetings with our federal and pub sector customers. 

What You'll Do

• Own the technical post-sales relationship for a portfolio of VulnCheck customers, serving as their primary point of contact for implementation and ongoing technical guidance.
• Lead customer onboarding, deployment, and adoption of VulnCheck solutions, ensuring successful integration into existing security tools, platforms, and workflows.
• Provide hands-on technical consulting to help customers operationalize VulnCheck data within SIEMs, TIPs, SOAR platforms, data lakes, and internal tooling.
• Design, build, and troubleshoot custom workflows, scripts, and integrations, leveraging VulnCheck APIs, SDKs, and datasets.
• Diagnose and resolve technical issues related to APIs, data fidelity, performance, and integration architecture.
• Deliver technical enablement through training sessions, architecture reviews, best-practice guidance, and ongoing optimization recommendations.
• Act as a customer advocate internally, collecting feedback, identifying product gaps, and collaborating with Product and Engineering teams to influence roadmap priorities.
• Support renewal and expansion efforts by ensuring customers achieve measurable value and maturity with VulnCheck over time.
• Accelerate customer time-to-value through structured onboarding and guided implementation.
• Help customers operationalize exploit and vulnerability intelligence across vulnerability management, SOC, threat intelligence, and IR workflows.
• Provide proactive technical guidance to optimize architectures, improve performance, and expand use cases.
• Partner with internal Account Teams, Product, and Engineering teams to ensure a seamless customer lifecycle.
• Enable customers to become self-sufficient power users of VulnCheck technology

What You'll Bring

• 3+ years of experience in a customer-facing technical role within cybersecurity (e.g., Technical Account Manager, Customer Success Engineer, Post-Sales Engineer, or similar), including demonstrated experience supporting public sector and/or government entities and navigating their procurement, compliance, and operational requirements.
• Deep understanding of the cybersecurity product landscape, with a strong focus on Vulnerability Management and Threat Intelligence.
• Strong working knowledge of incident response, SOC operations, and vulnerability management workflows, and how vulnerability intelligence supports each function.
• Proven ability to develop and maintain scripts in Python.
• Hands-on experience working with REST APIs and JSON-based data models.
• Experience building or rapidly learning integrations and workflows in platforms such as SIEM, SOAR, TIP or similar security tooling.
• Demonstrated experience providing technical mentorship, enablement, or customer guidance

Preferred Qualifications:

• Familiarity with the Go programming language is a plus.

IMPORTANT NOTE: This position may involve access to technology subject to U.S. export control regulations. Employment is contingent upon the company's ability to authorize access under applicable export control, sanctions, and any other applicable legal or contractual requirements. The company does not guarantee and is under no obligation to seek such authorization if it would be necessary.

What We Offer

We believe people do their best work when they feel supported, trusted, and valued. VulnCheck offers benefits designed to meet a wide range of needs and lifestyles:

Benefits and Perks

• Competitive salary with employee equity program
• Health, dental, and vision coverage
• Unlimited PTO 
• Pension Contribution 
• Remote friendly environment with flexibility
• Expense reimbursement for home internet and phone 
• Ongoing professional development, coaching, and learning resources
• Opportunities for career advancement within a fast-growing team

Why Join Us

Built on over two decades of cybersecurity experience, our team of experts understands the intricacies of vulnerabilities, their exploitation in the wild, and how to leverage this data to build more effective cybersecurity products that produce better outcomes for organizations.

VulnCheck gives organizations a tactical advantage by providing best-in-class exploit & vulnerability intelligence information. We have a sense of duty to protect the critical infrastructure we rely on including medical devices, power grids and telecommunication networks. We were founded in 2021 in Lexington, Massachusetts.

VulnCheck has a transparent, collaborative, and supportive culture - we are looking for people who have a growth mindset, are curious and innovative. Our team is smart, but humble, hardworking, and supportive.

VulnCheck is proud to be an Equal Employer Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. VulnCheck is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities.

Sr. Software Engineer - Cheltenham, UK

Location: Cheltenham, UK 
Team: Product & Engineering
Employment Type: Full-Time, Remote

About VulnCheck

VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

About the Role

We’re looking for a Senior Software Engineer to design, build, and scale the core systems that power VulnCheck’s vulnerability intelligence platform. This is a high-impact, hands-on role where you’ll own critical services and data pipelines end-to-end—from design through production.

You’ll play a key role in shaping architecture, improving system performance and reliability, and delivering features that directly impact customers. While you’ll help resolve production issues, your focus will be on building durable, scalable solutions that prevent them. Although this is a 100% remote role, candidates must be located in or around Cheltenham, United Kingdom.

What You’ll Do

• Design and build scalable backend systems, APIs, and data pipelines
• Own services end-to-end, including architecture, development, deployment, and operation
• Lead technical design discussions and contribute to system architecture decisions
• Write high-quality, maintainable code and drive engineering best practices
• Debug complex production issues and implement long-term, scalable solutions
• Improve system performance, reliability, and observability across the platform
• Partner closely with Product, Data, and other Engineering teams to deliver impactful features
• Mentor junior engineers and contribute to a strong engineering culture
• Participate in incident response and on-call rotations 

What You’ll Bring

• 5+ years of experience building and scaling backend systems as a software engineer
• Strong programming skills in one or more languages (Python, Go, Java, etc.)
• Experience designing distributed systems and working with microservices architectures
• Deep understanding of APIs, system design, and cloud infrastructure (AWS preferred)
• Experience working with data pipelines, ETL systems, or high-volume data processing
• Proven ability to debug and optimize production systems
• Strong ownership mindset with the ability to lead projects independently
• Excellent communication skills and ability to collaborate cross-functionally

Preferred Qualifications

• Experience in cybersecurity, vulnerability management, or threat intelligence
• Familiarity with CVE, NVD, KEV, or exploit intelligence datasets
• Experience with streaming systems or real-time data processing
• Background in high-growth or startup environments

What We Offer

We believe people do their best work when they feel supported, trusted, and valued. VulnCheck offers benefits designed to meet a wide range of needs and lifestyles:

Benefits and Perks

• Unlimited PTO
• 401k plan 
• Comprehensive healthcare coverage
• Generous paid parental leave
• Remote friendly environment with flexibility
• Expense reimbursement for Cell Phone & Internet 
• Ongoing professional development, coaching, and learning resources
• Opportunities for career advancement within a fast-growing team

Why Join Us

Built on over two decades of cybersecurity experience, our team of experts understands the intricacies of vulnerabilities, their exploitation in the wild, and how to leverage this data to build more effective cybersecurity products that produce better outcomes for organizations.

VulnCheck gives organizations a tactical advantage by providing best-in-class exploit & vulnerability intelligence information. We have a sense of duty to protect the critical infrastructure we rely on including medical devices, power grids and telecommunication networks. We were founded in 2021 in Lexington, Massachusetts.

VulnCheck has a transparent, collaborative, and supportive culture - we are looking for people who have a growth mindset, are curious and innovative. Our team is smart, but humble, hardworking, and supportive.

VulnCheck is proud to be an Equal Employer Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. VulnCheck is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. *Even if your experience doesn’t perfectly align with the job description, we encourage you to apply—we value potential just as much as a perfect resume.

About VulnCheck

VulnCheck is transforming vulnerability intelligence by helping security teams act faster and with more confidence. Our platform delivers early, high-quality exploit intelligence, deep asset correlation, and contextual insights to help organizations stay ahead of emerging threats.

About the Role

VulnCheck is looking for a Senior Exploit Developer with a background in reverse engineering and exploit development. This role is on our Initial Access Intelligence team, which delivers exploits and related artifacts designed to give VulnCheck customers visibility into exploitation from exposure through execution and detection. You’ll work with a seasoned team of hackers and threat researchers to help global enterprises, governments, and intelligence firms defend against emerging threats and get ahead of the attacker curve. 

While initial access vulnerabilities are our main focus area, you’ll also have the opportunity to work on a variety of local and other exploits, as well as our open-source go-exploit framework. This is a 100% remote role but we're primarily looking for candidates in Cheltenham, United Kingdom.

Why Join VulnCheck?

VulnCheck stands behind its mission to influence how organizations worldwide understand, assess, and remediate security vulnerabilities - and to deliver intelligence-based solutions that change the world. 

You’ll be joining a collaborative, supportive environment that values intellectual curiosity, technical mastery, and personal growth. (And more - below) 

• Leverage your expertise: Work on cutting-edge threat intelligence initiatives that matter, alongside the top domain experts in the field.
• Shape the industry: Influence how vulnerabilities are classified, scored, mapped, and remediated at scale for enterprise customers and for the entire cybersecurity industry.
• Grow your impact: Collaborate with global partners, lead high-visibility projects, and drive standards across the security community.
• Innovate and explore: Conduct research and develop tools for automating and improving vulnerability enrichment and mapping.

What You'll Do

• Reverse engineering software to discover the root cause analysis (RCA) of vulnerabilities.
• Authoring original software exploits for initial access vulnerabilities, when little or no publicly-available proof of concept code for exploiting such vulnerabilities exists.
• Implementing detections (such as Suricata & Snort signatures, YARA rules, etc.) for identifying such initial access vulnerabilities being exploited on the wire
• Writing Attack Surface Management (ASM) queries (e.g., Shodan, Census, FOFA, & ZoomEye) for finding vulnerable systems likely to be targeted

Why You'll Bring

• Prior experience with writing exploit code for RCE / initial access vulnerabilities (that do not require authentication to exploit)
• Experience working on technical projects remotely, alone, and on small teams

Preferred Qualifications

• Prior Cybersecurity work experience (at a vendor or in Government).
• Able to share example exploit code written.

*IMPORTANT NOTE: This position may involve access to technology subject to U.S. export control regulations. Employment is contingent upon the company's ability to authorize access under applicable export control, sanctions, and any other applicable legal or contractual requirements. The company does not guarantee and is under no obligation to seek such authorization if it would be necessary.

What We Offer

We believe people do their best work when they feel supported, trusted, and valued. VulnCheck offers benefits designed to meet a wide range of needs and lifestyles.

Benefits and Perks

• Competitive salary with employee equity program
• Health, dental, and vision coverage
• Unlimited PTO 
• Pension Contribution 
• Remote friendly environment with flexibility
• Expense reimbursement for home internet and phone 
• Ongoing professional development, coaching, and learning resources
• Opportunities for career advancement within a fast-growing team

Why Join Us

Built on over two decades of cybersecurity experience, our team of experts understands the intricacies of vulnerabilities, their exploitation in the wild, and how to leverage this data to build more effective cybersecurity products that produce better outcomes for organizations.

VulnCheck gives organizations a tactical advantage by providing best-in-class exploit & vulnerability intelligence information. We have a sense of duty to protect the critical infrastructure we rely on including medical devices, power grids and telecommunication networks. We were founded in 2021 in Lexington, Massachusetts.

VulnCheck has a transparent, collaborative, and supportive culture - we are looking for people who have a growth mindset, are curious and innovative. Our team is smart, but humble, hardworking, and supportive.

VulnCheck is proud to be an Equal Employer Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. VulnCheck is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities.